Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Searchnu


  • Please log in to reply
16 replies to this topic

#1 jungleman12

jungleman12

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 30 June 2012 - 02:10 PM

I seem to have acquired the search nu malware, and would like someone to guide me in removing the malware of my computer. Thanks in advance :thumbup2:

I am using windows 6.0 sp2

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 30 June 2012 - 02:11 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#3 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 30 June 2012 - 02:41 PM

15:39:21.0322 0256 TDSS rootkit removing tool 2.7.43.0 Jun 29 2012 17:54:22
15:39:21.0875 0256 ============================================================
15:39:21.0875 0256 Current date / time: 2012/06/30 15:39:21.0875
15:39:21.0876 0256 SystemInfo:
15:39:21.0876 0256
15:39:21.0876 0256 OS Version: 6.0.6002 ServicePack: 2.0
15:39:21.0876 0256 Product type: Workstation
15:39:21.0876 0256 ComputerName: STEVE-PC
15:39:21.0877 0256 UserName: Steve
15:39:21.0877 0256 Windows directory: C:\Windows
15:39:21.0877 0256 System windows directory: C:\Windows
15:39:21.0877 0256 Processor architecture: Intel x86
15:39:21.0877 0256 Number of processors: 2
15:39:21.0877 0256 Page size: 0x1000
15:39:21.0877 0256 Boot type: Normal boot
15:39:21.0877 0256 ============================================================
15:39:26.0603 0256 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:39:26.0613 0256 ============================================================
15:39:26.0613 0256 \Device\Harddisk0\DR0:
15:39:26.0613 0256 MBR partitions:
15:39:26.0613 0256 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12A18800
15:39:26.0613 0256 ============================================================
15:39:26.0647 0256 C: <-> \Device\Harddisk0\DR0\Partition0
15:39:26.0648 0256 ============================================================
15:39:26.0648 0256 Initialize success
15:39:26.0648 0256 ============================================================
15:39:34.0015 4036 ============================================================
15:39:34.0015 4036 Scan started
15:39:34.0015 4036 Mode: Manual;
15:39:34.0015 4036 ============================================================
15:39:34.0686 4036 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
15:39:34.0705 4036 ACPI - ok
15:39:34.0833 4036 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:39:34.0837 4036 AdobeARMservice - ok
15:39:34.0932 4036 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:39:34.0949 4036 AdobeFlashPlayerUpdateSvc - ok
15:39:35.0032 4036 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
15:39:35.0043 4036 adp94xx - ok
15:39:35.0095 4036 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
15:39:35.0113 4036 adpahci - ok
15:39:35.0150 4036 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
15:39:35.0161 4036 adpu160m - ok
15:39:35.0206 4036 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
15:39:35.0211 4036 adpu320 - ok
15:39:35.0271 4036 AeLookupSvc (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
15:39:35.0275 4036 AeLookupSvc - ok
15:39:35.0342 4036 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
15:39:35.0349 4036 AFD - ok
15:39:35.0382 4036 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
15:39:35.0384 4036 agp440 - ok
15:39:35.0417 4036 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
15:39:35.0420 4036 aic78xx - ok
15:39:35.0472 4036 ALG (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
15:39:35.0476 4036 ALG - ok
15:39:35.0523 4036 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
15:39:35.0525 4036 aliide - ok
15:39:35.0574 4036 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
15:39:35.0577 4036 amdagp - ok
15:39:35.0604 4036 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
15:39:35.0606 4036 amdide - ok
15:39:35.0641 4036 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
15:39:35.0644 4036 AmdK7 - ok
15:39:35.0690 4036 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
15:39:35.0692 4036 AmdK8 - ok
15:39:35.0759 4036 Andbus (3e59df4984fbd6800d6621480b38a34e) C:\Windows\system32\DRIVERS\lgandbus.sys
15:39:35.0821 4036 Andbus - ok
15:39:35.0851 4036 AndDiag (8e0bf6f3b2c9c292bc7ce0de727cdd56) C:\Windows\system32\DRIVERS\lganddiag.sys
15:39:35.0915 4036 AndDiag - ok
15:39:35.0959 4036 AndGps (1d2c90e25483363d54b652898bbc8f2a) C:\Windows\system32\DRIVERS\lgandgps.sys
15:39:36.0018 4036 AndGps - ok
15:39:36.0079 4036 ANDModem (b1b06a95da2cac7fa19832c60c348c85) C:\Windows\system32\DRIVERS\lgandmodem.sys
15:39:36.0142 4036 ANDModem - ok
15:39:36.0194 4036 Appinfo (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
15:39:36.0197 4036 Appinfo - ok
15:39:36.0316 4036 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:39:36.0322 4036 Apple Mobile Device - ok
15:39:36.0360 4036 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
15:39:36.0363 4036 arc - ok
15:39:36.0491 4036 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
15:39:36.0493 4036 arcsas - ok
15:39:36.0618 4036 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:39:36.0621 4036 aspnet_state - ok
15:39:36.0669 4036 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
15:39:36.0673 4036 AsyncMac - ok
15:39:36.0709 4036 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
15:39:36.0710 4036 atapi - ok
15:39:36.0790 4036 athr (0437199c88f6e88a387cfec8a8886a6e) C:\Windows\system32\DRIVERS\athr.sys
15:39:36.0806 4036 athr - ok
15:39:36.0865 4036 AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:39:36.0894 4036 AudioEndpointBuilder - ok
15:39:36.0911 4036 Audiosrv (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:39:36.0923 4036 Audiosrv - ok
15:39:37.0083 4036 B-Service (c3edb060c0427607eb9344ec861585ff) C:\Users\Steve\Pictures\2009-02-26 me\Desktop\B-Service.exe
15:39:37.0089 4036 B-Service - ok
15:39:37.0170 4036 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
15:39:37.0172 4036 Beep - ok
15:39:37.0226 4036 BFE (c789af0f724fda5852fb9a7d3a432381) C:\Windows\System32\bfe.dll
15:39:37.0235 4036 BFE - ok
15:39:37.0335 4036 BITS (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
15:39:37.0355 4036 BITS - ok
15:39:37.0367 4036 blbdrive - ok
15:39:37.0525 4036 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
15:39:37.0537 4036 Bonjour Service - ok
15:39:37.0577 4036 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
15:39:37.0580 4036 bowser - ok
15:39:37.0627 4036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
15:39:37.0630 4036 BrFiltLo - ok
15:39:37.0658 4036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
15:39:37.0659 4036 BrFiltUp - ok
15:39:37.0694 4036 Browser (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
15:39:37.0699 4036 Browser - ok
15:39:37.0732 4036 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
15:39:37.0735 4036 Brserid - ok
15:39:37.0776 4036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
15:39:37.0780 4036 BrSerWdm - ok
15:39:37.0814 4036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
15:39:37.0816 4036 BrUsbMdm - ok
15:39:37.0835 4036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
15:39:37.0838 4036 BrUsbSer - ok
15:39:37.0879 4036 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
15:39:37.0881 4036 BTHMODEM - ok
15:39:37.0945 4036 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
15:39:37.0948 4036 cdfs - ok
15:39:37.0983 4036 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
15:39:37.0986 4036 cdrom - ok
15:39:38.0040 4036 CertPropSvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:39:38.0043 4036 CertPropSvc - ok
15:39:38.0091 4036 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
15:39:38.0093 4036 circlass - ok
15:39:38.0226 4036 CLCapSvc (dbafc6734c054feef9087754bd80f847) C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
15:39:38.0235 4036 CLCapSvc - ok
15:39:38.0279 4036 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
15:39:38.0287 4036 CLFS - ok
15:39:38.0382 4036 clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:39:38.0387 4036 clr_optimization_v2.0.50727_32 - ok
15:39:38.0461 4036 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:39:38.0472 4036 clr_optimization_v4.0.30319_32 - ok
15:39:38.0510 4036 CLSched (e67f8f036fd882e4ab62501c0d45b536) C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
15:39:38.0513 4036 CLSched - ok
15:39:38.0544 4036 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
15:39:38.0547 4036 CmBatt - ok
15:39:38.0583 4036 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
15:39:38.0585 4036 cmdide - ok
15:39:38.0630 4036 CnxtHdAudService (b6e7991e3d6146c04c85cd31af22a381) C:\Windows\system32\drivers\CHDRT32.sys
15:39:38.0637 4036 CnxtHdAudService - ok
15:39:38.0675 4036 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
15:39:38.0677 4036 Compbatt - ok
15:39:38.0693 4036 COMSysApp - ok
15:39:38.0719 4036 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
15:39:38.0722 4036 crcdisk - ok
15:39:38.0757 4036 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
15:39:38.0759 4036 Crusoe - ok
15:39:38.0818 4036 CryptSvc (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
15:39:38.0823 4036 CryptSvc - ok
15:39:38.0902 4036 DcomLaunch (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:39:38.0919 4036 DcomLaunch - ok
15:39:38.0948 4036 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
15:39:38.0951 4036 DfsC - ok
15:39:39.0088 4036 DFSR (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
15:39:39.0169 4036 DFSR - ok
15:39:39.0303 4036 Dhcp (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
15:39:39.0311 4036 Dhcp - ok
15:39:39.0394 4036 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
15:39:39.0504 4036 disk - ok
15:39:39.0551 4036 Dnscache (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
15:39:39.0562 4036 Dnscache - ok
15:39:39.0615 4036 dot3svc (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
15:39:39.0634 4036 dot3svc - ok
15:39:39.0672 4036 DPS (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
15:39:39.0678 4036 DPS - ok
15:39:39.0727 4036 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
15:39:39.0736 4036 drmkaud - ok
15:39:39.0812 4036 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
15:39:39.0829 4036 DXGKrnl - ok
15:39:39.0905 4036 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
15:39:39.0909 4036 E1G60 - ok
15:39:39.0974 4036 EapHost (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
15:39:39.0980 4036 EapHost - ok
15:39:40.0048 4036 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
15:39:40.0053 4036 Ecache - ok
15:39:40.0144 4036 ehRecvr (9be3744d295a7701eb425332014f0797) C:\Windows\ehome\ehRecvr.exe
15:39:40.0170 4036 ehRecvr - ok
15:39:40.0225 4036 ehSched (ad1870c8e5d6dd340c829e6074bf3c3f) C:\Windows\ehome\ehsched.exe
15:39:40.0231 4036 ehSched - ok
15:39:40.0270 4036 ehstart (c27c4ee8926e74aa72efcab24c5242c3) C:\Windows\ehome\ehstart.dll
15:39:40.0274 4036 ehstart - ok
15:39:40.0328 4036 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
15:39:40.0337 4036 elxstor - ok
15:39:40.0488 4036 EMDMgmt (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
15:39:40.0518 4036 EMDMgmt - ok
15:39:40.0626 4036 EpsonBidirectionalService (abdd5ad016affd34ad40e944ce94bf59) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
15:39:40.0629 4036 EpsonBidirectionalService - ok
15:39:40.0709 4036 EventSystem (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
15:39:40.0718 4036 EventSystem - ok
15:39:40.0825 4036 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
15:39:40.0834 4036 exfat - ok
15:39:41.0017 4036 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
15:39:41.0021 4036 fastfat - ok
15:39:41.0087 4036 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
15:39:41.0091 4036 fdc - ok
15:39:41.0165 4036 fdPHost (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
15:39:41.0168 4036 fdPHost - ok
15:39:41.0214 4036 FDResPub (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
15:39:41.0218 4036 FDResPub - ok
15:39:41.0282 4036 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
15:39:41.0285 4036 FileInfo - ok
15:39:41.0313 4036 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
15:39:41.0317 4036 Filetrace - ok
15:39:41.0356 4036 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
15:39:41.0358 4036 flpydisk - ok
15:39:41.0410 4036 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
15:39:41.0415 4036 FltMgr - ok
15:39:41.0685 4036 FontCache (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
15:39:41.0728 4036 FontCache - ok
15:39:41.0816 4036 FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:39:41.0818 4036 FontCache3.0.0.0 - ok
15:39:41.0858 4036 Fs_Rec (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
15:39:41.0860 4036 Fs_Rec - ok
15:39:41.0903 4036 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
15:39:41.0907 4036 gagp30kx - ok
15:39:41.0972 4036 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:39:41.0974 4036 GEARAspiWDM - ok
15:39:42.0048 4036 gpsvc (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
15:39:42.0096 4036 gpsvc - ok
15:39:42.0243 4036 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:42.0263 4036 gupdate - ok
15:39:42.0290 4036 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:42.0294 4036 gupdatem - ok
15:39:42.0365 4036 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
15:39:42.0384 4036 gusvc - ok
15:39:42.0426 4036 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
15:39:42.0435 4036 HdAudAddService - ok
15:39:42.0501 4036 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:39:42.0512 4036 HDAudBus - ok
15:39:42.0549 4036 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
15:39:42.0552 4036 HidBth - ok
15:39:42.0580 4036 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
15:39:42.0584 4036 HidIr - ok
15:39:42.0614 4036 hidserv (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
15:39:42.0620 4036 hidserv - ok
15:39:42.0675 4036 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
15:39:42.0677 4036 HidUsb - ok
15:39:42.0715 4036 hkmsvc (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
15:39:42.0734 4036 hkmsvc - ok
15:39:42.0768 4036 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
15:39:42.0771 4036 HpCISSs - ok
15:39:42.0808 4036 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
15:39:42.0810 4036 HpqRemHid - ok
15:39:42.0894 4036 HSF_DPV (cc267848cb3508e72762be65734e764d) C:\Windows\system32\DRIVERS\HSX_DPV.sys
15:39:42.0913 4036 HSF_DPV - ok
15:39:42.0944 4036 HSXHWAZL (a2882945cc4b6e3e4e9e825590438888) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
15:39:42.0952 4036 HSXHWAZL - ok
15:39:43.0008 4036 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
15:39:43.0019 4036 HTTP - ok
15:39:43.0062 4036 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
15:39:43.0065 4036 i2omp - ok
15:39:43.0096 4036 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
15:39:43.0100 4036 i8042prt - ok
15:39:43.0143 4036 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
15:39:43.0152 4036 iaStorV - ok
15:39:43.0285 4036 idsvc (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:39:43.0357 4036 idsvc - ok
15:39:43.0387 4036 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
15:39:43.0389 4036 iirsp - ok
15:39:43.0455 4036 IKEEXT (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
15:39:43.0485 4036 IKEEXT - ok
15:39:43.0537 4036 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
15:39:43.0539 4036 intelide - ok
15:39:43.0572 4036 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
15:39:43.0575 4036 intelppm - ok
15:39:43.0681 4036 IPBusEnum (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
15:39:43.0688 4036 IPBusEnum - ok
15:39:43.0731 4036 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:39:43.0740 4036 IpFilterDriver - ok
15:39:43.0793 4036 iphlpsvc (1998bd97f950680bb55f55a7244679c2) C:\Windows\System32\iphlpsvc.dll
15:39:43.0847 4036 iphlpsvc - ok
15:39:43.0860 4036 IpInIp - ok
15:39:44.0291 4036 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
15:39:44.0311 4036 IPMIDRV - ok
15:39:44.0402 4036 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
15:39:44.0406 4036 IPNAT - ok
15:39:44.0552 4036 iPod Service (49918803b661367023bf325cf602afdc) C:\Program Files\iPod\bin\iPodService.exe
15:39:44.0569 4036 iPod Service - ok
15:39:44.0610 4036 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
15:39:44.0612 4036 IRENUM - ok
15:39:44.0658 4036 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
15:39:44.0662 4036 isapnp - ok
15:39:44.0762 4036 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
15:39:44.0772 4036 iScsiPrt - ok
15:39:44.0803 4036 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
15:39:44.0836 4036 iteatapi - ok
15:39:44.0865 4036 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
15:39:44.0868 4036 iteraid - ok
15:39:45.0027 4036 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:39:45.0030 4036 kbdclass - ok
15:39:45.0065 4036 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
15:39:45.0067 4036 kbdhid - ok
15:39:45.0110 4036 KeyIso (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:39:45.0116 4036 KeyIso - ok
15:39:45.0437 4036 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
15:39:45.0449 4036 KSecDD - ok
15:39:45.0682 4036 KtmRm (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
15:39:45.0695 4036 KtmRm - ok
15:39:45.0750 4036 LanmanServer (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
15:39:45.0762 4036 LanmanServer - ok
15:39:45.0818 4036 LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
15:39:45.0838 4036 LanmanWorkstation - ok
15:39:45.0890 4036 Lavasoft Kernexplorer - ok
15:39:45.0967 4036 Lbd (b7c19ec8b0dd7efa58ad41ffeb8b8cda) C:\Windows\system32\DRIVERS\Lbd.sys
15:39:45.0972 4036 Lbd - ok
15:39:46.0029 4036 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
15:39:46.0037 4036 lltdio - ok
15:39:46.0104 4036 lltdsvc (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
15:39:46.0153 4036 lltdsvc - ok
15:39:46.0199 4036 lmhosts (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
15:39:46.0204 4036 lmhosts - ok
15:39:46.0282 4036 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
15:39:46.0286 4036 LSI_FC - ok
15:39:46.0333 4036 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
15:39:46.0338 4036 LSI_SAS - ok
15:39:46.0377 4036 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
15:39:46.0382 4036 LSI_SCSI - ok
15:39:46.0427 4036 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
15:39:46.0435 4036 luafv - ok
15:39:46.0549 4036 Mcx2Svc (aef9babb8a506bc4ce0451a64aaded46) C:\Windows\system32\Mcx2Svc.dll
15:39:46.0564 4036 Mcx2Svc - ok
15:39:46.0608 4036 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
15:39:46.0611 4036 mdmxsdk - ok
15:39:46.0742 4036 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
15:39:46.0744 4036 megasas - ok
15:39:46.0853 4036 MMCSS (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:39:46.0860 4036 MMCSS - ok
15:39:46.0930 4036 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
15:39:46.0932 4036 Modem - ok
15:39:46.0974 4036 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
15:39:46.0976 4036 monitor - ok
15:39:47.0054 4036 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
15:39:47.0058 4036 mouclass - ok
15:39:47.0102 4036 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
15:39:47.0108 4036 mouhid - ok
15:39:47.0149 4036 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
15:39:47.0152 4036 MountMgr - ok
15:39:47.0266 4036 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:39:47.0275 4036 MozillaMaintenance - ok
15:39:47.0392 4036 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\Windows\system32\DRIVERS\MpFilter.sys
15:39:47.0401 4036 MpFilter - ok
15:39:47.0480 4036 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
15:39:47.0484 4036 mpio - ok
15:39:47.0937 4036 MpKsla312ecbf (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{83A9F44F-C753-40E6-8109-FD719CE35F84}\MpKsla312ecbf.sys
15:39:47.0940 4036 MpKsla312ecbf - ok
15:39:47.0996 4036 MpKslf424758b (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{83A9F44F-C753-40E6-8109-FD719CE35F84}\MpKslf424758b.sys
15:39:48.0122 4036 MpKslf424758b - ok
15:39:48.0154 4036 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
15:39:48.0167 4036 mpsdrv - ok
15:39:48.0283 4036 MpsSvc (5de62c6e9108f14f6794060a9bdecaec) C:\Windows\system32\mpssvc.dll
15:39:48.0298 4036 MpsSvc - ok
15:39:48.0355 4036 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
15:39:48.0376 4036 Mraid35x - ok
15:39:48.0452 4036 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
15:39:48.0475 4036 MRxDAV - ok
15:39:48.0555 4036 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:39:48.0558 4036 mrxsmb - ok
15:39:48.0605 4036 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:39:48.0612 4036 mrxsmb10 - ok
15:39:48.0641 4036 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:39:48.0645 4036 mrxsmb20 - ok
15:39:48.0680 4036 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
15:39:48.0683 4036 msahci - ok
15:39:48.0710 4036 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
15:39:48.0714 4036 msdsm - ok
15:39:48.0798 4036 MSDTC (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
15:39:48.0815 4036 MSDTC - ok
15:39:48.0873 4036 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
15:39:48.0884 4036 Msfs - ok
15:39:48.0926 4036 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
15:39:48.0938 4036 msisadrv - ok
15:39:49.0000 4036 MSiSCSI (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
15:39:49.0021 4036 MSiSCSI - ok
15:39:49.0053 4036 msiserver - ok
15:39:49.0096 4036 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
15:39:49.0100 4036 MSKSSRV - ok
15:39:49.0176 4036 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe
15:39:49.0177 4036 MsMpSvc - ok
15:39:49.0214 4036 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
15:39:49.0216 4036 MSPCLOCK - ok
15:39:49.0247 4036 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
15:39:49.0249 4036 MSPQM - ok
15:39:49.0320 4036 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
15:39:49.0340 4036 MsRPC - ok
15:39:49.0396 4036 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
15:39:49.0399 4036 mssmbios - ok
15:39:49.0431 4036 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
15:39:49.0439 4036 MSTEE - ok
15:39:49.0475 4036 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
15:39:49.0479 4036 Mup - ok
15:39:49.0521 4036 napagent (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
15:39:49.0562 4036 napagent - ok
15:39:49.0621 4036 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
15:39:49.0626 4036 NativeWifiP - ok
15:39:49.0685 4036 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
15:39:49.0731 4036 NDIS - ok
15:39:49.0776 4036 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
15:39:49.0779 4036 NdisTapi - ok
15:39:49.0810 4036 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
15:39:49.0813 4036 Ndisuio - ok
15:39:49.0859 4036 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:39:49.0863 4036 NdisWan - ok
15:39:49.0901 4036 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
15:39:49.0905 4036 NDProxy - ok
15:39:49.0930 4036 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
15:39:49.0932 4036 NetBIOS - ok
15:39:50.0008 4036 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
15:39:50.0014 4036 netbt - ok
15:39:50.0060 4036 Netlogon (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:39:50.0065 4036 Netlogon - ok
15:39:50.0206 4036 Netman (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
15:39:50.0221 4036 Netman - ok
15:39:50.0382 4036 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:50.0394 4036 NetMsmqActivator - ok
15:39:50.0419 4036 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:50.0424 4036 NetPipeActivator - ok
15:39:50.0500 4036 netprofm (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
15:39:50.0547 4036 netprofm - ok
15:39:50.0592 4036 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:50.0598 4036 NetTcpActivator - ok
15:39:50.0611 4036 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:39:50.0616 4036 NetTcpPortSharing - ok
15:39:50.0715 4036 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
15:39:50.0790 4036 nfrd960 - ok
15:39:50.0952 4036 NisDrv (b52f26bade7d7e4a79706e3fd91834cd) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
15:39:51.0025 4036 NisDrv - ok
15:39:51.0415 4036 NisSrv (290c0d4c4889398797f8df3be00b9698) c:\Program Files\Microsoft Security Client\NisSrv.exe
15:39:51.0437 4036 NisSrv - ok
15:39:51.0649 4036 NlaSvc (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
15:39:51.0949 4036 NlaSvc - ok
15:39:52.0241 4036 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
15:39:52.0244 4036 Npfs - ok
15:39:52.0422 4036 nsi (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
15:39:52.0486 4036 nsi - ok
15:39:52.0553 4036 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
15:39:52.0556 4036 nsiproxy - ok
15:39:53.0906 4036 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
15:39:53.0934 4036 Ntfs - ok
15:39:54.0051 4036 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
15:39:54.0071 4036 ntrigdigi - ok
15:39:54.0171 4036 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
15:39:54.0187 4036 Null - ok
15:39:54.0447 4036 NVENETFD (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
15:39:54.0501 4036 NVENETFD - ok
15:39:55.0854 4036 nvlddmkm (d65bc32c1795191b7f2b028351ab4fe2) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:39:56.0075 4036 nvlddmkm - ok
15:39:56.0359 4036 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
15:39:56.0388 4036 nvraid - ok
15:39:56.0719 4036 nvsmu (9aebc32f9d6e02ebee0369ab296fe7c8) C:\Windows\system32\DRIVERS\nvsmu.sys
15:39:56.0722 4036 nvsmu - ok
15:39:56.0863 4036 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
15:39:56.0867 4036 nvstor - ok
15:39:57.0073 4036 nvsvc (a8c043670699c956d56b9f1f3daefc98) C:\Windows\system32\nvvsvc.exe
15:39:57.0088 4036 nvsvc - ok
15:39:57.0193 4036 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
15:39:57.0257 4036 nv_agp - ok
15:39:57.0275 4036 NwlnkFlt - ok
15:39:57.0298 4036 NwlnkFwd - ok
15:39:57.0408 4036 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
15:39:57.0413 4036 ohci1394 - ok
15:39:58.0007 4036 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:39:58.0087 4036 ose - ok
15:39:58.0221 4036 p2pimsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:39:58.0612 4036 p2pimsvc - ok
15:39:58.0639 4036 p2psvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:39:58.0657 4036 p2psvc - ok
15:39:58.0702 4036 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
15:39:58.0710 4036 Parport - ok
15:39:58.0774 4036 partmgr (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
15:39:58.0786 4036 partmgr - ok
15:39:58.0832 4036 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
15:39:58.0837 4036 Parvdm - ok
15:39:58.0898 4036 PcaSvc (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
15:39:58.0907 4036 PcaSvc - ok
15:39:58.0958 4036 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
15:39:58.0965 4036 pci - ok
15:39:59.0003 4036 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
15:39:59.0017 4036 pciide - ok
15:39:59.0089 4036 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
15:39:59.0106 4036 pcmcia - ok
15:39:59.0483 4036 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:39:59.0508 4036 PEAUTH - ok
15:39:59.0672 4036 pla (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:39:59.0748 4036 pla - ok
15:39:59.0891 4036 PlugPlay (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:39:59.0918 4036 PlugPlay - ok
15:39:59.0998 4036 PNRPAutoReg (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:40:00.0016 4036 PNRPAutoReg - ok
15:40:00.0048 4036 PNRPsvc (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:40:00.0066 4036 PNRPsvc - ok
15:40:00.0123 4036 PolicyAgent (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:40:00.0174 4036 PolicyAgent - ok
15:40:00.0490 4036 postgresql-8.4 - ok
15:40:00.0574 4036 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:40:00.0588 4036 PptpMiniport - ok
15:40:00.0687 4036 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
15:40:00.0690 4036 Processor - ok
15:40:00.0741 4036 ProfSvc (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:40:00.0752 4036 ProfSvc - ok
15:40:00.0799 4036 ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:40:00.0804 4036 ProtectedStorage - ok
15:40:00.0861 4036 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:40:00.0864 4036 PSched - ok
15:40:00.0968 4036 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
15:40:00.0987 4036 ql2300 - ok
15:40:01.0063 4036 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:40:01.0085 4036 ql40xx - ok
15:40:01.0144 4036 QWAVE (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:40:01.0174 4036 QWAVE - ok
15:40:01.0207 4036 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:40:01.0211 4036 QWAVEdrv - ok
15:40:01.0340 4036 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:40:01.0343 4036 RasAcd - ok
15:40:01.0511 4036 RasAuto (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:40:01.0532 4036 RasAuto - ok
15:40:01.0598 4036 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:40:01.0602 4036 Rasl2tp - ok
15:40:01.0674 4036 RasMan (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:40:01.0695 4036 RasMan - ok
15:40:01.0737 4036 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:40:01.0740 4036 RasPppoe - ok
15:40:01.0788 4036 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:40:01.0791 4036 RasSstp - ok
15:40:01.0851 4036 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:40:01.0858 4036 rdbss - ok
15:40:01.0889 4036 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:40:01.0891 4036 RDPCDD - ok
15:40:01.0973 4036 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
15:40:01.0980 4036 rdpdr - ok
15:40:01.0993 4036 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:40:02.0012 4036 RDPENCDD - ok
15:40:02.0074 4036 RDPWD (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:40:02.0093 4036 RDPWD - ok
15:40:02.0162 4036 RemoteAccess (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:40:02.0171 4036 RemoteAccess - ok
15:40:02.0265 4036 RemoteRegistry (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:40:02.0468 4036 RemoteRegistry - ok
15:40:02.0522 4036 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
15:40:02.0526 4036 rimmptsk - ok
15:40:02.0551 4036 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
15:40:02.0559 4036 rimsptsk - ok
15:40:02.0741 4036 RimUsb (4f4a4c09cc5be58a76cac1c337e004e6) C:\Windows\system32\Drivers\RimUsb.sys
15:40:02.0831 4036 RimUsb - ok
15:40:02.0881 4036 RimVSerPort (3a5633ad615e2b15291bd0b1b97ccd8a) C:\Windows\system32\DRIVERS\RimSerial.sys
15:40:02.0972 4036 RimVSerPort - ok
15:40:03.0167 4036 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
15:40:03.0172 4036 rismxdp - ok
15:40:03.0259 4036 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
15:40:03.0263 4036 ROOTMODEM - ok
15:40:03.0361 4036 RpcLocator (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:40:03.0384 4036 RpcLocator - ok
15:40:03.0639 4036 RpcSs (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:40:03.0656 4036 RpcSs - ok
15:40:03.0689 4036 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:40:03.0693 4036 rspndr - ok
15:40:03.0731 4036 SamSs (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:40:03.0736 4036 SamSs - ok
15:40:03.0781 4036 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:40:03.0785 4036 sbp2port - ok
15:40:03.0843 4036 SCardSvr (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:40:03.0866 4036 SCardSvr - ok
15:40:03.0942 4036 Schedule (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:40:03.0959 4036 Schedule - ok
15:40:04.0003 4036 SCPolicySvc (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:40:04.0005 4036 SCPolicySvc - ok
15:40:04.0043 4036 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
15:40:04.0048 4036 sdbus - ok
15:40:04.0087 4036 SDRSVC (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:40:04.0108 4036 SDRSVC - ok
15:40:04.0140 4036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:40:04.0143 4036 secdrv - ok
15:40:04.0200 4036 seclogon (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:40:04.0208 4036 seclogon - ok
15:40:04.0231 4036 SENS (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:40:04.0239 4036 SENS - ok
15:40:04.0277 4036 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:40:04.0280 4036 Serenum - ok
15:40:04.0334 4036 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:40:04.0338 4036 Serial - ok
15:40:04.0461 4036 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:40:04.0464 4036 sermouse - ok
15:40:04.0693 4036 SessionEnv (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:40:04.0703 4036 SessionEnv - ok
15:40:04.0744 4036 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
15:40:04.0747 4036 sffdisk - ok
15:40:04.0794 4036 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
15:40:04.0796 4036 sffp_mmc - ok
15:40:04.0822 4036 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
15:40:04.0834 4036 sffp_sd - ok
15:40:04.0867 4036 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:40:04.0869 4036 sfloppy - ok
15:40:04.0941 4036 SharedAccess (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:40:04.0970 4036 SharedAccess - ok
15:40:05.0048 4036 ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:40:05.0079 4036 ShellHWDetection - ok
15:40:05.0144 4036 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
15:40:05.0148 4036 sisagp - ok
15:40:05.0169 4036 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
15:40:05.0201 4036 SiSRaid2 - ok
15:40:05.0252 4036 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
15:40:05.0256 4036 SiSRaid4 - ok
15:40:06.0247 4036 Skype C2C Service (2a99850c2a6edd6c6602e822c716edaf) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:40:06.0316 4036 Skype C2C Service - ok
15:40:06.0708 4036 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files\Skype\Updater\Updater.exe
15:40:06.0728 4036 SkypeUpdate - ok
15:40:07.0040 4036 slsvc (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:40:07.0275 4036 slsvc - ok
15:40:08.0077 4036 SLUINotify (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:40:08.0092 4036 SLUINotify - ok
15:40:08.0202 4036 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:40:08.0205 4036 Smb - ok
15:40:08.0317 4036 SNMPTRAP (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:40:08.0344 4036 SNMPTRAP - ok
15:40:08.0859 4036 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:40:08.0862 4036 spldr - ok
15:40:08.0995 4036 Spooler (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:40:09.0016 4036 Spooler - ok
15:40:09.0194 4036 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:40:09.0202 4036 srv - ok
15:40:09.0359 4036 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:40:09.0364 4036 srv2 - ok
15:40:09.0431 4036 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:40:09.0435 4036 srvnet - ok
15:40:09.0483 4036 SSDPSRV (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:40:09.0500 4036 SSDPSRV - ok
15:40:09.0858 4036 SstpSvc (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:40:09.0876 4036 SstpSvc - ok
15:40:10.0228 4036 stisvc (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:40:10.0246 4036 stisvc - ok
15:40:10.0342 4036 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:40:10.0345 4036 swenum - ok
15:40:10.0777 4036 swprv (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:40:10.0808 4036 swprv - ok
15:40:10.0995 4036 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:40:11.0016 4036 Symc8xx - ok
15:40:11.0057 4036 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:40:11.0060 4036 Sym_hi - ok
15:40:11.0223 4036 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:40:11.0226 4036 Sym_u3 - ok
15:40:11.0328 4036 SynTP (6dd49e1a5fa0f01824652f1a0a8866fb) C:\Windows\system32\DRIVERS\SynTP.sys
15:40:11.0347 4036 SynTP - ok
15:40:12.0235 4036 SysMain (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:40:12.0275 4036 SysMain - ok
15:40:12.0318 4036 TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:40:12.0329 4036 TabletInputService - ok
15:40:13.0066 4036 TapiSrv (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:40:13.0078 4036 TapiSrv - ok
15:40:13.0203 4036 TBS (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:40:13.0212 4036 TBS - ok
15:40:14.0272 4036 Tcpip (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\drivers\tcpip.sys
15:40:14.0292 4036 Tcpip - ok
15:40:14.0333 4036 Tcpip6 (ee7e10bed85c312c1d5d30c435bdda9f) C:\Windows\system32\DRIVERS\tcpip.sys
15:40:14.0351 4036 Tcpip6 - ok
15:40:14.0491 4036 tcpipreg (2c2d4cff5e09c73908f9b5af49a51365) C:\Windows\system32\drivers\tcpipreg.sys
15:40:14.0493 4036 tcpipreg - ok
15:40:14.0606 4036 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:40:14.0609 4036 TDPIPE - ok
15:40:14.0771 4036 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:40:14.0774 4036 TDTCP - ok
15:40:15.0047 4036 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:40:15.0051 4036 tdx - ok
15:40:16.0178 4036 TeamViewer7 (a4d2ce94b028ef1e437cf4ac3d8ff26c) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
15:40:16.0229 4036 TeamViewer7 - ok
15:40:17.0267 4036 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:40:17.0271 4036 TermDD - ok
15:40:17.0413 4036 TermService (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:40:17.0452 4036 TermService - ok
15:40:17.0839 4036 Themes (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:40:17.0850 4036 Themes - ok
15:40:17.0892 4036 THREADORDER (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:40:17.0897 4036 THREADORDER - ok
15:40:17.0957 4036 TrkWks (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:40:17.0971 4036 TrkWks - ok
15:40:18.0076 4036 TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:40:18.0079 4036 TrustedInstaller - ok
15:40:18.0209 4036 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:40:18.0212 4036 tssecsrv - ok
15:40:18.0257 4036 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:40:18.0261 4036 tunmp - ok
15:40:18.0310 4036 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:40:18.0313 4036 tunnel - ok
15:40:18.0714 4036 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
15:40:18.0717 4036 uagp35 - ok
15:40:18.0996 4036 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:40:19.0003 4036 udfs - ok
15:40:19.0210 4036 UI0Detect (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:40:19.0243 4036 UI0Detect - ok
15:40:19.0566 4036 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
15:40:19.0569 4036 uliagpkx - ok
15:40:19.0690 4036 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
15:40:19.0734 4036 uliahci - ok
15:40:19.0829 4036 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:40:19.0840 4036 UlSata - ok
15:40:19.0873 4036 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:40:19.0877 4036 ulsata2 - ok
15:40:20.0084 4036 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:40:20.0086 4036 umbus - ok
15:40:20.0234 4036 upnphost (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:40:20.0263 4036 upnphost - ok
15:40:20.0465 4036 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\Windows\system32\Drivers\usbaapl.sys
15:40:20.0559 4036 USBAAPL - ok
15:40:20.0632 4036 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:40:20.0636 4036 usbaudio - ok
15:40:20.0929 4036 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:40:21.0059 4036 usbccgp - ok
15:40:21.0125 4036 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:40:21.0129 4036 usbcir - ok
15:40:21.0201 4036 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:40:21.0204 4036 usbehci - ok
15:40:21.0865 4036 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:40:21.0871 4036 usbhub - ok
15:40:21.0973 4036 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:40:21.0976 4036 usbohci - ok
15:40:22.0122 4036 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:40:22.0125 4036 usbprint - ok
15:40:22.0199 4036 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:40:22.0298 4036 USBSTOR - ok
15:40:22.0444 4036 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
15:40:22.0446 4036 usbuhci - ok
15:40:22.0982 4036 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
15:40:22.0987 4036 usbvideo - ok
15:40:23.0199 4036 UxSms (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:40:23.0208 4036 UxSms - ok
15:40:23.0266 4036 vds (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:40:23.0292 4036 vds - ok
15:40:23.0439 4036 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
15:40:23.0442 4036 vga - ok
15:40:23.0633 4036 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:40:23.0635 4036 VgaSave - ok
15:40:23.0894 4036 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
15:40:23.0898 4036 viaagp - ok
15:40:23.0946 4036 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
15:40:23.0949 4036 ViaC7 - ok
15:40:23.0980 4036 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
15:40:23.0982 4036 viaide - ok
15:40:24.0034 4036 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:40:24.0038 4036 volmgr - ok
15:40:24.0496 4036 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:40:24.0504 4036 volmgrx - ok
15:40:24.0796 4036 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:40:24.0859 4036 volsnap - ok
15:40:24.0910 4036 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
15:40:24.0916 4036 vsmraid - ok
15:40:25.0016 4036 VSS (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:40:25.0078 4036 VSS - ok
15:40:25.0157 4036 W32Time (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:40:25.0189 4036 W32Time - ok
15:40:25.0256 4036 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:40:25.0259 4036 WacomPen - ok
15:40:25.0301 4036 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0305 4036 Wanarp - ok
15:40:25.0320 4036 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:40:25.0323 4036 Wanarpv6 - ok
15:40:25.0403 4036 wcncsvc (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:40:25.0454 4036 wcncsvc - ok
15:40:25.0506 4036 WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:40:25.0516 4036 WcsPlugInService - ok
15:40:25.0555 4036 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
15:40:25.0557 4036 Wd - ok
15:40:25.0638 4036 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
15:40:25.0651 4036 Wdf01000 - ok
15:40:25.0712 4036 WdiServiceHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:40:25.0723 4036 WdiServiceHost - ok
15:40:25.0735 4036 WdiSystemHost (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:40:25.0745 4036 WdiSystemHost - ok
15:40:25.0821 4036 WebClient (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:40:25.0833 4036 WebClient - ok
15:40:25.0889 4036 Wecsvc (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:40:25.0910 4036 Wecsvc - ok
15:40:25.0952 4036 wercplsupport (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:40:25.0963 4036 wercplsupport - ok
15:40:26.0010 4036 WerSvc (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:40:26.0031 4036 WerSvc - ok
15:40:26.0136 4036 winachsf (0acd399f5db3df1b58903cf4949ab5a8) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
15:40:26.0150 4036 winachsf - ok
15:40:26.0272 4036 WinDefend (4575aa12561c5648483403541d0d7f2b) C:\Program Files\Windows Defender\mpsvc.dll
15:40:26.0283 4036 WinDefend - ok
15:40:26.0317 4036 WinHttpAutoProxySvc - ok
15:40:26.0405 4036 Winmgmt (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:40:26.0421 4036 Winmgmt - ok
15:40:26.0532 4036 WinRM (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:40:26.0592 4036 WinRM - ok
15:40:26.0680 4036 Wlansvc (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:40:26.0718 4036 Wlansvc - ok
15:40:26.0907 4036 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:40:26.0982 4036 wlidsvc - ok
15:40:27.0154 4036 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:40:27.0157 4036 WmiAcpi - ok
15:40:27.0244 4036 wmiApSrv (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:40:27.0253 4036 wmiApSrv - ok
15:40:27.0725 4036 WMPNetworkSvc (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:40:27.0777 4036 WMPNetworkSvc - ok
15:40:27.0928 4036 WPCSvc (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:40:27.0949 4036 WPCSvc - ok
15:40:27.0987 4036 WPDBusEnum (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:40:28.0014 4036 WPDBusEnum - ok
15:40:28.0105 4036 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:40:28.0108 4036 WpdUsb - ok
15:40:29.0248 4036 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:40:29.0314 4036 WPFFontCache_v0400 - ok
15:40:29.0425 4036 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:40:29.0429 4036 ws2ifsl - ok
15:40:29.0773 4036 wscsvc (1ca6c40261ddc0425987980d0cd2aaab) C:\Windows\System32\wscsvc.dll
15:40:29.0783 4036 wscsvc - ok
15:40:29.0802 4036 WSearch - ok
15:40:30.0256 4036 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:40:30.0357 4036 wuauserv - ok
15:40:30.0609 4036 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:40:30.0614 4036 WUDFRd - ok
15:40:30.0666 4036 wudfsvc (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:40:30.0677 4036 wudfsvc - ok
15:40:30.0727 4036 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
15:40:30.0730 4036 XAudio - ok
15:40:30.0787 4036 XAudioService (cd5f291a1161f15896d1a4d63daff5df) C:\Windows\system32\DRIVERS\xaudio.exe
15:40:30.0797 4036 XAudioService - ok
15:40:30.0903 4036 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
15:40:31.0645 4036 \Device\Harddisk0\DR0 - ok
15:40:31.0659 4036 Boot (0x1200) (0742baf78d2efb811d93f6ab6a970a0b) \Device\Harddisk0\DR0\Partition0
15:40:31.0666 4036 \Device\Harddisk0\DR0\Partition0 - ok
15:40:31.0669 4036 ============================================================
15:40:31.0669 4036 Scan finished
15:40:31.0669 4036 ============================================================
15:40:31.0717 3988 Detected object count: 0
15:40:31.0718 3988 Actual detected object count: 0

#4 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 30 June 2012 - 03:49 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-30 15:43:04
-----------------------------
15:43:04.754 OS Version: Windows 6.0.6002 Service Pack 2
15:43:04.755 Number of processors: 2 586 0x6802
15:43:04.757 ComputerName: STEVE-PC UserName: Steve
15:43:05.894 Initialize success
15:43:30.012 AVAST engine defs: 12063000
15:43:31.266 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3
15:43:31.276 Disk 0 Vendor: ST9160821AS 3.BHE Size: 152627MB BusType: 3
15:43:31.307 Disk 0 MBR read successfully
15:43:31.319 Disk 0 MBR scan
15:43:31.365 Disk 0 Windows VISTA default MBR code
15:43:31.379 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152625 MB offset 2048
15:43:31.441 Disk 0 scanning sectors +312578048
15:43:31.642 Disk 0 scanning C:\Windows\system32\drivers
15:44:31.536 Service scanning
15:45:14.048 Service MpKsla312ecbf c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{83A9F44F-C753-40E6-8109-FD719CE35F84}\MpKsla312ecbf.sys **LOCKED** 32
15:46:24.049 Modules scanning
15:46:31.649 Disk 0 trace - called modules:
15:46:31.664 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys tcpip.sys NETIO.SYS ndis.sys
15:46:31.670 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85de4ac8]
15:46:31.671 3 CLASSPNP.SYS[8a59d8b3] -> nt!IofCallDriver -> [0x85693bb0]
15:46:31.672 5 acpi.sys[806166bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-3[0x856b8b98]
15:46:33.066 AVAST engine scan C:\Windows
15:46:39.101 AVAST engine scan C:\Windows\system32
15:58:57.324 AVAST engine scan C:\Windows\system32\drivers
15:59:46.418 AVAST engine scan C:\Users\Steve
16:27:09.071 AVAST engine scan C:\ProgramData
16:32:34.681 Scan finished successfully
16:47:11.243 Disk 0 MBR has been saved successfully to "C:\Users\Steve\Pictures\2009-02-26 me\Desktop\MBR.dat"
16:47:11.276 The log file has been saved successfully to "C:\Users\Steve\Pictures\2009-02-26 me\Desktop\aswMBR.txt"

#5 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 30 June 2012 - 07:10 PM

C:\Program Files\Searchqu Toolbar\Datamngr\datamngr.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files\Searchqu Toolbar\Datamngr\DnsBHO.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined
C:\Program Files\Searchqu Toolbar\Datamngr\IEBHO.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting - quarantined

#6 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 30 June 2012 - 07:13 PM

MiniToolBox by Farbar Version: 25-06-2012
Ran by Steve (administrator) on 30-06-2012 at 20:11:58
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

Hosts file not detected in the default directory
========================= IP Configuration: ================================

Atheros AR5007 802.11b/g WiFi Adapter = Wireless Network Connection 2 (Connected)
NVIDIA nForce 10/100 Mbps Ethernet = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : LH-Z3E1ET3ZBXLJ
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5007 802.11b/g WiFi Adapter
Physical Address. . . . . . . . . : 00-1E-4C-7A-D0-BE
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::88d6:918a:74a9:644f%9(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.101(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, June 30, 2012 5:31:15 PM
Lease Expires . . . . . . . . . . : Sunday, July 01, 2012 5:31:15 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 218111564
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0F-E6-43-D7-00-1B-24-F6-1E-02
DNS Servers . . . . . . . . . . . : 205.152.144.23
205.152.132.23
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : dummy.porta.siemens.net
Description . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Physical Address. . . . . . . . . : 00-1B-24-F6-1E-02
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 10:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:11:15a1:3f57:fe9a(Preferred)
Link-local IPv6 Address . . . . . : fe80::11:15a1:3f57:fe9a%10(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.dummy.porta.siemens.net
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns.mia.bellsouth.net
Address: 205.152.144.23

Name: google.com
Addresses: 2607:f8b0:4008:803::1008
74.125.229.32
74.125.229.33
74.125.229.34
74.125.229.35
74.125.229.36
74.125.229.37
74.125.229.38
74.125.229.39
74.125.229.40
74.125.229.41
74.125.229.46



Pinging google.com [74.125.137.139] with 32 bytes of data:

Reply from 74.125.137.139: bytes=32 time=33ms TTL=43

Reply from 74.125.137.139: bytes=32 time=35ms TTL=43



Ping statistics for 74.125.137.139:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 33ms, Maximum = 35ms, Average = 34ms

Server: dns.mia.bellsouth.net
Address: 205.152.144.23

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=50ms TTL=46

Reply from 209.191.122.70: bytes=32 time=48ms TTL=46



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 48ms, Maximum = 50ms, Average = 49ms

Server: dns.mia.bellsouth.net
Address: 205.152.144.23

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
9 ...00 1e 4c 7a d0 be ...... Atheros AR5007 802.11b/g WiFi Adapter
8 ...00 1b 24 f6 1e 02 ...... NVIDIA nForce 10/100 Mbps Ethernet
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
16 ...00 00 00 00 00 00 00 e0 isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
10 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
14 ...00 00 00 00 00 00 00 e0 isatap.{0F725005-4C88-4209-80FA-7A3F01C12AD8}
15 ...00 00 00 00 00 00 00 e0 isatap.dummy.porta.siemens.net
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.101 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.101 281
192.168.1.101 255.255.255.255 On-link 192.168.1.101 281
192.168.1.255 255.255.255.255 On-link 192.168.1.101 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.101 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.101 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
10 18 ::/0 On-link
1 306 ::1/128 On-link
10 18 2001::/32 On-link
10 266 2001:0:4137:9e76:11:15a1:3f57:fe9a/128
On-link
9 281 fe80::/64 On-link
10 266 fe80::/64 On-link
10 266 fe80::11:15a1:3f57:fe9a/128
On-link
9 281 fe80::88d6:918a:74a9:644f/128
On-link
1 306 ff00::/8 On-link
10 266 ff00::/8 On-link
9 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/30/2012 03:29:45 PM) (Source: PostgreSQL) (User: )
Description: 2012-06-30 15:29:45 EDTFATAL: the database system is starting up

Error: (06/30/2012 03:05:51 PM) (Source: Perflib) (User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (06/30/2012 03:05:47 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/30/2012 02:16:49 PM) (Source: PostgreSQL) (User: )
Description: 2012-06-30 14:16:49 EDTFATAL: the database system is starting up

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1271127

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1271127

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1269910

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1269910

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (06/30/2012 05:31:13 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.101 for the Network Card with network address 001E4C7AD0BE has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

Error: (06/30/2012 03:30:23 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (06/30/2012 03:28:52 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 3:27:19 PM on 6/30/2012 was unexpected.

Error: (06/30/2012 02:18:23 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Task Scheduler (CTS)CyberLink Background Capture Service (CBCS)%%1070

Error: (06/30/2012 02:18:23 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Background Capture Service (CBCS)

Error: (06/30/2012 02:17:10 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (06/30/2012 02:16:44 PM) (Source: Microsoft-Windows-ResourcePublication) (User: NT AUTHORITY)
Description: Provider\Microsoft.Base.Publication/Publication/Computer

Error: (06/28/2012 10:32:57 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (06/24/2012 03:01:18 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Task Scheduler (CTS)CyberLink Background Capture Service (CBCS)%%1070

Error: (06/24/2012 03:01:17 PM) (Source: Service Control Manager) (User: )
Description: CyberLink Background Capture Service (CBCS)


Microsoft Office Sessions:
=========================
Error: (06/30/2012 03:29:45 PM) (Source: PostgreSQL)(User: )
Description: 2012-06-30 15:29:45 EDTFATAL: the database system is starting up

Error: (06/30/2012 03:05:51 PM) (Source: Perflib)(User: )
Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4

Error: (06/30/2012 03:05:47 PM) (Source: Perflib)(User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (06/30/2012 02:16:49 PM) (Source: PostgreSQL)(User: )
Description: 2012-06-30 14:16:49 EDTFATAL: the database system is starting up

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1271127

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1271127

Error: (06/30/2012 00:46:28 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1269910

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1269910

Error: (06/30/2012 00:46:27 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


=========================== Installed Programs ============================

Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.1.0.4880)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.3.300.262)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Atheros Driver Installation Program (Version: 7.1)
BlackBerry Desktop Software 7.0 (Version: 7.0.0.59)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 3.19)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HD Audio (Version: 4.36.7.60)
CyberLink YouCam (Version: 1.0.1017)
D3DX10 (Version: 15.4.2368.0902)
DivX Plus Web Player (Version: 2.0.0)
EbbaPoker (Version: 03.40)
Epson Event Manager (Version: 2.40.0001)
EPSON NX420 Series Printer Uninstall
EPSON Scan
EpsonNet Print (Version: 2.4j)
EpsonNet Setup 3.3 (Version: 3.3b)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Google Chrome (Version: 20.0.1132.47)
Google Talk Plugin (Version: 3.1.4.8140)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
GSDPokerNetwork RealAvatars (Version: 03.38)
HDAUDIO Soft Data Fax Modem with SmartCP
Holdem Manager 2
HP Product Detection (Version: 4.0.0011)
HP QuickPlay 3.2
HP QuickTouch 1.00 C4 (Version: 1.0.7)
iTunes (Version: 10.5.3.3)
Java™ 6 Update 6 (Version: 1.6.0.60)
Junk Mail filter update (Version: 15.4.3502.0922)
LG United Mobile Driver (Version: 3.7.2.0)
magicJack (Version: 2.0.6073.4252)
Malwarebytes Anti-Malware versión 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MobileMe Control Panel (Version: 3.1.6.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA Drivers (Version: 1.4)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PokerStars
PostgreSQL 8.4 (Version: 8.4)
QuickTime (Version: 7.71.80.42)
Recuva (Version: 1.42)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (Version: 3.51.01)
Safari (Version: 5.34.52.7)
Searchqu Toolbar (Version: 4.1.0.2790)
Segoe UI (Version: 15.4.2271.0615)
Skype Click to Call (Version: 6.0.10297)
Skype™ 5.10 (Version: 5.10.114)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
TeamViewer 7 (Version: 7.0.12979)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Yahoo! Install Manager
ZEN Entertainment

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3006.18 MB
Available physical RAM: 1768.07 MB
Total Pagefile: 6244.86 MB
Available Pagefile: 5058.66 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.7 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.05 GB) (Free:81.8 GB) NTFS

========================= Users: ========================================

User accounts for \\STEVE-PC

Administrator Guest postgres
Steve


**** End of log ****

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 30 June 2012 - 07:17 PM

Uninstall

Searchqu Toolbar (Version: 4.1.0.2790)

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

adware cleaner

Launch it click on search

post the generated log

#8 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 01 July 2012 - 04:27 PM

I accidently loaded in spanish but it seemed to produce a clean log the first time

#9 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 01 July 2012 - 04:31 PM

# Option [Search]


***** [Services] *****


***** [Files / Folders] *****

Folder Found : C:\Users\Steve\AppData\Local\Ilivid Player
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Program Files\Ask.com
Folder Found : C:\Program Files\Searchqu Toolbar
File Found : C:\Users\Steve\AppData\Local\Temp\Searchqu.ini
File Found : C:\Users\Steve\AppData\Local\Temp\searchqutoolbar-manifest.xml
File Found : C:\Users\Steve\AppData\Local\Temp\SetupDataMngr_Searchqu.exe
File Found : C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\8i6nbxkn.default\searchplugins\Search_Results.xml
File Found : C:\Program Files\Mozilla FireFox\searchplugins\Search_Results.xml

***** [Registry] *****

Key Found : HKCU\Software\DataMngr
Key Found : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Found : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}

***** [Registre - GUID] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.searchnu.com/406

-\\ Mozilla Firefox v12.0 (en-US)

Profile name : default
File : C:\Users\Steve\AppData\Roaming\Mozilla\Firefox\Profiles\8i6nbxkn.default\prefs.js

Found : user_pref("FirstSearch.aol_toolbar.search.hasDoneFirst", 41);
Found : user_pref("aol_toolbar.button.1303935802970_1329377702977.view", "0");
Found : user_pref("aol_toolbar.button.1303935885803_1329377767055.view", "0");
Found : user_pref("aol_toolbar.button.1303936162215_1329377772121.view", "0");
Found : user_pref("aol_toolbar.button.facebook_1329377616478.view", "0");
Found : user_pref("aol_toolbar.button.youtube_1329377611363.view", "0");
Found : user_pref("aol_toolbar.buttons.defaultview", 0);
Found : user_pref("aol_toolbar.buttons.layout", "aol_bookmark_button_1329378080156;1303936162215_13293777721[...]
Found : user_pref("aol_toolbar.firsttime.showwindow", false);
Found : user_pref("aol_toolbar.guid", "{5B911B15-55C3-C5A2-40EF-CF07B438EC20}");
Found : user_pref("aol_toolbar.install.lastTbVersion", "5.74.1.7628");
Found : user_pref("aol_toolbar.metrics.activestampdate", "6");
Found : user_pref("aol_toolbar.metrics.activestampmonth", "4");
Found : user_pref("aol_toolbar.metrics.activestampyear", "2012");
Found : user_pref("aol_toolbar.metrics.originalDate", "16");
Found : user_pref("aol_toolbar.metrics.originalHours", "7");
Found : user_pref("aol_toolbar.metrics.originalMinutes", "33");
Found : user_pref("aol_toolbar.metrics.originalMonth", "2");
Found : user_pref("aol_toolbar.metrics.originalSeconds", "4");
Found : user_pref("aol_toolbar.metrics.originalYear", "2012");
Found : user_pref("aol_toolbar.remote.alerts.xml", "1336255709290");
Found : user_pref("aol_toolbar.remote.publish.xml", "1336255700774");
Found : user_pref("aol_toolbar.remote.rtw.js", "1336255702660");
Found : user_pref("aol_toolbar.remote.ticker.rss", "1336423258074");
Found : user_pref("aol_toolbar.rtw.active", true);
Found : user_pref("aol_toolbar.search.cid", "16-02-2012");
Found : user_pref("aol_toolbar.search.focusnewtab", false);
Found : user_pref("aol_toolbar.search.instd", "20120216073304562");
Found : user_pref("aol_toolbar.search.newtab", false);
Found : user_pref("aol_toolbar.search.oid", "16-02-2012");
Found : user_pref("aol_toolbar.search.populateoncomplete", false);
Found : user_pref("aol_toolbar.search.savehistory", true);
Found : user_pref("aol_toolbar.search.searchtype", "web");
Found : user_pref("aol_toolbar.search.source", "tb50-ff-customfirefoxright");
Found : user_pref("aol_toolbar.skin.custom", false);
Found : user_pref("aol_toolbar.surf.date", "111");
Found : user_pref("aol_toolbar.surf.lastDate", "7");
Found : user_pref("aol_toolbar.surf.lastMonth", "4");
Found : user_pref("aol_toolbar.surf.lastYear", "2012");
Found : user_pref("aol_toolbar.surf.mURL", "");
Found : user_pref("aol_toolbar.surf.mURLh", "0");
Found : user_pref("aol_toolbar.surf.mURLw", "0");
Found : user_pref("aol_toolbar.surf.mURLx", "0");
Found : user_pref("aol_toolbar.surf.mURLy", "0");
Found : user_pref("aol_toolbar.surf.milestone", "-1");
Found : user_pref("aol_toolbar.surf.month", "290");
Found : user_pref("aol_toolbar.surf.prevMonth", "1004");
Found : user_pref("aol_toolbar.surf.show", true);
Found : user_pref("aol_toolbar.surf.total", "5441");
Found : user_pref("aol_toolbar.surf.week", "270");
Found : user_pref("aol_toolbar.surf.year", "5378");
Found : user_pref("aol_toolbar.ticker.animation", "vscroll");
Found : user_pref("aol_toolbar.ticker.collapsed", "0");
Found : user_pref("aol_toolbar.ticker.endColor", "444444");
Found : user_pref("aol_toolbar.ticker.fontFamily", "Verdana,Arial, Helvetica, sans-serif");
Found : user_pref("aol_toolbar.ticker.fontSize", "10");
Found : user_pref("aol_toolbar.ticker.maxWidth", "200");
Found : user_pref("aol_toolbar.ticker.show", true);
Found : user_pref("aol_toolbar.ticker.startColor", "0D0D0D");
Found : user_pref("aol_toolbar.ticker.tipHidden", "Show Headlines");
Found : user_pref("aol_toolbar.ticker.tipVisible", "Hide Headlines");
Found : user_pref("aol_toolbar.ticker.url", "hxxp://feeds.feedburner.com/aolnewstopstories");
Found : user_pref("aol_toolbar.upgrade.showwindow", false);
Found : user_pref("aol_toolbar.weather.degc", "30");
Found : user_pref("aol_toolbar.weather.degf", "86");
Found : user_pref("aol_toolbar.weather.image", "chrome://aoltoolbar/skin/weather/30.png");
Found : user_pref("aol_toolbar.weather.metric", true);
Found : user_pref("aol_toolbar.weather.tooltip", "Miami , FL : Partly Cloudy");
Found : user_pref("aol_toolbar.weather.update", "1336335425670");
Found : user_pref("aol_toolbar.weather.zipcode", "33196");
Found : user_pref("browser.search.defaultenginename", "Search Results");
Found : user_pref("browser.search.order.1", "Search Results");
Found : user_pref("browser.startup.homepage", "hxxp://www.searchnu.com/406");
Found : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=342&systemid=406&sr=0&q=");

-\\ Google Chrome v20.0.1132.47

File : C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Preferences

Found : "homepage": "hxxp://www.searchnu.com/406",
Found : "urls_to_restore_on_startup": [ "hxxp://www.searchnu.com/406", "hxxp://www.google.com" ]
Found : "name": "Search Results",
Found : "search_url": "hxxp://dts.search-results.com/sr?src=crb&appid=342&systemid=406&sr=0&q={searchT[...]
Found : "homepage": "hxxp://www.searchnu.com/406",
Found : "urls_to_restore_on_startup": [ "hxxp://www.searchnu.com/406", "hxxp://www.google.com" ]

*************************

AdwCleaner[R1].txt - [9001 octets] - [01/07/2012 17:19:15]
AdwCleaner[R2].txt - [8932 octets] - [01/07/2012 17:28:57]

########## EOF - C:\AdwCleaner[R2].txt - [9060 octets] ##########

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Versión de la Base de Datos: v2012.07.01.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Steve :: STEVE-PC [administrador]

7/1/2012 3:07:38 PM
mbam-log-2012-07-01 (15-07-38).txt

Tipos de Análisis: Análisis Completo
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 364778
Tiempo transcurrido: 2 hora(s), 10 minuto(s), 16 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 0
(No se han detectado elementos maliciosos)

fin)
this is the mbam in spanish

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 01 July 2012 - 04:37 PM

Do you still have searchnu issue?

#11 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 02 July 2012 - 10:24 PM

everything was fixed thanks

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 02 July 2012 - 10:33 PM

http://www.bleepingcomputer.com/forums/topic459145.html

why did you create a new topic here?

Edited by narenxp, 02 July 2012 - 10:35 PM.


#13 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 02 July 2012 - 10:35 PM

thanks started new thread with other computer my websearch issues on firefox...

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 02 July 2012 - 10:38 PM

Fine,I thought it was the same computer

Hosts


Right click on the link,save the file to this location

C:\windows\system32\drivers\hosts

Uninstall searchqu toolbar


Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows-vista/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#15 jungleman12

jungleman12
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:29 AM

Posted 06 July 2012 - 06:31 PM

I was unable to find the host file under drivers... did the rest though




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users