Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

google redirect


  • Please log in to reply
7 replies to this topic

#1 Dj Stevie Beats

Dj Stevie Beats

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 14 February 2012 - 04:03 PM

Hi guys, So it looks like I'm not the only one.... Google and Bing redirecting me to other sites and Google has stopped working for me all together now asking for captcha codes... my computer has been acting strange for a few days now.. I'm running win7 64 bit system on an Asus uf50 notebook with an i3 and 4gigs mem. when I boot none of programs on the desk to show the pix for a moment, then a box opens asking what program I want to use to open a file called DJ. After I close it I open IE and it brings 2 windows to Google, I close one and continue doing what I was doing.. Until the redirecting started.I also found an empty folder that I cant Delete. Any help would be appreciated!!!


thanks,

Steve

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:06 AM

Posted 14 February 2012 - 04:14 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Dj Stevie Beats

Dj Stevie Beats
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 15 February 2012 - 12:17 AM

Ok here is the TDSS

16:25:19.0385 3012 TDSS rootkit removing tool 2.7.12.0 Feb 11 2012 16:58:52
16:25:19.0779 3012 ============================================================
16:25:19.0779 3012 Current date / time: 2012/02/14 16:25:19.0779
16:25:19.0779 3012 SystemInfo:
16:25:19.0779 3012
16:25:19.0779 3012 OS Version: 6.1.7601 ServicePack: 1.0
16:25:19.0779 3012 Product type: Workstation
16:25:19.0779 3012 ComputerName: STEVES
16:25:19.0780 3012 UserName: Dj Stevie Beats
16:25:19.0780 3012 Windows directory: C:\Windows
16:25:19.0780 3012 System windows directory: C:\Windows
16:25:19.0780 3012 Running under WOW64
16:25:19.0780 3012 Processor architecture: Intel x64
16:25:19.0780 3012 Number of processors: 4
16:25:19.0780 3012 Page size: 0x1000
16:25:19.0780 3012 Boot type: Normal boot
16:25:19.0780 3012 ============================================================
16:25:20.0549 3012 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:25:20.0556 3012 \Device\Harddisk0\DR0:
16:25:20.0557 3012 MBR used
16:25:20.0557 3012 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x1D4B178, BlocksNum 0x3863A6B8
16:25:20.0620 3012 Initialize success
16:25:20.0620 3012 ============================================================
16:25:36.0735 3576 ============================================================
16:25:36.0735 3576 Scan started
16:25:36.0736 3576 Mode: Manual; TDLFS;
16:25:36.0736 3576 ============================================================
16:25:38.0569 3576 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
16:25:38.0574 3576 1394ohci - ok
16:25:38.0648 3576 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
16:25:38.0654 3576 ACPI - ok
16:25:38.0734 3576 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
16:25:38.0737 3576 AcpiPmi - ok
16:25:38.0828 3576 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
16:25:38.0836 3576 adp94xx - ok
16:25:38.0899 3576 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
16:25:38.0906 3576 adpahci - ok
16:25:38.0957 3576 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
16:25:38.0962 3576 adpu320 - ok
16:25:39.0112 3576 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
16:25:39.0120 3576 AFD - ok
16:25:39.0179 3576 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
16:25:39.0182 3576 agp440 - ok
16:25:39.0240 3576 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
16:25:39.0242 3576 aliide - ok
16:25:39.0303 3576 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
16:25:39.0305 3576 amdide - ok
16:25:39.0376 3576 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
16:25:39.0379 3576 AmdK8 - ok
16:25:39.0422 3576 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
16:25:39.0425 3576 AmdPPM - ok
16:25:39.0509 3576 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
16:25:39.0513 3576 amdsata - ok
16:25:39.0576 3576 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
16:25:39.0581 3576 amdsbs - ok
16:25:39.0651 3576 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
16:25:39.0653 3576 amdxata - ok
16:25:39.0735 3576 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
16:25:39.0738 3576 AppID - ok
16:25:39.0857 3576 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
16:25:39.0860 3576 arc - ok
16:25:39.0905 3576 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
16:25:39.0908 3576 arcsas - ok
16:25:40.0037 3576 aswFsBlk (5a68b880c16ad5a6aa20b49a47ffff24) C:\Windows\system32\drivers\aswFsBlk.sys
16:25:40.0039 3576 aswFsBlk - ok
16:25:40.0504 3576 aswMonFlt (230613be2d3da8053879be5ed2848f2d) C:\Windows\system32\drivers\aswMonFlt.sys
16:25:40.0507 3576 aswMonFlt - ok
16:25:40.0940 3576 aswRdr (0dc1996ae4178d7d14744ef6b3082313) C:\Windows\system32\drivers\aswRdr.sys
16:25:40.0944 3576 aswRdr - ok
16:25:41.0302 3576 aswSnx (b6ff911c23775cdfdd49612d92637af4) C:\Windows\system32\drivers\aswSnx.sys
16:25:41.0311 3576 aswSnx - ok
16:25:41.0570 3576 aswSP (5a590d8516376aed1829fc07d3bdaa4b) C:\Windows\system32\drivers\aswSP.sys
16:25:41.0577 3576 aswSP - ok
16:25:42.0148 3576 aswTdi (3239c0082fb0c1c4ee323730b85690a5) C:\Windows\system32\drivers\aswTdi.sys
16:25:42.0152 3576 aswTdi - ok
16:25:42.0508 3576 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
16:25:42.0516 3576 AsyncMac - ok
16:25:42.0670 3576 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
16:25:42.0672 3576 atapi - ok
16:25:43.0060 3576 athr (a5e770426d18f8ef332a593f3289da91) C:\Windows\system32\DRIVERS\athrx.sys
16:25:43.0115 3576 athr - ok
16:25:43.0283 3576 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
16:25:43.0291 3576 b06bdrv - ok
16:25:43.0349 3576 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:25:43.0355 3576 b57nd60a - ok
16:25:43.0420 3576 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
16:25:43.0422 3576 Beep - ok
16:25:43.0523 3576 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
16:25:43.0526 3576 blbdrive - ok
16:25:43.0953 3576 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
16:25:43.0956 3576 bowser - ok
16:25:44.0018 3576 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:25:44.0022 3576 BrFiltLo - ok
16:25:44.0061 3576 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:25:44.0063 3576 BrFiltUp - ok
16:25:44.0128 3576 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
16:25:44.0134 3576 Brserid - ok
16:25:44.0171 3576 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
16:25:44.0174 3576 BrSerWdm - ok
16:25:44.0211 3576 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
16:25:44.0213 3576 BrUsbMdm - ok
16:25:44.0248 3576 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
16:25:44.0250 3576 BrUsbSer - ok
16:25:44.0293 3576 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
16:25:44.0297 3576 BTHMODEM - ok
16:25:44.0364 3576 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
16:25:44.0367 3576 cdfs - ok
16:25:44.0462 3576 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
16:25:44.0467 3576 cdrom - ok
16:25:44.0543 3576 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
16:25:44.0546 3576 circlass - ok
16:25:44.0606 3576 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
16:25:44.0614 3576 CLFS - ok
16:25:44.0698 3576 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
16:25:44.0701 3576 CmBatt - ok
16:25:44.0761 3576 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
16:25:44.0764 3576 cmdide - ok
16:25:44.0862 3576 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
16:25:44.0870 3576 CNG - ok
16:25:44.0985 3576 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
16:25:44.0987 3576 Compbatt - ok
16:25:45.0053 3576 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
16:25:45.0054 3576 CompositeBus - ok
16:25:45.0126 3576 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
16:25:45.0129 3576 crcdisk - ok
16:25:45.0260 3576 dalwdmservice (ec4dc5382f53386002f9b74587321ead) C:\Windows\system32\drivers\dalwdm.sys
16:25:45.0265 3576 dalwdmservice - ok
16:25:45.0364 3576 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
16:25:45.0368 3576 DfsC - ok
16:25:45.0448 3576 DGUSBAP (22d5e5d3689e31303ca0c847a10e199a) C:\Windows\system32\DRIVERS\dgmbx2.sys
16:25:45.0454 3576 DGUSBAP - ok
16:25:45.0701 3576 DigiNet (cc3b49b032527c7e7dfdab8946e80e9c) C:\Windows\system32\DRIVERS\diginet.sys
16:25:45.0724 3576 DigiNet - ok
16:25:45.0848 3576 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
16:25:45.0851 3576 discache - ok
16:25:45.0903 3576 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
16:25:45.0907 3576 Disk - ok
16:25:46.0003 3576 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
16:25:46.0005 3576 drmkaud - ok
16:25:46.0076 3576 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
16:25:46.0098 3576 DXGKrnl - ok
16:25:46.0209 3576 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
16:25:46.0299 3576 ebdrv - ok
16:25:46.0435 3576 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
16:25:46.0444 3576 elxstor - ok
16:25:46.0502 3576 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
16:25:46.0505 3576 ErrDev - ok
16:25:46.0570 3576 ETD (3c38648375b7f3988691f53a7aae10a9) C:\Windows\system32\DRIVERS\ETD.sys
16:25:46.0573 3576 ETD - ok
16:25:46.0645 3576 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
16:25:46.0649 3576 exfat - ok
16:25:46.0686 3576 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
16:25:46.0691 3576 fastfat - ok
16:25:46.0750 3576 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
16:25:46.0753 3576 fdc - ok
16:25:46.0832 3576 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
16:25:46.0835 3576 FileInfo - ok
16:25:46.0863 3576 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
16:25:46.0866 3576 Filetrace - ok
16:25:46.0927 3576 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
16:25:46.0930 3576 flpydisk - ok
16:25:46.0996 3576 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
16:25:47.0002 3576 FltMgr - ok
16:25:47.0062 3576 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
16:25:47.0065 3576 FsDepends - ok
16:25:47.0181 3576 fssfltr (5814011b2f6e088e29d689b5fcd49b8f) C:\Windows\system32\DRIVERS\fssfltr.sys
16:25:47.0184 3576 fssfltr - ok
16:25:47.0240 3576 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
16:25:47.0242 3576 Fs_Rec - ok
16:25:47.0324 3576 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
16:25:47.0329 3576 fvevol - ok
16:25:47.0389 3576 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
16:25:47.0392 3576 gagp30kx - ok
16:25:47.0456 3576 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:25:47.0460 3576 GEARAspiWDM - ok
16:25:47.0533 3576 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
16:25:47.0535 3576 hcw85cir - ok
16:25:47.0645 3576 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
16:25:47.0650 3576 HdAudAddService - ok
16:25:47.0736 3576 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
16:25:47.0739 3576 HDAudBus - ok
16:25:47.0808 3576 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
16:25:47.0812 3576 HECIx64 - ok
16:25:47.0846 3576 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
16:25:47.0849 3576 HidBatt - ok
16:25:47.0891 3576 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
16:25:47.0896 3576 HidBth - ok
16:25:47.0942 3576 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
16:25:47.0946 3576 HidIr - ok
16:25:48.0043 3576 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
16:25:48.0046 3576 HidUsb - ok
16:25:48.0106 3576 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
16:25:48.0110 3576 HpSAMD - ok
16:25:48.0182 3576 HTCAND64 (cf44b25ae808765d7308f412ad492ddb) C:\Windows\system32\Drivers\ANDROIDUSB.sys
16:25:48.0186 3576 HTCAND64 - ok
16:25:48.0279 3576 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
16:25:48.0302 3576 HTTP - ok
16:25:48.0375 3576 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
16:25:48.0378 3576 hwpolicy - ok
16:25:48.0452 3576 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
16:25:48.0455 3576 i8042prt - ok
16:25:48.0550 3576 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\Windows\system32\DRIVERS\iaStor.sys
16:25:48.0553 3576 iaStor - ok
16:25:48.0642 3576 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
16:25:48.0649 3576 iaStorV - ok
16:25:49.0068 3576 igfx (0089b53f1befd34b7d8ca4ab021335fa) C:\Windows\system32\DRIVERS\igdkmd64.sys
16:25:49.0324 3576 igfx - ok
16:25:49.0387 3576 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
16:25:49.0390 3576 iirsp - ok
16:25:49.0469 3576 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
16:25:49.0474 3576 Impcd - ok
16:25:49.0940 3576 IntcDAud (d248aae81c156c0d47a77cd61bc24cd4) C:\Windows\system32\DRIVERS\IntcDAud.sys
16:25:49.0945 3576 IntcDAud - ok
16:25:50.0007 3576 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
16:25:50.0016 3576 intelide - ok
16:25:50.0077 3576 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
16:25:50.0080 3576 intelppm - ok
16:25:50.0159 3576 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:25:50.0163 3576 IpFilterDriver - ok
16:25:50.0244 3576 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
16:25:50.0247 3576 IPMIDRV - ok
16:25:50.0309 3576 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
16:25:50.0312 3576 IPNAT - ok
16:25:50.0479 3576 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
16:25:50.0483 3576 IRENUM - ok
16:25:50.0549 3576 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
16:25:50.0552 3576 isapnp - ok
16:25:50.0627 3576 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
16:25:50.0633 3576 iScsiPrt - ok
16:25:50.0709 3576 JMCR (db917b998cbc15a153c00dd6efc34c13) C:\Windows\system32\DRIVERS\jmcr.sys
16:25:50.0714 3576 JMCR - ok
16:25:50.0762 3576 JME (ab42aef22595a46941bff76c210c942b) C:\Windows\system32\DRIVERS\JME.sys
16:25:50.0766 3576 JME - ok
16:25:50.0834 3576 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
16:25:50.0837 3576 kbdclass - ok
16:25:50.0920 3576 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
16:25:50.0923 3576 kbdhid - ok
16:25:50.0979 3576 kbfiltr (e63ef8c3271d014f14e2469ce75fecb4) C:\Windows\system32\DRIVERS\kbfiltr.sys
16:25:50.0983 3576 kbfiltr - ok
16:25:51.0070 3576 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
16:25:51.0080 3576 KSecDD - ok
16:25:51.0139 3576 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
16:25:51.0145 3576 KSecPkg - ok
16:25:51.0219 3576 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
16:25:51.0222 3576 ksthunk - ok
16:25:51.0323 3576 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
16:25:51.0326 3576 lltdio - ok
16:25:51.0470 3576 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
16:25:51.0474 3576 LSI_FC - ok
16:25:51.0523 3576 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
16:25:51.0527 3576 LSI_SAS - ok
16:25:51.0593 3576 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:25:51.0596 3576 LSI_SAS2 - ok
16:25:51.0662 3576 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:25:51.0666 3576 LSI_SCSI - ok
16:25:51.0715 3576 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
16:25:51.0718 3576 luafv - ok
16:25:51.0797 3576 MBX2DFU (f8427a9d48cea3ea56bbd0f36791cccf) C:\Windows\system32\DRIVERS\dgmbx2fu.sys
16:25:51.0800 3576 MBX2DFU - ok
16:25:51.0874 3576 MBX2MIDK (dac8c2266bcf42e5ed41673d96f4fe4b) C:\Windows\system32\drivers\mbx2midk.sys
16:25:51.0877 3576 MBX2MIDK - ok
16:25:51.0963 3576 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
16:25:51.0966 3576 megasas - ok
16:25:52.0021 3576 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
16:25:52.0027 3576 MegaSR - ok
16:25:52.0075 3576 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
16:25:52.0078 3576 Modem - ok
16:25:52.0140 3576 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
16:25:52.0143 3576 monitor - ok
16:25:52.0217 3576 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
16:25:52.0220 3576 mouclass - ok
16:25:52.0322 3576 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
16:25:52.0325 3576 mouhid - ok
16:25:52.0408 3576 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
16:25:52.0412 3576 mountmgr - ok
16:25:52.0479 3576 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
16:25:52.0484 3576 mpio - ok
16:25:52.0533 3576 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
16:25:52.0536 3576 mpsdrv - ok
16:25:52.0613 3576 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
16:25:52.0617 3576 MRxDAV - ok
16:25:52.0684 3576 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:25:52.0689 3576 mrxsmb - ok
16:25:52.0751 3576 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:25:52.0757 3576 mrxsmb10 - ok
16:25:52.0798 3576 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:25:52.0801 3576 mrxsmb20 - ok
16:25:52.0866 3576 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
16:25:52.0869 3576 msahci - ok
16:25:52.0940 3576 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
16:25:52.0944 3576 msdsm - ok
16:25:53.0015 3576 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
16:25:53.0017 3576 Msfs - ok
16:25:53.0077 3576 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
16:25:53.0080 3576 mshidkmdf - ok
16:25:53.0143 3576 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
16:25:53.0149 3576 msisadrv - ok
16:25:53.0218 3576 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
16:25:53.0221 3576 MSKSSRV - ok
16:25:53.0261 3576 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
16:25:53.0264 3576 MSPCLOCK - ok
16:25:53.0307 3576 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
16:25:53.0310 3576 MSPQM - ok
16:25:53.0374 3576 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
16:25:53.0381 3576 MsRPC - ok
16:25:53.0449 3576 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
16:25:53.0452 3576 mssmbios - ok
16:25:53.0504 3576 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
16:25:53.0507 3576 MSTEE - ok
16:25:53.0551 3576 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
16:25:53.0554 3576 MTConfig - ok
16:25:53.0612 3576 MTsensor (032d35c996f21d19a205a7c8f0b76f3c) C:\Windows\system32\DRIVERS\ATK64AMD.sys
16:25:53.0615 3576 MTsensor - ok
16:25:53.0657 3576 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
16:25:53.0660 3576 Mup - ok
16:25:53.0742 3576 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
16:25:53.0749 3576 NativeWifiP - ok
16:25:53.0855 3576 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
16:25:53.0881 3576 NDIS - ok
16:25:53.0951 3576 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
16:25:53.0955 3576 NdisCap - ok
16:25:54.0017 3576 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
16:25:54.0020 3576 NdisTapi - ok
16:25:54.0084 3576 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
16:25:54.0087 3576 Ndisuio - ok
16:25:54.0141 3576 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
16:25:54.0146 3576 NdisWan - ok
16:25:54.0220 3576 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
16:25:54.0223 3576 NDProxy - ok
16:25:54.0291 3576 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
16:25:54.0294 3576 NetBIOS - ok
16:25:54.0356 3576 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
16:25:54.0361 3576 NetBT - ok
16:25:54.0438 3576 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
16:25:54.0441 3576 nfrd960 - ok
16:25:54.0492 3576 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
16:25:54.0495 3576 Npfs - ok
16:25:54.0528 3576 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
16:25:54.0530 3576 nsiproxy - ok
16:25:54.0629 3576 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
16:25:54.0673 3576 Ntfs - ok
16:25:54.0731 3576 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
16:25:54.0734 3576 Null - ok
16:25:54.0840 3576 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
16:25:54.0845 3576 nvraid - ok
16:25:54.0929 3576 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
16:25:54.0934 3576 nvstor - ok
16:25:55.0000 3576 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
16:25:55.0004 3576 nv_agp - ok
16:25:55.0094 3576 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
16:25:55.0097 3576 ohci1394 - ok
16:25:55.0173 3576 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
16:25:55.0176 3576 Parport - ok
16:25:55.0245 3576 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
16:25:55.0249 3576 partmgr - ok
16:25:55.0310 3576 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
16:25:55.0315 3576 pci - ok
16:25:55.0372 3576 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
16:25:55.0374 3576 pciide - ok
16:25:55.0424 3576 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
16:25:55.0429 3576 pcmcia - ok
16:25:55.0476 3576 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
16:25:55.0479 3576 pcw - ok
16:25:55.0531 3576 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
16:25:55.0553 3576 PEAUTH - ok
16:25:55.0702 3576 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
16:25:55.0705 3576 PptpMiniport - ok
16:25:55.0760 3576 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
16:25:55.0763 3576 Processor - ok
16:25:55.0848 3576 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
16:25:55.0853 3576 Psched - ok
16:25:55.0947 3576 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
16:25:55.0980 3576 ql2300 - ok
16:25:56.0074 3576 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
16:25:56.0079 3576 ql40xx - ok
16:25:56.0118 3576 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
16:25:56.0121 3576 QWAVEdrv - ok
16:25:56.0161 3576 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
16:25:56.0164 3576 RasAcd - ok
16:25:56.0224 3576 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
16:25:56.0227 3576 RasAgileVpn - ok
16:25:56.0292 3576 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:25:56.0295 3576 Rasl2tp - ok
16:25:56.0358 3576 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
16:25:56.0361 3576 RasPppoe - ok
16:25:56.0420 3576 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
16:25:56.0423 3576 RasSstp - ok
16:25:56.0493 3576 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
16:25:56.0499 3576 rdbss - ok
16:25:56.0543 3576 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
16:25:56.0546 3576 rdpbus - ok
16:25:56.0588 3576 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:25:56.0590 3576 RDPCDD - ok
16:25:56.0625 3576 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
16:25:56.0629 3576 RDPENCDD - ok
16:25:56.0697 3576 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
16:25:56.0700 3576 RDPREFMP - ok
16:25:56.0767 3576 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
16:25:56.0773 3576 RDPWD - ok
16:25:56.0851 3576 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
16:25:56.0857 3576 rdyboost - ok
16:25:56.0953 3576 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
16:25:56.0956 3576 rspndr - ok
16:25:57.0021 3576 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
16:25:57.0024 3576 sbp2port - ok
16:25:57.0096 3576 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
16:25:57.0099 3576 scfilter - ok
16:25:57.0161 3576 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
16:25:57.0164 3576 sdbus - ok
16:25:57.0248 3576 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:25:57.0251 3576 secdrv - ok
16:25:57.0368 3576 SeratoUsb (37d531579fec9e7b6123816d47918d53) C:\Windows\system32\Drivers\SeratoUsb.sys
16:25:57.0371 3576 SeratoUsb - ok
16:25:57.0446 3576 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
16:25:57.0449 3576 Serenum - ok
16:25:57.0489 3576 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
16:25:57.0493 3576 Serial - ok
16:25:57.0572 3576 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
16:25:57.0575 3576 sermouse - ok
16:25:57.0655 3576 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
16:25:57.0658 3576 sffdisk - ok
16:25:57.0696 3576 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
16:25:57.0699 3576 sffp_mmc - ok
16:25:57.0743 3576 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
16:25:57.0746 3576 sffp_sd - ok
16:25:57.0795 3576 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
16:25:57.0798 3576 sfloppy - ok
16:25:57.0850 3576 SiSGbeLH (1bc348cf6baa90ec8e533ef6e6a69933) C:\Windows\system32\DRIVERS\SiSG664.sys
16:25:57.0854 3576 SiSGbeLH - ok
16:25:57.0901 3576 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:25:57.0905 3576 SiSRaid2 - ok
16:25:57.0956 3576 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
16:25:57.0960 3576 SiSRaid4 - ok
16:25:58.0044 3576 SL2Usb (315d3998c7d5a66c2bf13b4cea1feeee) C:\Windows\system32\Drivers\SL2Usb.sys
16:25:58.0048 3576 SL2Usb - ok
16:25:58.0099 3576 SL2UsbNoSSL (6f6252cd0aee8280d4adc801a209b5a1) C:\Windows\system32\Drivers\SL2UsbNoSSL.sys
16:25:58.0103 3576 SL2UsbNoSSL - ok
16:25:58.0172 3576 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
16:25:58.0176 3576 Smb - ok
16:25:58.0308 3576 SNP2UVC (7aec460dbdd193680f0e77724e40e7b6) C:\Windows\system32\DRIVERS\snp2uvc.sys
16:25:58.0350 3576 SNP2UVC - ok
16:25:58.0452 3576 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
16:25:58.0455 3576 spldr - ok
16:25:58.0532 3576 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
16:25:58.0540 3576 srv - ok
16:25:58.0609 3576 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
16:25:58.0616 3576 srv2 - ok
16:25:58.0656 3576 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
16:25:58.0662 3576 srvnet - ok
16:25:58.0726 3576 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
16:25:58.0730 3576 stexstor - ok
16:25:58.0830 3576 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
16:25:58.0833 3576 StillCam - ok
16:25:58.0907 3576 strmdrvl (d616a5f2f1cb3afd437f867d2edd9e46) C:\Windows\system32\Drivers\strmdrvl.sys
16:25:58.0912 3576 strmdrvl - ok
16:25:58.0993 3576 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
16:25:58.0997 3576 swenum - ok
16:25:59.0194 3576 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
16:25:59.0239 3576 Tcpip - ok
16:25:59.0327 3576 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
16:25:59.0339 3576 TCPIP6 - ok
16:25:59.0436 3576 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
16:25:59.0440 3576 tcpipreg - ok
16:25:59.0501 3576 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
16:25:59.0504 3576 TDPIPE - ok
16:25:59.0549 3576 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
16:25:59.0552 3576 TDTCP - ok
16:25:59.0610 3576 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
16:25:59.0614 3576 tdx - ok
16:25:59.0685 3576 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
16:25:59.0688 3576 TermDD - ok
16:25:59.0813 3576 Tpkd (c676b0f52f2b6483afb88f79cabb011e) C:\Windows\system32\drivers\Tpkd.sys
16:25:59.0817 3576 Tpkd - ok
16:25:59.0885 3576 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:25:59.0888 3576 tssecsrv - ok
16:25:59.0966 3576 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
16:25:59.0969 3576 TsUsbFlt - ok
16:26:00.0075 3576 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
16:26:00.0079 3576 tunnel - ok
16:26:00.0133 3576 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
16:26:00.0137 3576 uagp35 - ok
16:26:00.0212 3576 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
16:26:00.0219 3576 udfs - ok
16:26:00.0299 3576 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
16:26:00.0302 3576 uliagpkx - ok
16:26:00.0380 3576 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
16:26:00.0383 3576 umbus - ok
16:26:00.0445 3576 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
16:26:00.0448 3576 UmPass - ok
16:26:00.0571 3576 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
16:26:00.0576 3576 USBAAPL64 - ok
16:26:00.0672 3576 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
16:26:00.0676 3576 usbaudio - ok
16:26:00.0735 3576 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
16:26:00.0740 3576 usbccgp - ok
16:26:00.0785 3576 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
16:26:00.0789 3576 usbcir - ok
16:26:00.0834 3576 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
16:26:00.0838 3576 usbehci - ok
16:26:00.0894 3576 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
16:26:00.0901 3576 usbhub - ok
16:26:00.0941 3576 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
16:26:00.0944 3576 usbohci - ok
16:26:01.0003 3576 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
16:26:01.0006 3576 usbprint - ok
16:26:01.0073 3576 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:26:01.0077 3576 USBSTOR - ok
16:26:01.0140 3576 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
16:26:01.0143 3576 usbuhci - ok
16:26:01.0237 3576 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
16:26:01.0242 3576 usbvideo - ok
16:26:01.0315 3576 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
16:26:01.0318 3576 vdrvroot - ok
16:26:01.0385 3576 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
16:26:01.0388 3576 vga - ok
16:26:01.0429 3576 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
16:26:01.0432 3576 VgaSave - ok
16:26:01.0504 3576 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
16:26:01.0510 3576 vhdmp - ok
16:26:01.0580 3576 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
16:26:01.0583 3576 viaide - ok
16:26:01.0650 3576 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
16:26:01.0662 3576 volmgr - ok
16:26:01.0732 3576 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
16:26:01.0739 3576 volmgrx - ok
16:26:01.0811 3576 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
16:26:01.0817 3576 volsnap - ok
16:26:01.0878 3576 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
16:26:01.0883 3576 vsmraid - ok
16:26:01.0917 3576 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
16:26:01.0920 3576 vwifibus - ok
16:26:01.0948 3576 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
16:26:01.0952 3576 vwififlt - ok
16:26:02.0004 3576 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
16:26:02.0007 3576 vwifimp - ok
16:26:02.0058 3576 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
16:26:02.0061 3576 WacomPen - ok
16:26:02.0150 3576 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:26:02.0154 3576 WANARP - ok
16:26:02.0158 3576 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
16:26:02.0160 3576 Wanarpv6 - ok
16:26:02.0268 3576 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
16:26:02.0271 3576 Wd - ok
16:26:02.0312 3576 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
16:26:02.0336 3576 Wdf01000 - ok
16:26:02.0447 3576 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
16:26:02.0450 3576 WfpLwf - ok
16:26:02.0490 3576 WimFltr (52ded146e4797e6ccf94799e8e22bb2a) C:\Windows\system32\DRIVERS\wimfltr.sys
16:26:02.0495 3576 WimFltr - ok
16:26:02.0534 3576 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
16:26:02.0537 3576 WIMMount - ok
16:26:02.0664 3576 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
16:26:02.0668 3576 WinUsb - ok
16:26:02.0740 3576 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
16:26:02.0742 3576 WmiAcpi - ok
16:26:02.0819 3576 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
16:26:02.0822 3576 ws2ifsl - ok
16:26:03.0042 3576 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
16:26:03.0046 3576 WudfPf - ok
16:26:03.0100 3576 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:26:03.0105 3576 WUDFRd - ok
16:26:03.0155 3576 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
16:26:03.0497 3576 \Device\Harddisk0\DR0 - ok
16:26:03.0500 3576 Boot (0x1200) (35bcf625dad1a1dd1d8ec50ce6454a0a) \Device\Harddisk0\DR0\Partition0
16:26:03.0502 3576 \Device\Harddisk0\DR0\Partition0 - ok
16:26:03.0503 3576 ============================================================
16:26:03.0503 3576 Scan finished
16:26:03.0503 3576 ============================================================
16:26:03.0513 1944 Detected object count: 0
16:26:03.0513 1944 Actual detected object count: 0



And the aswMBR log

swMBR version 0.9.9.1532 Copyright© 2011 AVAST Software
Run date: 2012-02-14 16:28:18
-----------------------------
16:28:18.621 OS Version: Windows x64 6.1.7601 Service Pack 1
16:28:18.622 Number of processors: 4 586 0x2502
16:28:18.623 ComputerName: STEVES UserName:
16:28:22.162 Initialize success
16:28:22.729 AVAST engine defs: 12021401
16:29:11.198 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:29:11.200 Disk 0 Vendor: ST950032 0002 Size: 476940MB BusType: 3
16:29:11.216 Disk 0 MBR read successfully
16:29:11.218 Disk 0 MBR scan
16:29:11.221 Disk 0 Windows VISTA default MBR code
16:29:11.227 Disk 0 Partition 1 00 1C Hidd FAT32 LBA MSDOS5.0 14997 MB offset 2048
16:29:11.239 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 461940 MB offset 30716280
16:29:11.242 Service scanning
16:29:12.611 Modules scanning
16:29:12.615 Disk 0 trace - called modules:
16:29:12.676 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
16:29:12.680 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c73060]
16:29:12.684 3 CLASSPNP.SYS[fffff88001b8443f] -> nt!IofCallDriver -> [0xfffffa80049d9a10]
16:29:12.688 5 ACPI.sys[fffff88000e0b7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e4050]
16:29:14.184 AVAST engine scan C:\Windows
16:29:17.409 AVAST engine scan C:\Windows\system32
16:31:58.918 AVAST engine scan C:\Windows\system32\drivers
16:32:14.588 AVAST engine scan C:\Users\Dj Stevie Beats
17:06:40.145 File: C:\Users\Dj Stevie Beats\AppData\Local\dplaysvr.exe **HIDDEN**
17:06:40.875 File: C:\Users\Dj Stevie Beats\AppData\Local\dplayx.dll **HIDDEN**
17:07:22.755 AVAST engine scan C:\ProgramData
17:11:43.750 Scan finished successfully
00:15:57.351 Disk 0 MBR has been saved successfully to "C:\Users\Dj Stevie Beats\Documents\MBR.dat"
00:15:57.355 The log file has been saved successfully to "C:\Users\Dj Stevie Beats\Documents\aswMBR.txt"


thanks again!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:06 AM

Posted 15 February 2012 - 09:03 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Post the clean log

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 Dj Stevie Beats

Dj Stevie Beats
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 20 February 2012 - 02:02 AM

Hey sorry for the delay! Busy weekend...

ok

malwarebytes:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.02.20.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Dj Stevie Beats :: STEVES [administrator]

Protection: Disabled

2/19/2012 11:55:29 PM
mbam-log-2012-02-19 (23-55-29).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 495383
Time elapsed: 2 hour(s), 1 minute(s), 48 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.FakeAlert) -> Data: C:\Users\Dj Stevie Beats\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|dplaysvr (Trojan.FakeAlert) -> Data: C:\Users\Dj Stevie Beats\AppData\Local\dplaysvr.exe -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\Dj Stevie Beats\AppData\Local\dplaysvr.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Users\Dj Stevie Beats\AppData\Local\dplayx.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Dj Stevie Beats\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\7ba2086a-3d7013eb (Trojan.Downloader) -> Quarantined and deleted successfully.

(end)












ESET online scanner:

C:\Users\Dj Stevie Beats\AppData\Local\dplaysvr.exe a variant of Win32/Kryptik.AAQY trojan
C:\Users\Dj Stevie Beats\AppData\Local\dplayx.dll a variant of Win32/Kryptik.AAQY trojan
C:\Users\Dj Stevie Beats\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4B5D6LOA\cpapage[1].htm HTML/ScrInject.B.Gen virus
C:\Users\Dj Stevie Beats\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\42\7ba2086a-3d7013eb Win32/TrojanDownloader.Vespula.AF trojan















MiniToolBox:

MiniToolBox by Farbar Version: 18-01-2012
Ran by Dj Stevie Beats (administrator) on 19-02-2012 at 23:56:35
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


94.63.147.22 www.google.com
94.63.147.23 www.bing.com


========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
JMicron PCI Express Gigabit Ethernet Adapter = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : steves
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 3E-4B-D6-A3-43-0E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : JMicron PCI Express Gigabit Ethernet Adapter
Physical Address. . . . . . . . . : 48-5B-39-2D-21-64
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 1C-4B-D6-A3-43-0E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e4c1:72f5:ef73:e00b%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, February 19, 2012 11:44:17 PM
Lease Expires . . . . . . . . . . : Monday, February 20, 2012 11:44:22 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236735446
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-3A-BA-2E-1C-4B-D6-A3-43-0E
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{0CBBCF11-22E2-4A51-BDAE-DDD5ABAD1F30}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:20dc:11e9:e708:a33e(Preferred)
Link-local IPv6 Address . . . . . : fe80::20dc:11e9:e708:a33e%17(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{1A775443-127B-470A-9F99-3BC72EA638F3}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{BB52F214-46A1-477D-940D-9EC2E2549C10}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.225.106
74.125.225.99
74.125.225.111
74.125.225.102
74.125.225.101
74.125.225.98
74.125.225.103
74.125.225.108
74.125.225.104
74.125.225.110
74.125.225.96
74.125.225.109
74.125.225.97
74.125.225.105
74.125.225.107
74.125.225.100


Pinging google.com [74.125.225.111] with 32 bytes of data:
Reply from 74.125.225.111: bytes=32 time=31ms TTL=49
Reply from 74.125.225.111: bytes=32 time=26ms TTL=49

Ping statistics for 74.125.225.111:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 31ms, Average = 28ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
98.139.127.62
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=59ms TTL=44
Reply from 209.191.122.70: bytes=32 time=55ms TTL=44

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 55ms, Maximum = 59ms, Average = 57ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...3e 4b d6 a3 43 0e ......Microsoft Virtual WiFi Miniport Adapter
11...48 5b 39 2d 21 64 ......JMicron PCI Express Gigabit Ethernet Adapter
10...1c 4b d6 a3 43 0e ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
32...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 281
192.168.1.6 255.255.255.255 On-link 192.168.1.6 281
192.168.1.255 255.255.255.255 On-link 192.168.1.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
17 58 ::/0 On-link
1 306 ::1/128 On-link
17 58 2001::/32 On-link
17 306 2001:0:4137:9e76:20dc:11e9:e708:a33e/128
On-link
10 281 fe80::/64 On-link
17 306 fe80::/64 On-link
17 306 fe80::20dc:11e9:e708:a33e/128
On-link
10 281 fe80::e4c1:72f5:ef73:e00b/128
On-link
1 306 ff00::/8 On-link
17 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/19/2012 11:53:47 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/14/2012 02:21:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 44482453

Error: (02/14/2012 02:21:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 44482453

Error: (02/14/2012 02:21:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/14/2012 01:59:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6100

Error: (02/14/2012 01:59:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6100

Error: (02/14/2012 01:59:53 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/14/2012 01:59:52 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5039

Error: (02/14/2012 01:59:52 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5039

Error: (02/14/2012 01:59:52 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (02/19/2012 11:44:13 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/18/2012 09:50:25 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/17/2012 08:54:11 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/16/2012 09:50:17 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/16/2012 09:50:14 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:33:53 AM on ?2/?15/?2012 was unexpected.

Error: (02/13/2012 07:05:34 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/12/2012 02:35:24 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/11/2012 10:01:28 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/10/2012 09:03:54 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.

Error: (02/09/2012 09:59:09 PM) (Source: Service Control Manager) (User: )
Description: The ATKGFNEX Service service depends the following service: ASMMAP64. This service might not be installed.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Acrobat.com (Version: 2.3.0)
Acrobat.com (Version: 2.3.0.0)
Adobe AIR (Version: 1.5.3.9130)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.55)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.55)
Adobe Flash Professional CS5 (Version: 11.0)
Adobe Reader 9.4.6 MUI (Version: 9.4.6)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
ASIO4ALL (Version: 2.10)
ASUS AI Recovery (Version: 1.0.8)
ASUS MultiFrame (Version: 1.0.0021)
ASUS Virtual Camera (Version: 1.0.19)
ATK Package (Version: 1.0.0001)
Audacity 1.3.13
avast! Free Antivirus (Version: 6.0.1289.0)
Avid Audio Drivers (x64) (Version: 8.0.4)
Avid Pro Tools Creative Collection 8.0.4 (Version: 8.0.4)
Avid Pro Tools LE 8.0.4 (Version: 8.0.4)
Bonjour (Version: 3.0.0.10)
Choice Guard (Version: 1.2.87.0)
Click to Call with Skype (Version: 5.5.8013)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Digidesign ElevenRack Driver 1.0.8 (x64) (Version: 1.0.8)
Dropbox (Version: 1.1.45)
ESET Online Scanner v3
ETDWare PS/2-x64 7.0.5.9_WHQL
Fast Boot (Version: 1.0.5)
FileZilla Client 3.3.5.1 (Version: 3.3.5.1)
FL Studio 10
Free DigiRack Plug-Ins 8.0.3 (Version: 8.0.3)
FrostWire 4.21.3 (Version: 4.21.3.0)
FrostWire 5.2.11 (Version: 5.2.11.0)
HiJackThis (Version: 1.0.0)
HTC Driver Installer (Version: 2.0.7.016)
HTC Sync (Version: 2.0.31)
iCloud (Version: 1.0.2.17)
IL Download Manager
Intel® Control Center (Version: 1.2.1.1007)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2021)
Intel® Management Engine Components (Version: 6.0.0.1179)
Interlok driver setup x64 (Version: 5.8.13)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iPhoneBrowser (Version: 1.9.3)
ITCH (Version: 2.0.1)
iTunes (Version: 10.5.2.11)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (Version: 6.0.240)
JMicron Ethernet Adapter NDIS Driver (Version: 6.0.14.11)
JMicron Flash Media Controller Driver (Version: 1.0.33.2)
Junk Mail filter update (Version: 14.0.8050.1202)
Live 8.2.2
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
McAfee Security Scan Plus (Version: 2.0.181.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Easy Assist v2 (Version: 8.1.6416.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Search Enhancement Pack (Version: 3.0.127.0)
Microsoft Silverlight (Version: 4.0.50917.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Works (Version: 9.7.0621)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Mozilla Firefox (3.6.23) (Version: 3.6.23 (en-US))
Mozilla Firefox 8.0 (x86 en-US) (Version: 8.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
Music Manager
Native Instruments Massive (Version: 1.3.0.2050)
Native Instruments Service Center (Version: 2.2.6.676)
Paint.NET v3.5.10 (Version: 3.60.0)
PDF Settings CS5 (Version: 10.0)
PremiumSoft Navicat Lite 9.1
QuickTime (Version: 7.71.80.42)
Rane SL 2 (ver. 1.0.0a6)
Scratch Live 2.3.3 (18) (Version: 2.3.3)
Skype™ 5.5 (Version: 5.5.113)
Sothink SWF Decompiler (Version: 4.5)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
USB 2.0 1.3M UVC WebCam
Windows Live Call (Version: 14.0.8050.1202)
Windows Live Communications Platform (Version: 14.0.8050.1202)
Windows Live Essentials (Version: 14.0.8050.1202)
Windows Live Family Safety (Version: 14.0.8052.1208)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8050.1202)
Windows Live Messenger (Version: 14.0.8050.1202)
Windows Live Photo Gallery (Version: 14.0.8051.1204)
Windows Live Sync (Version: 14.0.8050.1202)
Windows Live Toolbar (Version: 14.0.8052.1208)
Windows Live Writer (Version: 14.0.8050.1202)
Windows Media Center Add-in for Flash (Version: 4.1.2.0)
Windows Media Center Add-in for Silverlight (Version: 4.7.3.0)
WinFlash (Version: 2.29.0)
winpwn-2.5 2.5.0.0 (Version: 2.5.0.0)
WinRAR archiver
WinSCP 4.2.9 (Version: 4.2.9)

========================= Memory info: ===================================

Percentage of memory in use: 47%
Total physical RAM: 3884.51 MB
Available physical RAM: 2043.32 MB
Total Pagefile: 7767.22 MB
Available Pagefile: 5743.01 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.17 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.11 GB) (Free:271.15 GB) NTFS

========================= Users: ========================================

User accounts for \\STEVES

45DC841774B543A6AB81 Administrator Dj Stevie Beats
Guest


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:06 AM

Posted 20 February 2012 - 06:07 AM

Launch Malwarebytes once again,click on QUARANTINE TAB

Select all the infections and click on DELETE ALL

Click on SCANNER tab and perform FULL SCAN again,make sure it comes out clean

Your HOSTS file has been hijacked

Download

http://go.microsoft.com/?linkid=9668866

Run the fixit

Restart the PC

Download

FSS

Checkmark

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update

Click on "Scan".
Please copy and paste the log to your reply.

Let me know if you still have redirects

good luck

#7 Dj Stevie Beats

Dj Stevie Beats
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:01:06 AM

Posted 21 February 2012 - 02:45 AM

Ahhh thanks so much... Everything is back to normal!!!

Farbar Service Scanner Version: 14-02-2012
Ran by Dj Stevie Beats (administrator) on 21-02-2012 at 02:37:46
Running from "C:\Users\Dj Stevie Beats\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YPWH0ZVH"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv: "C:\Windows\system32\wuaueng.dll".


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-14 14:43] - [2011-12-27 22:59] - 0498688 ____A (Microsoft Corporation) 1C7857B62DE5994A75B054A9FD4C3825

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


Thanks again!!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:06 AM

Posted 21 February 2012 - 01:01 PM

Download

Update fix

Run the fixit

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Uninstall your java update from add or remove programs and download latest from here

http://www.java.com/en/


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 21 February 2012 - 01:02 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users