Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirec,t tried Mbam


  • Please log in to reply
15 replies to this topic

#1 Nashville_Amber

Nashville_Amber

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 18 February 2012 - 04:38 PM

Hi, Thanks in advance for your time.

I'm using Windows 7. I got a google redirect virus. I've run MBAM, Spy Bot, TdsKiller. When I ran Windows defender it saw, but didn't remove the alureon.a trojan.

Thanks,
Amber

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 18 February 2012 - 11:39 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Restart your PC

Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 12:11 AM

My os is 64 bit. Shall I just skip that part?
Thanks

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 08:59 AM

yes run the other tools

good luck

#5 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 09:55 AM

Here they are:
reports
23:13:58.0003 5812 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
23:13:58.0393 5812 ============================================================
23:13:58.0393 5812 Current date / time: 2012/02/18 23:13:58.0393
23:13:58.0393 5812 SystemInfo:
23:13:58.0393 5812
23:13:58.0393 5812 OS Version: 6.1.7601 ServicePack: 1.0
23:13:58.0393 5812 Product type: Workstation
23:13:58.0393 5812 ComputerName: AMBER-PC
23:13:58.0393 5812 UserName: Amber
23:13:58.0393 5812 Windows directory: C:\Windows
23:13:58.0393 5812 System windows directory: C:\Windows
23:13:58.0393 5812 Running under WOW64
23:13:58.0393 5812 Processor architecture: Intel x64
23:13:58.0393 5812 Number of processors: 4
23:13:58.0393 5812 Page size: 0x1000
23:13:58.0393 5812 Boot type: Normal boot
23:13:58.0393 5812 ============================================================
23:13:59.0438 5812 Drive \Device\Harddisk0\DR0 - Size: 0x45DD826000 (279.46 Gb), SectorSize: 0x200, Cylinders: 0x8E81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:13:59.0438 5812 \Device\Harddisk0\DR0:
23:13:59.0438 5812 MBR used
23:13:59.0454 5812 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x22EEAD02
23:13:59.0469 5812 Initialize success
23:13:59.0469 5812 ============================================================
23:14:43.0196 6432 ============================================================
23:14:43.0196 6432 Scan started
23:14:43.0196 6432 Mode: Manual; TDLFS;
23:14:43.0196 6432 ============================================================
23:14:44.0397 6432 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
23:14:44.0428 6432 1394ohci - ok
23:14:44.0475 6432 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
23:14:44.0491 6432 ACPI - ok
23:14:44.0522 6432 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
23:14:44.0522 6432 AcpiPmi - ok
23:14:44.0584 6432 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
23:14:44.0600 6432 adp94xx - ok
23:14:44.0631 6432 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
23:14:44.0631 6432 adpahci - ok
23:14:44.0678 6432 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
23:14:44.0678 6432 adpu320 - ok
23:14:44.0756 6432 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
23:14:44.0772 6432 AFD - ok
23:14:44.0818 6432 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
23:14:44.0818 6432 agp440 - ok
23:14:44.0865 6432 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
23:14:44.0865 6432 aliide - ok
23:14:44.0928 6432 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
23:14:44.0928 6432 amdide - ok
23:14:44.0959 6432 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
23:14:44.0974 6432 amdiox64 - ok
23:14:45.0021 6432 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
23:14:45.0021 6432 AmdK8 - ok
23:14:45.0271 6432 amdkmdag (dcc8177244fe79c61c4e73c65e63922a) C:\Windows\system32\DRIVERS\atikmdag.sys
23:14:45.0489 6432 amdkmdag - ok
23:14:45.0536 6432 amdkmdap (7fe67d107329dc2cf89136a8e19bceb7) C:\Windows\system32\DRIVERS\atikmpag.sys
23:14:45.0552 6432 amdkmdap - ok
23:14:45.0598 6432 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
23:14:45.0598 6432 AmdPPM - ok
23:14:45.0645 6432 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
23:14:45.0676 6432 amdsata - ok
23:14:45.0692 6432 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
23:14:45.0708 6432 amdsbs - ok
23:14:45.0739 6432 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
23:14:45.0739 6432 amdxata - ok
23:14:45.0817 6432 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
23:14:45.0832 6432 AppID - ok
23:14:45.0864 6432 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
23:14:45.0879 6432 arc - ok
23:14:45.0910 6432 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
23:14:45.0910 6432 arcsas - ok
23:14:45.0942 6432 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
23:14:45.0942 6432 AsyncMac - ok
23:14:45.0973 6432 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
23:14:45.0973 6432 atapi - ok
23:14:46.0035 6432 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
23:14:46.0051 6432 AtiHDAudioService - ok
23:14:46.0285 6432 atikmdag (dcc8177244fe79c61c4e73c65e63922a) C:\Windows\system32\DRIVERS\atikmdag.sys
23:14:46.0347 6432 atikmdag - ok
23:14:46.0441 6432 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
23:14:46.0456 6432 AVGIDSDriver - ok
23:14:46.0503 6432 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
23:14:46.0503 6432 AVGIDSEH - ok
23:14:46.0534 6432 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
23:14:46.0550 6432 AVGIDSFilter - ok
23:14:46.0597 6432 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
23:14:46.0612 6432 Avgldx64 - ok
23:14:46.0644 6432 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
23:14:46.0644 6432 Avgmfx64 - ok
23:14:46.0722 6432 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
23:14:46.0722 6432 Avgrkx64 - ok
23:14:46.0753 6432 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
23:14:46.0753 6432 Avgtdia - ok
23:14:46.0846 6432 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
23:14:46.0862 6432 b06bdrv - ok
23:14:46.0909 6432 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
23:14:46.0924 6432 b57nd60a - ok
23:14:46.0987 6432 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
23:14:46.0987 6432 Beep - ok
23:14:47.0034 6432 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
23:14:47.0034 6432 blbdrive - ok
23:14:47.0096 6432 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
23:14:47.0096 6432 bowser - ok
23:14:47.0143 6432 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:14:47.0143 6432 BrFiltLo - ok
23:14:47.0158 6432 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:14:47.0158 6432 BrFiltUp - ok
23:14:47.0190 6432 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
23:14:47.0205 6432 Brserid - ok
23:14:47.0221 6432 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
23:14:47.0221 6432 BrSerWdm - ok
23:14:47.0236 6432 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:14:47.0236 6432 BrUsbMdm - ok
23:14:47.0268 6432 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
23:14:47.0268 6432 BrUsbSer - ok
23:14:47.0299 6432 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
23:14:47.0299 6432 BTHMODEM - ok
23:14:47.0361 6432 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
23:14:47.0361 6432 cdfs - ok
23:14:47.0439 6432 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
23:14:47.0439 6432 cdrom - ok
23:14:47.0470 6432 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
23:14:47.0470 6432 circlass - ok
23:14:47.0517 6432 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
23:14:47.0533 6432 CLFS - ok
23:14:47.0580 6432 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
23:14:47.0580 6432 CmBatt - ok
23:14:47.0611 6432 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
23:14:47.0611 6432 cmdide - ok
23:14:47.0658 6432 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
23:14:47.0673 6432 CNG - ok
23:14:47.0689 6432 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
23:14:47.0689 6432 Compbatt - ok
23:14:47.0751 6432 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
23:14:47.0751 6432 CompositeBus - ok
23:14:47.0876 6432 cpuz130 - ok
23:14:47.0923 6432 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
23:14:47.0923 6432 crcdisk - ok
23:14:48.0001 6432 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
23:14:48.0001 6432 DfsC - ok
23:14:48.0032 6432 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
23:14:48.0032 6432 discache - ok
23:14:48.0079 6432 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
23:14:48.0079 6432 Disk - ok
23:14:48.0141 6432 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
23:14:48.0141 6432 Dot4 - ok
23:14:48.0188 6432 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
23:14:48.0188 6432 Dot4Print - ok
23:14:48.0219 6432 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
23:14:48.0219 6432 dot4usb - ok
23:14:48.0266 6432 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
23:14:48.0266 6432 drmkaud - ok
23:14:48.0360 6432 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
23:14:48.0375 6432 DXGKrnl - ok
23:14:48.0500 6432 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
23:14:48.0594 6432 ebdrv - ok
23:14:48.0672 6432 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
23:14:48.0672 6432 elxstor - ok
23:14:48.0765 6432 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
23:14:48.0765 6432 ErrDev - ok
23:14:48.0812 6432 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
23:14:48.0828 6432 exfat - ok
23:14:48.0859 6432 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
23:14:48.0874 6432 fastfat - ok
23:14:48.0937 6432 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
23:14:48.0937 6432 fdc - ok
23:14:48.0984 6432 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
23:14:48.0984 6432 FileInfo - ok
23:14:49.0015 6432 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
23:14:49.0015 6432 Filetrace - ok
23:14:49.0030 6432 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
23:14:49.0030 6432 flpydisk - ok
23:14:49.0093 6432 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
23:14:49.0093 6432 FltMgr - ok
23:14:49.0140 6432 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
23:14:49.0140 6432 FsDepends - ok
23:14:49.0202 6432 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
23:14:49.0202 6432 fssfltr - ok
23:14:49.0233 6432 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
23:14:49.0233 6432 Fs_Rec - ok
23:14:49.0296 6432 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
23:14:49.0296 6432 fvevol - ok
23:14:49.0327 6432 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:14:49.0342 6432 gagp30kx - ok
23:14:49.0358 6432 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
23:14:49.0374 6432 hcw85cir - ok
23:14:49.0420 6432 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
23:14:49.0436 6432 HdAudAddService - ok
23:14:49.0514 6432 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
23:14:49.0514 6432 HDAudBus - ok
23:14:49.0545 6432 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
23:14:49.0545 6432 HidBatt - ok
23:14:49.0576 6432 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
23:14:49.0592 6432 HidBth - ok
23:14:49.0623 6432 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
23:14:49.0623 6432 HidIr - ok
23:14:49.0701 6432 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
23:14:49.0701 6432 HidUsb - ok
23:14:49.0748 6432 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
23:14:49.0764 6432 HpSAMD - ok
23:14:49.0810 6432 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
23:14:49.0826 6432 HTTP - ok
23:14:49.0873 6432 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
23:14:49.0873 6432 hwpolicy - ok
23:14:49.0920 6432 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
23:14:49.0920 6432 i8042prt - ok
23:14:49.0951 6432 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
23:14:49.0966 6432 iaStorV - ok
23:14:49.0998 6432 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
23:14:49.0998 6432 iirsp - ok
23:14:50.0060 6432 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
23:14:50.0076 6432 intelide - ok
23:14:50.0107 6432 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
23:14:50.0107 6432 intelppm - ok
23:14:50.0169 6432 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:14:50.0169 6432 IpFilterDriver - ok
23:14:50.0200 6432 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
23:14:50.0200 6432 IPMIDRV - ok
23:14:50.0232 6432 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
23:14:50.0232 6432 IPNAT - ok
23:14:50.0278 6432 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
23:14:50.0278 6432 IRENUM - ok
23:14:50.0294 6432 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
23:14:50.0310 6432 isapnp - ok
23:14:50.0356 6432 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
23:14:50.0356 6432 iScsiPrt - ok
23:14:50.0403 6432 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
23:14:50.0403 6432 kbdclass - ok
23:14:50.0466 6432 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
23:14:50.0466 6432 kbdhid - ok
23:14:50.0528 6432 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
23:14:50.0528 6432 KSecDD - ok
23:14:50.0559 6432 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
23:14:50.0559 6432 KSecPkg - ok
23:14:50.0606 6432 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
23:14:50.0606 6432 ksthunk - ok
23:14:50.0684 6432 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
23:14:50.0684 6432 lltdio - ok
23:14:50.0746 6432 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:14:50.0746 6432 LSI_FC - ok
23:14:50.0778 6432 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:14:50.0778 6432 LSI_SAS - ok
23:14:50.0824 6432 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:14:50.0824 6432 LSI_SAS2 - ok
23:14:50.0871 6432 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:14:50.0871 6432 LSI_SCSI - ok
23:14:50.0902 6432 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
23:14:50.0902 6432 luafv - ok
23:14:50.0934 6432 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
23:14:50.0934 6432 megasas - ok
23:14:50.0980 6432 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
23:14:50.0980 6432 MegaSR - ok
23:14:51.0027 6432 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
23:14:51.0027 6432 Modem - ok
23:14:51.0074 6432 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
23:14:51.0074 6432 monitor - ok
23:14:51.0121 6432 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
23:14:51.0136 6432 mouclass - ok
23:14:51.0168 6432 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
23:14:51.0168 6432 mouhid - ok
23:14:51.0214 6432 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
23:14:51.0214 6432 mountmgr - ok
23:14:51.0261 6432 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
23:14:51.0261 6432 mpio - ok
23:14:51.0292 6432 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
23:14:51.0292 6432 mpsdrv - ok
23:14:51.0339 6432 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
23:14:51.0339 6432 MRxDAV - ok
23:14:51.0386 6432 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:14:51.0402 6432 mrxsmb - ok
23:14:51.0464 6432 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:14:51.0480 6432 mrxsmb10 - ok
23:14:51.0526 6432 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:14:51.0526 6432 mrxsmb20 - ok
23:14:51.0573 6432 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
23:14:51.0573 6432 msahci - ok
23:14:51.0636 6432 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
23:14:51.0636 6432 msdsm - ok
23:14:51.0682 6432 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
23:14:51.0682 6432 Msfs - ok
23:14:51.0714 6432 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
23:14:51.0714 6432 mshidkmdf - ok
23:14:51.0745 6432 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
23:14:51.0760 6432 msisadrv - ok
23:14:51.0792 6432 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
23:14:51.0807 6432 MSKSSRV - ok
23:14:51.0807 6432 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
23:14:51.0823 6432 MSPCLOCK - ok
23:14:51.0854 6432 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
23:14:51.0854 6432 MSPQM - ok
23:14:51.0916 6432 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
23:14:51.0932 6432 MsRPC - ok
23:14:51.0979 6432 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
23:14:51.0979 6432 mssmbios - ok
23:14:51.0994 6432 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
23:14:51.0994 6432 MSTEE - ok
23:14:52.0026 6432 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
23:14:52.0026 6432 MTConfig - ok
23:14:52.0057 6432 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
23:14:52.0072 6432 Mup - ok
23:14:52.0119 6432 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
23:14:52.0119 6432 NativeWifiP - ok
23:14:52.0213 6432 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
23:14:52.0228 6432 NDIS - ok
23:14:52.0275 6432 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
23:14:52.0275 6432 NdisCap - ok
23:14:52.0322 6432 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
23:14:52.0322 6432 NdisTapi - ok
23:14:52.0369 6432 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
23:14:52.0369 6432 Ndisuio - ok
23:14:52.0416 6432 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
23:14:52.0416 6432 NdisWan - ok
23:14:52.0478 6432 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
23:14:52.0478 6432 NDProxy - ok
23:14:52.0556 6432 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
23:14:52.0556 6432 NetBIOS - ok
23:14:52.0603 6432 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
23:14:52.0603 6432 NetBT - ok
23:14:52.0665 6432 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
23:14:52.0681 6432 nfrd960 - ok
23:14:52.0712 6432 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
23:14:52.0712 6432 Npfs - ok
23:14:52.0759 6432 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
23:14:52.0759 6432 nsiproxy - ok
23:14:52.0852 6432 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
23:14:52.0899 6432 Ntfs - ok
23:14:53.0008 6432 NuidFltr (d4012918d3a3847b44b888d56bc095d6) C:\Windows\system32\DRIVERS\NuidFltr.sys
23:14:53.0024 6432 NuidFltr - ok
23:14:53.0071 6432 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
23:14:53.0071 6432 Null - ok
23:14:53.0133 6432 NVENETFD (a85b4f2ef3a7304a5399ef0526423040) C:\Windows\system32\DRIVERS\nvm62x64.sys
23:14:53.0149 6432 NVENETFD - ok
23:14:53.0196 6432 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
23:14:53.0196 6432 nvraid - ok
23:14:53.0227 6432 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
23:14:53.0227 6432 nvstor - ok
23:14:53.0274 6432 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
23:14:53.0305 6432 nv_agp - ok
23:14:53.0336 6432 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
23:14:53.0336 6432 ohci1394 - ok
23:14:53.0383 6432 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
23:14:53.0383 6432 Parport - ok
23:14:53.0430 6432 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
23:14:53.0430 6432 partmgr - ok
23:14:53.0461 6432 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
23:14:53.0461 6432 pci - ok
23:14:53.0492 6432 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
23:14:53.0492 6432 pciide - ok
23:14:53.0539 6432 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
23:14:53.0539 6432 pcmcia - ok
23:14:53.0586 6432 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
23:14:53.0586 6432 pcw - ok
23:14:53.0632 6432 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
23:14:53.0648 6432 PEAUTH - ok
23:14:53.0835 6432 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
23:14:53.0835 6432 PptpMiniport - ok
23:14:53.0866 6432 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
23:14:53.0866 6432 Processor - ok
23:14:53.0929 6432 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
23:14:53.0944 6432 Psched - ok
23:14:54.0007 6432 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
23:14:54.0085 6432 ql2300 - ok
23:14:54.0132 6432 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
23:14:54.0132 6432 ql40xx - ok
23:14:54.0163 6432 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
23:14:54.0163 6432 QWAVEdrv - ok
23:14:54.0178 6432 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
23:14:54.0194 6432 RasAcd - ok
23:14:54.0241 6432 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:14:54.0241 6432 RasAgileVpn - ok
23:14:54.0288 6432 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:14:54.0288 6432 Rasl2tp - ok
23:14:54.0334 6432 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
23:14:54.0334 6432 RasPppoe - ok
23:14:54.0381 6432 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
23:14:54.0381 6432 RasSstp - ok
23:14:54.0428 6432 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
23:14:54.0444 6432 rdbss - ok
23:14:54.0459 6432 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
23:14:54.0475 6432 rdpbus - ok
23:14:54.0490 6432 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:14:54.0490 6432 RDPCDD - ok
23:14:54.0537 6432 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
23:14:54.0537 6432 RDPENCDD - ok
23:14:54.0553 6432 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
23:14:54.0553 6432 RDPREFMP - ok
23:14:54.0615 6432 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
23:14:54.0631 6432 RDPWD - ok
23:14:54.0662 6432 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
23:14:54.0678 6432 rdyboost - ok
23:14:54.0740 6432 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\Windows\system32\Drivers\RimUsb_AMD64.sys
23:14:54.0740 6432 RimUsb - ok
23:14:54.0818 6432 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
23:14:54.0818 6432 rspndr - ok
23:14:54.0880 6432 RTL8167 (baefee35d27a5440d35092ce10267bec) C:\Windows\system32\DRIVERS\Rt64win7.sys
23:14:54.0880 6432 RTL8167 - ok
23:14:54.0912 6432 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
23:14:54.0927 6432 sbp2port - ok
23:14:55.0005 6432 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
23:14:55.0005 6432 scfilter - ok
23:14:55.0083 6432 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
23:14:55.0083 6432 secdrv - ok
23:14:55.0146 6432 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
23:14:55.0146 6432 Serenum - ok
23:14:55.0177 6432 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
23:14:55.0177 6432 Serial - ok
23:14:55.0208 6432 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
23:14:55.0208 6432 sermouse - ok
23:14:55.0302 6432 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
23:14:55.0302 6432 sffdisk - ok
23:14:55.0364 6432 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
23:14:55.0364 6432 sffp_mmc - ok
23:14:55.0426 6432 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
23:14:55.0442 6432 sffp_sd - ok
23:14:55.0473 6432 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
23:14:55.0489 6432 sfloppy - ok
23:14:55.0520 6432 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:14:55.0520 6432 SiSRaid2 - ok
23:14:55.0551 6432 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
23:14:55.0551 6432 SiSRaid4 - ok
23:14:55.0614 6432 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
23:14:55.0614 6432 Smb - ok
23:14:55.0660 6432 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
23:14:55.0660 6432 spldr - ok
23:14:55.0723 6432 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
23:14:55.0754 6432 srv - ok
23:14:55.0801 6432 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
23:14:55.0801 6432 srv2 - ok
23:14:55.0832 6432 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
23:14:55.0832 6432 srvnet - ok
23:14:55.0879 6432 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
23:14:55.0879 6432 stexstor - ok
23:14:55.0926 6432 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
23:14:55.0941 6432 swenum - ok
23:14:56.0035 6432 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
23:14:56.0113 6432 Tcpip - ok
23:14:56.0269 6432 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
23:14:56.0284 6432 TCPIP6 - ok
23:14:56.0331 6432 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
23:14:56.0331 6432 tcpipreg - ok
23:14:56.0378 6432 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
23:14:56.0378 6432 TDPIPE - ok
23:14:56.0409 6432 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
23:14:56.0409 6432 TDTCP - ok
23:14:56.0472 6432 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
23:14:56.0487 6432 tdx - ok
23:14:56.0534 6432 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
23:14:56.0534 6432 TermDD - ok
23:14:56.0596 6432 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:14:56.0596 6432 tssecsrv - ok
23:14:56.0643 6432 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
23:14:56.0643 6432 TsUsbFlt - ok
23:14:56.0737 6432 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
23:14:56.0737 6432 tunnel - ok
23:14:56.0768 6432 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
23:14:56.0784 6432 uagp35 - ok
23:14:56.0815 6432 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
23:14:56.0830 6432 udfs - ok
23:14:56.0877 6432 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
23:14:56.0893 6432 uliagpkx - ok
23:14:56.0924 6432 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
23:14:56.0940 6432 umbus - ok
23:14:56.0971 6432 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
23:14:56.0971 6432 UmPass - ok
23:14:57.0002 6432 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
23:14:57.0002 6432 usbccgp - ok
23:14:57.0064 6432 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
23:14:57.0064 6432 usbcir - ok
23:14:57.0111 6432 usbehci (74ee782b1d9c241efe425565854c661c) C:\Windows\system32\drivers\usbehci.sys
23:14:57.0111 6432 usbehci - ok
23:14:57.0158 6432 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\drivers\usbhub.sys
23:14:57.0174 6432 usbhub - ok
23:14:57.0189 6432 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
23:14:57.0189 6432 usbohci - ok
23:14:57.0252 6432 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
23:14:57.0252 6432 usbprint - ok
23:14:57.0283 6432 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
23:14:57.0283 6432 usbscan - ok
23:14:57.0330 6432 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:14:57.0330 6432 USBSTOR - ok
23:14:57.0392 6432 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
23:14:57.0392 6432 usbuhci - ok
23:14:57.0470 6432 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
23:14:57.0470 6432 vdrvroot - ok
23:14:57.0501 6432 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
23:14:57.0501 6432 vga - ok
23:14:57.0532 6432 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
23:14:57.0532 6432 VgaSave - ok
23:14:57.0579 6432 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
23:14:57.0579 6432 vhdmp - ok
23:14:57.0610 6432 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
23:14:57.0610 6432 viaide - ok
23:14:57.0673 6432 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
23:14:57.0673 6432 volmgr - ok
23:14:57.0720 6432 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
23:14:57.0735 6432 volmgrx - ok
23:14:57.0782 6432 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
23:14:57.0782 6432 volsnap - ok
23:14:57.0813 6432 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
23:14:57.0813 6432 vsmraid - ok
23:14:57.0844 6432 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
23:14:57.0844 6432 vwifibus - ok
23:14:57.0891 6432 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
23:14:57.0891 6432 WacomPen - ok
23:14:57.0954 6432 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
23:14:57.0954 6432 WANARP - ok
23:14:57.0969 6432 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
23:14:57.0969 6432 Wanarpv6 - ok
23:14:58.0047 6432 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
23:14:58.0047 6432 Wd - ok
23:14:58.0094 6432 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
23:14:58.0110 6432 Wdf01000 - ok
23:14:58.0172 6432 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
23:14:58.0188 6432 WfpLwf - ok
23:14:58.0203 6432 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
23:14:58.0203 6432 WIMMount - ok
23:14:58.0281 6432 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
23:14:58.0281 6432 WinUsb - ok
23:14:58.0375 6432 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
23:14:58.0375 6432 WmiAcpi - ok
23:14:58.0422 6432 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
23:14:58.0437 6432 ws2ifsl - ok
23:14:58.0484 6432 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
23:14:58.0484 6432 WudfPf - ok
23:14:58.0500 6432 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:14:58.0515 6432 WUDFRd - ok
23:14:58.0562 6432 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
23:14:58.0624 6432 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
23:14:58.0624 6432 \Device\Harddisk0\DR0 - detected TDSS File System (1)
23:14:58.0624 6432 Boot (0x1200) (8601a25981f99cc6de2110726f85df36) \Device\Harddisk0\DR0\Partition0
23:14:58.0624 6432 \Device\Harddisk0\DR0\Partition0 - ok
23:14:58.0624 6432 ============================================================
23:14:58.0624 6432 Scan finished
23:14:58.0624 6432 ============================================================
23:14:58.0640 4188 Detected object count: 1
23:14:58.0640 4188 Actual detected object count: 1
23:19:05.0036 4188 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
23:19:05.0036 4188 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

aswMBR version 0.9.9.1618 Copyright© 2011 AVAST Software
Run date: 2012-02-18 23:21:47
-----------------------------
23:21:47.921 OS Version: Windows x64 6.1.7601 Service Pack 1
23:21:47.921 Number of processors: 4 586 0x202
23:21:47.923 ComputerName: AMBER-PC UserName: Amber
23:21:49.170 Initialize success
23:22:25.074 AVAST engine defs: 12021802
23:22:39.908 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-3
23:22:39.916 Disk 0 Vendor: ST3300622A 3.AAK Size: 286168MB BusType: 3
23:22:39.938 Disk 0 MBR read successfully
23:22:39.942 Disk 0 MBR scan
23:22:39.948 Disk 0 Windows 7 default MBR code
23:22:39.952 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 286165 MB offset 63
23:22:39.960 Service scanning
23:23:05.938 Modules scanning
23:23:05.946 Disk 0 trace - called modules:
23:23:05.956 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
23:23:05.962 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80036ff060]
23:23:05.967 3 CLASSPNP.SYS[fffff8800195643f] -> nt!IofCallDriver -> [0xfffffa80025a3520]
23:23:05.972 5 ACPI.sys[fffff88000ed97a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-3[0xfffffa80025ad680]
23:23:08.308 AVAST engine scan C:\Windows
23:23:10.949 AVAST engine scan C:\Windows\system32
23:26:59.280 AVAST engine scan C:\Windows\system32\drivers
23:27:28.033 AVAST engine scan C:\Users\Amber
00:32:34.430 AVAST engine scan C:\ProgramData
00:35:12.629 Scan finished successfully
08:51:33.435 Disk 0 MBR has been saved successfully to "C:\Users\Amber\Desktop\tutorial\MBR.dat"
08:51:33.435 The log file has been saved successfully to "C:\Users\Amber\Desktop\tutorial\aswMBR.txt"


thank again

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 10:00 AM

That looks clean

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Expect for ALUREON warning..what kind of redirects do you have?

#7 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 02:05 PM

That got a few, but still getting the redirect. When I search, the first item I click on goes to the correct page, the second goes thru vipsearchs and takes me to various pages for health or car ads etc. I also can not access google reader.

Here's the log.:)

C:\ProgramData\Spybot - Search & Destroy\Recovery\SmitfraudCgeneric.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0000.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0001.dta Win64/Olmarik.AD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AC trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\18.02.2012_14.44.58\mbr0000\tdlfs0000\tsk0008.dta Win64/Olmarik.X trojan cleaned by deleting - quarantined
C:\Users\Amber\Documents\Amber\Desktop\CouponPrinter.exe probably a variant of Win32/Adware.Softomate.AD application deleted - quarantined

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 04:06 PM

Download

Goored Fix

Launch it(For vista &7,right-click and select Run As Administrator)
When prompted to run the scan, click Yes.
Please post the log in your next reply

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#9 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 04:54 PM

GooredFix by jpshortstuff (03.07.10.1)
Log created at 15:46 on 19/02/2012 (Amber)
Firefox version 10.0.2 (en-US)

========== GooredScan ==========


========== GooredLog ==========

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [01:23 07/03/2011]
{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [01:33 08/03/2011]
{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [01:03 08/03/2011]

C:\Users\Amber\Application Data\Mozilla\Firefox\Profiles\oskmyop1.default\extensions\
{8bdea9d6-6f62-45eb-8ee9-8a81af0d2f94} [22:41 08/01/2012]
{ab91efd4-6975-4081-8552-1b3922ed79e2} [20:18 22/03/2011]
{E0B8C461-F8FB-49b4-8373-FE32E9252800} [15:04 22/01/2012]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"="C:\Program Files (x86)\AVG\AVG2012\Firefox4\" [13:41 11/01/2012]
"{ABDE892B-13A8-4d1b-88E6-365A6E755758}"="C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext" [17:47 06/02/2012]

-=E.O.F=-



MiniToolBox by Farbar Version: 18-01-2012
Ran by Amber (administrator) on 19-02-2012 at 15:48:43
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


94.63.147.16 www.google.com
94.63.147.17 www.bing.com


========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection 2 (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Amber-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
Physical Address. . . . . . . . . : 00-1E-90-73-AF-96
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::f13b:5b6:7197:6be1%12(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.17.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, February 18, 2012 2:58:03 PM
Lease Expires . . . . . . . . . . : Monday, February 20, 2012 2:58:03 PM
Default Gateway . . . . . . . . . : 192.168.17.1
DHCP Server . . . . . . . . . . . : 192.168.17.1
DHCPv6 IAID . . . . . . . . . . . : 285220496
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-04-D2-13-00-21-85-C0-AA-EE
DNS Servers . . . . . . . . . . . : 192.168.17.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{201FD289-457A-4681-AE24-D7AD9D598EF7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:30ee:edb:ba76:a090(Preferred)
Link-local IPv6 Address . . . . . : fe80::30ee:edb:ba76:a090%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: UnKnown
Address: 192.168.17.1

Name: google.com
Addresses: 74.125.45.113
74.125.45.100
74.125.45.139
74.125.45.102
74.125.45.138
74.125.45.101


Pinging google.com [74.125.45.102] with 32 bytes of data:
Reply from 74.125.45.102: bytes=32 time=22ms TTL=52
Reply from 74.125.45.102: bytes=32 time=22ms TTL=52

Ping statistics for 74.125.45.102:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 22ms, Maximum = 22ms, Average = 22ms
Server: UnKnown
Address: 192.168.17.1

Name: yahoo.com
Addresses: 98.139.127.62
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=46ms TTL=50
Reply from 209.191.122.70: bytes=32 time=45ms TTL=50

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 45ms, Maximum = 46ms, Average = 45ms
Server: UnKnown
Address: 192.168.17.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
12...00 1e 90 73 af 96 ......NVIDIA nForce Networking Controller
1...........................Software Loopback Interface 1
13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.17.1 192.168.17.2 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.17.0 255.255.255.0 On-link 192.168.17.2 276
192.168.17.2 255.255.255.255 On-link 192.168.17.2 276
192.168.17.255 255.255.255.255 On-link 192.168.17.2 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.17.2 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.17.2 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 58 ::/0 On-link
1 306 ::1/128 On-link
11 58 2001::/32 On-link
11 306 2001:0:4137:9e76:30ee:edb:ba76:a090/128
On-link
12 276 fe80::/64 On-link
11 306 fe80::/64 On-link
11 306 fe80::30ee:edb:ba76:a090/128
On-link
12 276 fe80::f13b:5b6:7197:6be1/128
On-link
1 306 ff00::/8 On-link
11 306 ff00::/8 On-link
12 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/19/2012 03:45:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/19/2012 11:01:29 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (02/18/2012 08:33:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.

Error: (02/17/2012 03:24:34 AM) (Source: .NET Runtime Optimization Service) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Failed to compile: System.Xml, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070020

Error: (02/13/2012 01:14:20 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.1.4421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2ccc

Start Time: 01ccea62560981e0

Termination Time: 53

Application Path: C:\Windows.old\Program Files\Mozilla Firefox\firefox.exe

Report Id: eaa29a01-5676-11e1-92a5-001e9073af96

Error: (02/12/2012 03:11:16 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.1.4421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 315c

Start Time: 01cce9c4315e7ec0

Termination Time: 58

Application Path: C:\Windows.old\Program Files\Mozilla Firefox\firefox.exe

Report Id: 14ac5111-55be-11e1-92a5-001e9073af96

Error: (02/03/2012 09:49:34 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 10.0.0.4411 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1458

Start Time: 01cce2ee43041e78

Termination Time: 219

Application Path: C:\Windows.old\Program Files\Mozilla Firefox\firefox.exe

Report Id:

Error: (01/15/2012 08:27:06 PM) (Source: Application Hang) (User: )
Description: The program Evernote.exe version 4.5.2.5904 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: f3c

Start Time: 01ccd07b5fce0da0

Termination Time: 53

Application Path: C:\Program Files (x86)\Evernote\Evernote\Evernote.exe

Report Id: 92db21f1-3fe9-11e1-9afb-001e9073af96

Error: (01/15/2012 06:40:40 PM) (Source: Application Error) (User: )
Description: Faulting application name: gimp-2.6.exe, version: 0.0.0.0, time stamp: 0x4caa3d66
Faulting module name: gimp-2.6.exe, version: 0.0.0.0, time stamp: 0x4caa3d66
Exception code: 0xc0000005
Fault offset: 0x0001b946
Faulting process id: 0x6f8
Faulting application start time: 0xgimp-2.6.exe0
Faulting application path: gimp-2.6.exe1
Faulting module path: gimp-2.6.exe2
Report Id: gimp-2.6.exe3

Error: (01/11/2012 05:31:34 PM) (Source: Application Hang) (User: )
Description: The program Photoshp.exe version 6.0.128.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1218

Start Time: 01ccd0b8f25caef0

Termination Time: 31

Application Path: C:\Program Files (x86)\Adobe\photoshop\Photoshp.exe

Report Id:


System errors:
=============
Error: (02/18/2012 02:58:04 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (02/18/2012 02:47:04 PM) (Source: Service Control Manager) (User: )
Description: The SBSD Security Center Service service depends the following service: wscsvc. This service might not be installed.

Error: (02/18/2012 02:43:57 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:43:57 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:43:57 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:41:50 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:41:50 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:41:50 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:36:50 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (02/18/2012 02:36:50 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (02/19/2012 03:45:42 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Amber\Downloads\esetsmartinstaller_enu.exe

Error: (02/19/2012 11:01:29 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Amber\Downloads\esetsmartinstaller_enu.exe

Error: (02/18/2012 08:33:02 PM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*c:\program files (x86)\spybot - search & destroy\DelZip179.dllc:\program files (x86)\spybot - search & destroy\DelZip179.dll8

Error: (02/17/2012 03:24:34 AM) (Source: .NET Runtime Optimization Service)(User: )
Description: .NET Runtime Optimization Service (clr_optimization_v2.0.50727_64) - Failed to compile: System.Xml, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070020
System.Xml, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

Error: (02/13/2012 01:14:20 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.1.44212ccc01ccea62560981e053C:\Windows.old\Program Files\Mozilla Firefox\firefox.exeeaa29a01-5676-11e1-92a5-001e9073af96

Error: (02/12/2012 03:11:16 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.1.4421315c01cce9c4315e7ec058C:\Windows.old\Program Files\Mozilla Firefox\firefox.exe14ac5111-55be-11e1-92a5-001e9073af96

Error: (02/03/2012 09:49:34 PM) (Source: Application Hang)(User: )
Description: firefox.exe10.0.0.4411145801cce2ee43041e78219C:\Windows.old\Program Files\Mozilla Firefox\firefox.exe

Error: (01/15/2012 08:27:06 PM) (Source: Application Hang)(User: )
Description: Evernote.exe4.5.2.5904f3c01ccd07b5fce0da053C:\Program Files (x86)\Evernote\Evernote\Evernote.exe92db21f1-3fe9-11e1-9afb-001e9073af96

Error: (01/15/2012 06:40:40 PM) (Source: Application Error)(User: )
Description: gimp-2.6.exe0.0.0.04caa3d66gimp-2.6.exe0.0.0.04caa3d66c00000050001b9466f801ccd3e6febc3db0C:\Program Files (x86)\GIMP-2.0\bin\gimp-2.6.exeC:\Program Files (x86)\GIMP-2.0\bin\gimp-2.6.exeb6802f60-3fda-11e1-9afb-001e9073af96

Error: (01/11/2012 05:31:34 PM) (Source: Application Hang)(User: )
Description: Photoshp.exe6.0.128.0121801ccd0b8f25caef031C:\Program Files (x86)\Adobe\photoshop\Photoshp.exe


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 6.2.1)
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 10 ActiveX (Version: 10.2.152.32)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Reader X (10.0.1) (Version: 10.0.1)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Amazon Kindle For PC
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2011.0126.1749.31909)
Apple Application Support (Version: 2.1.5)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.812.0)
ATI Catalyst Registration (Version: 3.00.0000)
ATI Stream SDK v2 Developer (Version: 2.3.0.0)
AVG 2012 (Version: 12.0.1913)
AVG 2012 (Version: 12.0.2112)
AVG 2012 (Version: 2012.0.1913)
Bing Bar (Version: 6.3.2322.0)
Bing Bar Platform (Version: 6.3.2322.0)
bProtector for Windows
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2011.0126.1749.31909)
Catalyst Control Center InstallProxy (Version: 2011.0126.1749.31909)
ccc-core-static (Version: 2011.0126.1749.31909)
ccc-utility64 (Version: 2011.0126.1749.31909)
CCC Help English (Version: 2011.0126.1748.31909)
D3DX10 (Version: 15.4.2368.0902)
e-Sword (Version: 9.08.0003)
Epson Connect
Epson Customer Participation (Version: 1.0.0.0)
Epson Download Navigator (Version: 1.0.1)
EPSON WP-4020 Series Printer Uninstall
ESET Online Scanner v3
Evernote v. 4.5.3 (Version: 4.5.3.6131)
Funnix Begin Math 1-50 (Version: 1.0.0.0)
Funnix Begin Math 51-100 (Version: 1.0.0.0)
GIMP 2.6.11 (Version: 2.6.11)
Google Chrome (Version: 17.0.963.56)
GTK+ 2.10.6-1 runtime environment
HP Product Detection (Version: 10.7.9.0)
Inkscape 0.48.2 (Version: 0.48.2)
InstallBrain Updater Service (Version: 11,6,20,2)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 22 (Version: 6.0.220)
Java™ 6 Update 24 (Version: 6.0.240)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 10.0.2 (x86 en-US) (Version: 10.0.2)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
OpenAL
OpenOffice.org 3.3 (Version: 3.3.9567)
OverDrive Media Console (Version: 3.2.5)
Paltalk Messenger (Version: 10.0)
Publix Preschool Pals
QuickGamma 3.0.0.2 (Version: 3.0.0.2)
QuickTime (Version: 7.71.80.42)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
RealUpgrade 1.1 (Version: 1.1.0)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WMV9/VC-1 Video Playback (Version: 1.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 3070.49 MB
Available physical RAM: 1581.81 MB
Total Pagefile: 6139.18 MB
Available Pagefile: 4369.58 MB
Total Virtual: 4095.88 MB
Available Virtual: 3963.35 MB

========================= Partitions: =====================================

1 Drive c: (DISK2_VOL1) (Fixed) (Total:279.46 GB) (Free:201.56 GB) NTFS
2 Drive d: (Dec 18 2011) (CDROM) (Total:0.69 GB) (Free:0.66 GB) UDF

========================= Users: ========================================

User accounts for \\AMBER-PC

Administrator Amber Guest


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 06:11 PM

Your HOSTS file has been hijacked

DOwnload

http://go.microsoft.com/?linkid=9668866

Run the fixit

Restart the PC

Download

mini toolbox

Checkmark following boxes:

List content of Hosts

Click Go and post the result.

Download

FSS

Checkmark

Internet Services
Windows Firewall
System Restore
Security Center
Windows Update

Click on "Scan".
Please copy and paste the log to your reply.

#11 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 08:56 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Amber (administrator) on 19-02-2012 at 19:52:38
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

# ::1 localhost


**** End of log ****

Farbar Service Scanner Version: 14-02-2012
Ran by Amber (administrator) on 19-02-2012 at 19:54:06
Running from "C:\Users\Amber\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-16 12:34] - [2011-12-27 21:59] - 0498688 ____A (Microsoft Corporation) 1C7857B62DE5994A75B054A9FD4C3825

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 08:57 PM

Do you still have redirects?

#13 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 09:04 PM

No, no redirects. Am I clean? whew! I can also access google reader now. Thanks a billion.

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:13 PM

Posted 19 February 2012 - 09:22 PM

good :thumbsup:

You're missing security center service

To be on safer side before running registry fixes i would suggest you to

Download

http://www.snapfiles.com/get/erunt.html

Install it and backup your registry to C:/Windows/erdnt

Download Security center reg key

http://www.mediafire.com/?3g2d9ijwwe5aa75

Launch and import it to registry

If it opens as a notepad,right click on it

Click on OPEN WITH

Click on BROWSE

navigate to C:/WINDOWS and select REGEDIT and click ok

Now you should get a UAC prompt,click YES


Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

Edited by narenxp, 19 February 2012 - 09:22 PM.


#15 Nashville_Amber

Nashville_Amber
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:08:13 PM

Posted 19 February 2012 - 09:49 PM

woo hoo! over and out




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users