Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox Redirects


  • Please log in to reply
8 replies to this topic

#1 jwbink1500

jwbink1500

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:18 PM

Posted 22 July 2012 - 05:13 PM

Hi,

I'm getting Firefox redirects occasionally and Malwarebytes has found nothing. Trojankiller found a few things but nothing that solved the redirects.

Can someone please help me?

Thanks
Joel

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:18 PM

Posted 22 July 2012 - 05:15 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 jwbink1500

jwbink1500
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:18 PM

Posted 22 July 2012 - 10:45 PM

21:17:18.0609 2320 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
21:17:18.0937 2320 ============================================================
21:17:18.0937 2320 Current date / time: 2012/07/22 21:17:18.0937
21:17:18.0937 2320 SystemInfo:
21:17:18.0937 2320
21:17:18.0937 2320 OS Version: 5.1.2600 ServicePack: 3.0
21:17:18.0937 2320 Product type: Workstation
21:17:18.0937 2320 ComputerName: MUSIC-ROOM
21:17:18.0937 2320 UserName: Joel Binkholder
21:17:18.0937 2320 Windows directory: C:\WINDOWS
21:17:18.0937 2320 System windows directory: C:\WINDOWS
21:17:18.0937 2320 Processor architecture: Intel x86
21:17:18.0937 2320 Number of processors: 1
21:17:18.0937 2320 Page size: 0x1000
21:17:18.0937 2320 Boot type: Normal boot
21:17:18.0937 2320 ============================================================
21:17:22.0734 2320 Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1431, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
21:17:22.0906 2320 Drive \Device\Harddisk1\DR1 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:17:22.0937 2320 Drive \Device\Harddisk2\DR4 - Size: 0x746F100000 (465.74 Gb), SectorSize: 0x200, Cylinders: 0x21444DB, SectorsPerTrack: 0x1C, TracksPerCylinder: 0x1, Type 'W'
21:17:27.0031 2320 ============================================================
21:17:27.0031 2320 \Device\Harddisk0\DR0:
21:17:27.0031 2320 MBR partitions:
21:17:27.0031 2320 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A852C1
21:17:27.0031 2320 \Device\Harddisk1\DR1:
21:17:27.0046 2320 MBR partitions:
21:17:27.0046 2320 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A89182
21:17:27.0046 2320 \Device\Harddisk2\DR4:
21:17:27.0046 2320 MBR partitions:
21:17:27.0046 2320 \Device\Harddisk2\DR4\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A378000
21:17:27.0046 2320 ============================================================
21:17:27.0093 2320 C: <-> \Device\Harddisk0\DR0\Partition0
21:17:27.0140 2320 G: <-> \Device\Harddisk2\DR4\Partition0
21:17:27.0171 2320 J: <-> \Device\Harddisk1\DR1\Partition0
21:17:27.0171 2320 ============================================================
21:17:27.0171 2320 Initialize success
21:17:27.0171 2320 ============================================================
21:17:33.0093 1728 ============================================================
21:17:33.0093 1728 Scan started
21:17:33.0093 1728 Mode: Manual;
21:17:33.0093 1728 ============================================================
21:17:33.0828 1728 A2DDA (f7eabca8375ea2dc6f35c4bca4757515) C:\Documents and Settings\Joel Binkholder\Desktop\EmsisoftEmergencyKit\Run\a2ddax86.sys
21:17:33.0843 1728 A2DDA - ok
21:17:33.0953 1728 Abiosdsk - ok
21:17:33.0968 1728 abp480n5 - ok
21:17:34.0031 1728 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:17:34.0046 1728 ACPI - ok
21:17:34.0109 1728 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
21:17:34.0109 1728 ACPIEC - ok
21:17:34.0281 1728 AdobeActiveFileMonitor10.0 (047bd1eb681453a7fe492a71802ac9f3) C:\Program Files\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
21:17:34.0296 1728 AdobeActiveFileMonitor10.0 - ok
21:17:34.0312 1728 adpu160m - ok
21:17:34.0375 1728 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:17:34.0390 1728 aec - ok
21:17:34.0453 1728 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
21:17:34.0453 1728 AFD - ok
21:17:34.0515 1728 AgereModemAudio (6416f9b6b220f0a890525c38235afad7) C:\Program Files\LSI SoftModem\agrsmsvc.exe
21:17:34.0515 1728 AgereModemAudio - ok
21:17:34.0625 1728 AgereSoftModem (7560f465f1ce69c53bf17559ee195548) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
21:17:34.0671 1728 AgereSoftModem - ok
21:17:34.0687 1728 Aha154x - ok
21:17:34.0703 1728 aic78u2 - ok
21:17:34.0718 1728 aic78xx - ok
21:17:34.0968 1728 ALCXWDM (8d6c30e515717248e0e52b85fd7ac466) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
21:17:35.0046 1728 ALCXWDM - ok
21:17:35.0203 1728 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
21:17:35.0203 1728 Alerter - ok
21:17:35.0234 1728 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
21:17:35.0234 1728 ALG - ok
21:17:35.0265 1728 AliIde - ok
21:17:35.0328 1728 AmdK7 (8fce268cdbdd83b23419d1f35f42c7b1) C:\WINDOWS\system32\DRIVERS\amdk7.sys
21:17:35.0328 1728 AmdK7 - ok
21:17:35.0343 1728 amsint - ok
21:17:35.0453 1728 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:17:35.0453 1728 Apple Mobile Device - ok
21:17:35.0484 1728 AppMgmt - ok
21:17:35.0546 1728 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
21:17:35.0546 1728 Arp1394 - ok
21:17:35.0562 1728 asc - ok
21:17:35.0593 1728 asc3350p - ok
21:17:35.0609 1728 asc3550 - ok
21:17:35.0734 1728 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:17:35.0781 1728 aspnet_state - ok
21:17:35.0828 1728 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:17:35.0828 1728 AsyncMac - ok
21:17:35.0890 1728 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:17:35.0906 1728 atapi - ok
21:17:35.0921 1728 Atdisk - ok
21:17:36.0046 1728 Ati HotKey Poller (454dfdc3d40b777455846e749d3b49ff) C:\WINDOWS\system32\Ati2evxx.exe
21:17:36.0062 1728 Ati HotKey Poller - ok
21:17:36.0187 1728 ATI Smart (ef94e95e9d5366a88275fbb15e9d6e74) C:\WINDOWS\system32\ati2sgag.exe
21:17:36.0203 1728 ATI Smart - ok
21:17:36.0578 1728 ati2mtag (c51608bba3248be2f6d21b132910752a) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:17:36.0703 1728 ati2mtag - ok
21:17:36.0859 1728 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:17:36.0859 1728 Atmarpc - ok
21:17:36.0921 1728 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
21:17:36.0921 1728 AudioSrv - ok
21:17:36.0953 1728 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:17:36.0968 1728 audstub - ok
21:17:37.0015 1728 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:17:37.0015 1728 Beep - ok
21:17:37.0109 1728 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
21:17:37.0140 1728 BITS - ok
21:17:37.0312 1728 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
21:17:37.0328 1728 Bonjour Service - ok
21:17:37.0390 1728 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
21:17:37.0390 1728 Browser - ok
21:17:37.0453 1728 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:17:37.0453 1728 cbidf2k - ok
21:17:37.0484 1728 cd20xrnt - ok
21:17:37.0546 1728 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:17:37.0546 1728 Cdaudio - ok
21:17:37.0625 1728 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:17:37.0625 1728 Cdfs - ok
21:17:37.0656 1728 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:17:37.0656 1728 Cdrom - ok
21:17:37.0671 1728 Changer - ok
21:17:37.0750 1728 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
21:17:37.0750 1728 CiSvc - ok
21:17:37.0812 1728 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
21:17:37.0812 1728 ClipSrv - ok
21:17:37.0953 1728 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:17:38.0156 1728 clr_optimization_v2.0.50727_32 - ok
21:17:38.0171 1728 CmdIde - ok
21:17:38.0187 1728 COMSysApp - ok
21:17:38.0218 1728 Cpqarray - ok
21:17:38.0328 1728 Creative Audio Engine Licensing Service (c0ead9f8ab83d41ff07303c75589c2b8) C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
21:17:38.0328 1728 Creative Audio Engine Licensing Service - ok
21:17:38.0359 1728 Creative Service for CDROM Access (3c8b6609712f4ff78e521f6dcfc4032b) C:\WINDOWS\system32\CTsvcCDA.EXE
21:17:38.0359 1728 Creative Service for CDROM Access - ok
21:17:38.0421 1728 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
21:17:38.0421 1728 CryptSvc - ok
21:17:38.0500 1728 CT20XUT (b9106942eb5dd0e034ab40a9d48d056e) C:\WINDOWS\system32\drivers\CT20XUT.SYS
21:17:38.0515 1728 CT20XUT - ok
21:17:38.0531 1728 CT20XUT.SYS (b9106942eb5dd0e034ab40a9d48d056e) C:\WINDOWS\System32\drivers\CT20XUT.SYS
21:17:38.0531 1728 CT20XUT.SYS - ok
21:17:38.0609 1728 ctac32k (f2b1d0a3d21bd0d9f46457cbcec1a0e9) C:\WINDOWS\system32\drivers\ctac32k.sys
21:17:38.0640 1728 ctac32k - ok
21:17:38.0703 1728 ctaud2k (44f60a5e3c3a8a6bba4c280948ea6095) C:\WINDOWS\system32\drivers\ctaud2k.sys
21:17:38.0734 1728 ctaud2k - ok
21:17:38.0859 1728 CTAudSvcService (07ba6d17e66879018b30b6c3f976ebed) C:\Program Files\Creative\Shared Files\CTAudSvc.exe
21:17:38.0890 1728 CTAudSvcService - ok
21:17:38.0968 1728 ctdvda2k (8cbe82d6bbf206e144f22cb33fab1f2c) C:\WINDOWS\system32\drivers\ctdvda2k.sys
21:17:38.0984 1728 ctdvda2k - ok
21:17:39.0156 1728 CTEXFIFX (4ae083d16ac9fc9bdf98498f93426226) C:\WINDOWS\system32\drivers\CTEXFIFX.SYS
21:17:39.0203 1728 CTEXFIFX - ok
21:17:39.0234 1728 CTEXFIFX.SYS (4ae083d16ac9fc9bdf98498f93426226) C:\WINDOWS\System32\drivers\CTEXFIFX.SYS
21:17:39.0265 1728 CTEXFIFX.SYS - ok
21:17:39.0296 1728 CTHWIUT (b610bfe02f9fc0cb0b1cde3ec4c13ffa) C:\WINDOWS\system32\drivers\CTHWIUT.SYS
21:17:39.0296 1728 CTHWIUT - ok
21:17:39.0328 1728 CTHWIUT.SYS (b610bfe02f9fc0cb0b1cde3ec4c13ffa) C:\WINDOWS\System32\drivers\CTHWIUT.SYS
21:17:39.0328 1728 CTHWIUT.SYS - ok
21:17:39.0343 1728 ctprxy2k (f0f19a13c948e5289601e354b08e0941) C:\WINDOWS\system32\drivers\ctprxy2k.sys
21:17:39.0359 1728 ctprxy2k - ok
21:17:39.0390 1728 ctsfm2k (c7b2c36a6203a5f3d0a378fd78c5ddd6) C:\WINDOWS\system32\drivers\ctsfm2k.sys
21:17:39.0390 1728 ctsfm2k - ok
21:17:39.0406 1728 dac2w2k - ok
21:17:39.0421 1728 dac960nt - ok
21:17:39.0531 1728 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
21:17:39.0546 1728 DcomLaunch - ok
21:17:39.0609 1728 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
21:17:39.0625 1728 Dhcp - ok
21:17:39.0687 1728 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:17:39.0687 1728 Disk - ok
21:17:39.0703 1728 dmadmin - ok
21:17:39.0828 1728 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
21:17:39.0859 1728 dmboot - ok
21:17:39.0921 1728 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
21:17:39.0937 1728 dmio - ok
21:17:40.0000 1728 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:17:40.0000 1728 dmload - ok
21:17:40.0062 1728 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
21:17:40.0078 1728 dmserver - ok
21:17:40.0093 1728 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:17:40.0109 1728 DMusic - ok
21:17:40.0125 1728 Dnscache (474b4dc3983173e4b4c9740b0dac98a6) C:\WINDOWS\System32\dnsrslvr.dll
21:17:40.0140 1728 Dnscache - ok
21:17:40.0203 1728 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
21:17:40.0203 1728 Dot3svc - ok
21:17:40.0218 1728 dpti2o - ok
21:17:40.0281 1728 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:17:40.0281 1728 drmkaud - ok
21:17:40.0343 1728 DrvAgent32 (651554e483712b708ede864d0ca1aa73) C:\WINDOWS\system32\Drivers\DrvAgent32.sys
21:17:40.0359 1728 DrvAgent32 - ok
21:17:40.0421 1728 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
21:17:40.0437 1728 dtsoftbus01 - ok
21:17:40.0500 1728 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
21:17:40.0500 1728 EapHost - ok
21:17:40.0562 1728 emupia (fb2d6d4d14ae801f5267b0368fc0cb0c) C:\WINDOWS\system32\drivers\emupia2k.sys
21:17:40.0578 1728 emupia - ok
21:17:40.0625 1728 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
21:17:40.0640 1728 ERSvc - ok
21:17:40.0718 1728 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
21:17:40.0718 1728 Eventlog - ok
21:17:40.0781 1728 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
21:17:40.0812 1728 EventSystem - ok
21:17:40.0875 1728 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:17:40.0890 1728 Fastfat - ok
21:17:40.0968 1728 FastUserSwitchingCompatibility (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
21:17:40.0984 1728 FastUserSwitchingCompatibility - ok
21:17:41.0046 1728 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
21:17:41.0046 1728 Fdc - ok
21:17:41.0109 1728 FETNDIS (e9648254056bce81a85380c0c3647dc4) C:\WINDOWS\system32\DRIVERS\fetnd5.sys
21:17:41.0109 1728 FETNDIS - ok
21:17:41.0171 1728 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
21:17:41.0187 1728 Fips - ok
21:17:41.0250 1728 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:17:41.0250 1728 Flpydisk - ok
21:17:41.0312 1728 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:17:41.0328 1728 FltMgr - ok
21:17:41.0375 1728 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
21:17:41.0375 1728 fssfltr - ok
21:17:41.0640 1728 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:17:41.0671 1728 fsssvc - ok
21:17:41.0718 1728 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:17:41.0718 1728 Fs_Rec - ok
21:17:41.0765 1728 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:17:41.0765 1728 Ftdisk - ok
21:17:41.0812 1728 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:17:41.0812 1728 GEARAspiWDM - ok
21:17:41.0890 1728 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:17:41.0890 1728 Gpc - ok
21:17:41.0937 1728 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
21:17:41.0953 1728 GTNDIS5 - ok
21:17:42.0109 1728 ha20x2k (7ff1ced1201c169a783b0e81cc561fba) C:\WINDOWS\system32\drivers\ha20x2k.sys
21:17:42.0171 1728 ha20x2k - ok
21:17:42.0281 1728 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:17:42.0281 1728 helpsvc - ok
21:17:42.0343 1728 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
21:17:42.0343 1728 HidServ - ok
21:17:42.0390 1728 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:17:42.0406 1728 HidUsb - ok
21:17:42.0468 1728 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
21:17:42.0468 1728 hkmsvc - ok
21:17:42.0484 1728 hpn - ok
21:17:42.0562 1728 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:17:42.0562 1728 HPZid412 - ok
21:17:42.0593 1728 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:17:42.0593 1728 HPZipr12 - ok
21:17:42.0640 1728 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:17:42.0656 1728 HPZius12 - ok
21:17:42.0734 1728 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
21:17:42.0750 1728 HTTP - ok
21:17:42.0812 1728 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
21:17:42.0812 1728 HTTPFilter - ok
21:17:42.0828 1728 i2omgmt - ok
21:17:42.0843 1728 i2omp - ok
21:17:42.0906 1728 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:17:42.0906 1728 i8042prt - ok
21:17:42.0968 1728 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:17:42.0984 1728 Imapi - ok
21:17:43.0015 1728 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
21:17:43.0015 1728 ImapiService - ok
21:17:43.0046 1728 ini910u - ok
21:17:43.0078 1728 IntelIde - ok
21:17:43.0140 1728 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:17:43.0140 1728 Ip6Fw - ok
21:17:43.0171 1728 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:17:43.0171 1728 IpInIp - ok
21:17:43.0234 1728 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:17:43.0250 1728 IpNat - ok
21:17:43.0406 1728 iPod Service (33642c17c232aa272c68e446a2619899) C:\Program Files\iPod\bin\iPodService.exe
21:17:43.0453 1728 iPod Service - ok
21:17:43.0515 1728 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:17:43.0515 1728 IPSec - ok
21:17:43.0578 1728 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:17:43.0593 1728 IRENUM - ok
21:17:43.0656 1728 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:17:43.0671 1728 isapnp - ok
21:17:43.0765 1728 JavaQuickStarterService (4f2143570d2250ca4c4a4c98553c82cd) C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
21:17:43.0781 1728 JavaQuickStarterService - ok
21:17:43.0828 1728 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:17:43.0828 1728 Kbdclass - ok
21:17:43.0875 1728 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:17:43.0875 1728 kbdhid - ok
21:17:43.0906 1728 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:17:43.0921 1728 kmixer - ok
21:17:44.0000 1728 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:17:44.0000 1728 KSecDD - ok
21:17:44.0062 1728 lanmanserver (f385f4b02c535bffe1d70cab80838123) C:\WINDOWS\System32\srvsvc.dll
21:17:44.0078 1728 lanmanserver - ok
21:17:44.0156 1728 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
21:17:44.0156 1728 lanmanworkstation - ok
21:17:44.0171 1728 lbrtfdc - ok
21:17:44.0250 1728 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
21:17:44.0250 1728 LmHosts - ok
21:17:44.0312 1728 MBAMSwissArmy (0db7527db188c7d967a37bb51bbf3963) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
21:17:44.0312 1728 MBAMSwissArmy - ok
21:17:44.0343 1728 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
21:17:44.0359 1728 Messenger - ok
21:17:44.0515 1728 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:17:44.0515 1728 Microsoft Office Groove Audit Service - ok
21:17:44.0578 1728 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:17:44.0578 1728 mnmdd - ok
21:17:44.0656 1728 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
21:17:44.0656 1728 mnmsrvc - ok
21:17:44.0718 1728 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
21:17:44.0718 1728 Modem - ok
21:17:44.0796 1728 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:17:44.0796 1728 Mouclass - ok
21:17:44.0812 1728 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:17:44.0812 1728 mouhid - ok
21:17:44.0875 1728 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:17:44.0875 1728 MountMgr - ok
21:17:44.0968 1728 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:17:44.0968 1728 MozillaMaintenance - ok
21:17:45.0000 1728 mraid35x - ok
21:17:45.0031 1728 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:17:45.0031 1728 MRxDAV - ok
21:17:45.0140 1728 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:17:45.0156 1728 MRxSmb - ok
21:17:45.0234 1728 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
21:17:45.0234 1728 MSDTC - ok
21:17:45.0296 1728 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:17:45.0296 1728 Msfs - ok
21:17:45.0312 1728 MSIServer - ok
21:17:45.0359 1728 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:17:45.0359 1728 MSKSSRV - ok
21:17:45.0375 1728 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:17:45.0390 1728 MSPCLOCK - ok
21:17:45.0406 1728 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:17:45.0406 1728 MSPQM - ok
21:17:45.0453 1728 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:17:45.0468 1728 mssmbios - ok
21:17:45.0500 1728 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
21:17:45.0500 1728 Mup - ok
21:17:45.0578 1728 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
21:17:45.0593 1728 napagent - ok
21:17:45.0671 1728 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:17:45.0671 1728 NDIS - ok
21:17:45.0750 1728 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:17:45.0750 1728 NdisTapi - ok
21:17:45.0796 1728 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:17:45.0796 1728 Ndisuio - ok
21:17:45.0859 1728 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:17:45.0875 1728 NdisWan - ok
21:17:45.0953 1728 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
21:17:45.0953 1728 NDProxy - ok
21:17:45.0984 1728 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:17:45.0984 1728 NetBIOS - ok
21:17:46.0046 1728 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:17:46.0062 1728 NetBT - ok
21:17:46.0093 1728 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
21:17:46.0109 1728 NetDDE - ok
21:17:46.0125 1728 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
21:17:46.0125 1728 NetDDEdsdm - ok
21:17:46.0156 1728 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
21:17:46.0156 1728 Netlogon - ok
21:17:46.0187 1728 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
21:17:46.0203 1728 Netman - ok
21:17:46.0234 1728 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
21:17:46.0234 1728 NIC1394 - ok
21:17:46.0328 1728 Nla (832e4dd8964ab7acc880b2837cb1ed20) C:\WINDOWS\System32\mswsock.dll
21:17:46.0343 1728 Nla - ok
21:17:46.0421 1728 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:17:46.0421 1728 Npfs - ok
21:17:46.0484 1728 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:17:46.0515 1728 Ntfs - ok
21:17:46.0531 1728 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
21:17:46.0531 1728 NtLmSsp - ok
21:17:46.0640 1728 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
21:17:46.0656 1728 NtmsSvc - ok
21:17:46.0718 1728 NuidFltr (cf7e041663119e09d2e118521ada9300) C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
21:17:46.0718 1728 NuidFltr - ok
21:17:46.0781 1728 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:17:46.0781 1728 Null - ok
21:17:46.0843 1728 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:17:46.0859 1728 NwlnkFlt - ok
21:17:46.0875 1728 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:17:46.0890 1728 NwlnkFwd - ok
21:17:47.0062 1728 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:17:47.0093 1728 odserv - ok
21:17:47.0187 1728 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
21:17:47.0187 1728 ohci1394 - ok
21:17:47.0250 1728 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:17:47.0265 1728 ose - ok
21:17:47.0312 1728 ossrv (ac5bf1a610effaae9cfc48cb53483f08) C:\WINDOWS\system32\drivers\ctoss2k.sys
21:17:47.0328 1728 ossrv - ok
21:17:47.0359 1728 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
21:17:47.0359 1728 Parport - ok
21:17:47.0406 1728 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:17:47.0406 1728 PartMgr - ok
21:17:47.0484 1728 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
21:17:47.0484 1728 ParVdm - ok
21:17:47.0531 1728 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
21:17:47.0531 1728 PCI - ok
21:17:47.0546 1728 PCIDump - ok
21:17:47.0578 1728 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
21:17:47.0578 1728 PCIIde - ok
21:17:47.0625 1728 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
21:17:47.0625 1728 Pcmcia - ok
21:17:47.0640 1728 PDCOMP - ok
21:17:47.0671 1728 PDFRAME - ok
21:17:47.0687 1728 PDRELI - ok
21:17:47.0703 1728 PDRFRAME - ok
21:17:47.0718 1728 perc2 - ok
21:17:47.0734 1728 perc2hib - ok
21:17:47.0843 1728 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
21:17:47.0843 1728 PlugPlay - ok
21:17:47.0906 1728 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe
21:17:47.0921 1728 Pml Driver HPZ12 - ok
21:17:47.0984 1728 Point32 (dcdf0421a1c14f2923e298a30fd7636d) C:\WINDOWS\system32\DRIVERS\point32.sys
21:17:47.0984 1728 Point32 - ok
21:17:48.0031 1728 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
21:17:48.0031 1728 PolicyAgent - ok
21:17:48.0093 1728 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:17:48.0109 1728 PptpMiniport - ok
21:17:48.0109 1728 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
21:17:48.0109 1728 ProtectedStorage - ok
21:17:48.0171 1728 Ps2 (390c204ced3785609ab24e9c52054a84) C:\WINDOWS\system32\DRIVERS\PS2.sys
21:17:48.0171 1728 Ps2 - ok
21:17:48.0203 1728 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:17:48.0203 1728 PSched - ok
21:17:48.0234 1728 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:17:48.0234 1728 Ptilink - ok
21:17:48.0281 1728 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:17:48.0281 1728 PxHelp20 - ok
21:17:48.0296 1728 ql1080 - ok
21:17:48.0312 1728 Ql10wnt - ok
21:17:48.0328 1728 ql12160 - ok
21:17:48.0343 1728 ql1240 - ok
21:17:48.0375 1728 ql1280 - ok
21:17:48.0437 1728 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:17:48.0437 1728 RasAcd - ok
21:17:48.0500 1728 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
21:17:48.0500 1728 RasAuto - ok
21:17:48.0531 1728 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:17:48.0546 1728 Rasl2tp - ok
21:17:48.0593 1728 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
21:17:48.0625 1728 RasMan - ok
21:17:48.0671 1728 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:17:48.0671 1728 RasPppoe - ok
21:17:48.0703 1728 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:17:48.0703 1728 Raspti - ok
21:17:48.0765 1728 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:17:48.0781 1728 Rdbss - ok
21:17:48.0812 1728 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:17:48.0812 1728 RDPCDD - ok
21:17:48.0859 1728 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
21:17:48.0859 1728 RDPWD - ok
21:17:48.0937 1728 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
21:17:48.0953 1728 RDSessMgr - ok
21:17:49.0046 1728 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:17:49.0046 1728 redbook - ok
21:17:49.0109 1728 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
21:17:49.0109 1728 RemoteAccess - ok
21:17:49.0187 1728 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
21:17:49.0187 1728 RpcLocator - ok
21:17:49.0234 1728 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll
21:17:49.0250 1728 RpcSs - ok
21:17:49.0281 1728 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
21:17:49.0296 1728 RSVP - ok
21:17:49.0343 1728 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
21:17:49.0343 1728 rtl8139 - ok
21:17:49.0390 1728 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
21:17:49.0390 1728 SamSs - ok
21:17:49.0531 1728 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
21:17:49.0546 1728 SASDIFSV - ok
21:17:49.0671 1728 SASENUM - ok
21:17:49.0703 1728 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
21:17:49.0718 1728 SASKUTIL - ok
21:17:49.0781 1728 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
21:17:49.0796 1728 SCardSvr - ok
21:17:49.0859 1728 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
21:17:49.0875 1728 Schedule - ok
21:17:49.0984 1728 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:17:50.0015 1728 SeaPort - ok
21:17:50.0062 1728 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:17:50.0062 1728 Secdrv - ok
21:17:50.0140 1728 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
21:17:50.0140 1728 seclogon - ok
21:17:50.0171 1728 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
21:17:50.0171 1728 SENS - ok
21:17:50.0203 1728 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:17:50.0203 1728 serenum - ok
21:17:50.0234 1728 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
21:17:50.0234 1728 Serial - ok
21:17:50.0265 1728 sfdrv01 (4c0d673281178cb496011a2e28571fc8) C:\WINDOWS\system32\drivers\sfdrv01.sys
21:17:50.0265 1728 sfdrv01 - ok
21:17:50.0281 1728 sfhlp02 (15be2b5e4dc5b8623cf167720682abc9) C:\WINDOWS\system32\drivers\sfhlp02.sys
21:17:50.0281 1728 sfhlp02 - ok
21:17:50.0343 1728 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
21:17:50.0343 1728 Sfloppy - ok
21:17:50.0359 1728 sfsync02 (efebbc1d13fdb77a6af4eddfc7232edf) C:\WINDOWS\system32\drivers\sfsync02.sys
21:17:50.0359 1728 sfsync02 - ok
21:17:50.0453 1728 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
21:17:50.0468 1728 SharedAccess - ok
21:17:50.0531 1728 ShellHWDetection (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
21:17:50.0531 1728 ShellHWDetection - ok
21:17:50.0546 1728 Simbad - ok
21:17:50.0562 1728 Sparrow - ok
21:17:50.0609 1728 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:17:50.0609 1728 splitter - ok
21:17:50.0671 1728 Spooler (d8e14a61acc1d4a6cd0d38aebac7fa3b) C:\WINDOWS\system32\spoolsv.exe
21:17:50.0671 1728 Spooler - ok
21:17:50.0734 1728 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
21:17:50.0734 1728 sr - ok
21:17:50.0812 1728 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
21:17:50.0828 1728 srservice - ok
21:17:50.0968 1728 Srv (3bb03f2ba89d2be417206c373d2af17c) C:\WINDOWS\system32\DRIVERS\srv.sys
21:17:50.0984 1728 Srv - ok
21:17:51.0046 1728 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
21:17:51.0046 1728 SSDPSRV - ok
21:17:51.0140 1728 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
21:17:51.0171 1728 stisvc - ok
21:17:51.0234 1728 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:17:51.0234 1728 swenum - ok
21:17:51.0296 1728 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:17:51.0296 1728 swmidi - ok
21:17:51.0328 1728 SwPrv - ok
21:17:51.0343 1728 symc810 - ok
21:17:51.0359 1728 symc8xx - ok
21:17:51.0390 1728 sym_hi - ok
21:17:51.0406 1728 sym_u3 - ok
21:17:51.0484 1728 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:17:51.0484 1728 sysaudio - ok
21:17:51.0546 1728 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
21:17:51.0546 1728 SysmonLog - ok
21:17:51.0593 1728 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
21:17:51.0625 1728 TapiSrv - ok
21:17:51.0703 1728 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:17:51.0718 1728 Tcpip - ok
21:17:51.0781 1728 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:17:51.0781 1728 TDPIPE - ok
21:17:51.0812 1728 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:17:51.0812 1728 TDTCP - ok
21:17:51.0890 1728 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:17:51.0890 1728 TermDD - ok
21:17:51.0968 1728 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
21:17:52.0000 1728 TermService - ok
21:17:52.0062 1728 Themes (1926899bf9ffe2602b63074971700412) C:\WINDOWS\System32\shsvcs.dll
21:17:52.0062 1728 Themes - ok
21:17:52.0093 1728 TosIde - ok
21:17:52.0156 1728 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
21:17:52.0171 1728 TrkWks - ok
21:17:52.0234 1728 TrojanKillerDriver (113384367c3999e084fe156b18c7625e) C:\WINDOWS\system32\DRIVERS\gtkdrv.sys
21:17:52.0234 1728 TrojanKillerDriver - ok
21:17:52.0281 1728 uagp35 (d85938f272d1bcf3db3a31fc0a048928) C:\WINDOWS\system32\DRIVERS\uagp35.sys
21:17:52.0281 1728 uagp35 - ok
21:17:52.0343 1728 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:17:52.0343 1728 Udfs - ok
21:17:52.0359 1728 ultra - ok
21:17:52.0468 1728 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:17:52.0500 1728 Update - ok
21:17:52.0531 1728 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
21:17:52.0546 1728 upnphost - ok
21:17:52.0578 1728 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
21:17:52.0578 1728 UPS - ok
21:17:52.0625 1728 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
21:17:52.0640 1728 USBAAPL - ok
21:17:52.0890 1728 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:17:52.0890 1728 usbccgp - ok
21:17:53.0000 1728 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:17:53.0000 1728 usbehci - ok
21:17:53.0187 1728 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:17:53.0203 1728 usbhub - ok
21:17:53.0250 1728 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
21:17:53.0250 1728 usbprint - ok
21:17:53.0328 1728 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:17:53.0328 1728 usbscan - ok
21:17:53.0375 1728 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:17:53.0390 1728 USBSTOR - ok
21:17:53.0453 1728 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:17:53.0468 1728 usbuhci - ok
21:17:53.0531 1728 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
21:17:53.0531 1728 USB_RNDIS - ok
21:17:53.0609 1728 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:17:53.0609 1728 VgaSave - ok
21:17:53.0671 1728 viagfx (45489356501ec6cbb789dece991d393f) C:\WINDOWS\system32\DRIVERS\vtmini.sys
21:17:53.0687 1728 viagfx - ok
21:17:53.0750 1728 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
21:17:53.0750 1728 ViaIde - ok
21:17:53.0812 1728 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
21:17:53.0828 1728 VolSnap - ok
21:17:53.0906 1728 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
21:17:53.0921 1728 VSS - ok
21:17:53.0984 1728 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
21:17:54.0015 1728 W32Time - ok
21:17:54.0078 1728 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:17:54.0078 1728 Wanarp - ok
21:17:54.0187 1728 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
21:17:54.0218 1728 Wdf01000 - ok
21:17:54.0234 1728 WDICA - ok
21:17:54.0296 1728 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:17:54.0296 1728 wdmaud - ok
21:17:54.0359 1728 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
21:17:54.0359 1728 WebClient - ok
21:17:54.0515 1728 WinDefend (f45dd1e1365d857dd08bc23563370d0e) C:\Program Files\Windows Defender\MsMpEng.exe
21:17:54.0515 1728 WinDefend - ok
21:17:54.0625 1728 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
21:17:54.0625 1728 winmgmt - ok
21:17:54.0718 1728 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
21:17:54.0718 1728 WmdmPmSN - ok
21:17:54.0796 1728 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:17:54.0796 1728 WmiApSrv - ok
21:17:55.0000 1728 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
21:17:55.0031 1728 WMPNetworkSvc - ok
21:17:55.0140 1728 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
21:17:55.0140 1728 wscsvc - ok
21:17:55.0203 1728 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
21:17:55.0218 1728 wuauserv - ok
21:17:55.0296 1728 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:17:55.0296 1728 WudfPf - ok
21:17:55.0312 1728 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:17:55.0312 1728 WudfRd - ok
21:17:55.0343 1728 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
21:17:55.0343 1728 WudfSvc - ok
21:17:55.0453 1728 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
21:17:55.0484 1728 WZCSVC - ok
21:17:55.0515 1728 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
21:17:55.0515 1728 xmlprov - ok
21:17:55.0593 1728 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
21:17:56.0078 1728 \Device\Harddisk0\DR0 - ok
21:17:56.0093 1728 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
21:17:56.0109 1728 \Device\Harddisk1\DR1 - ok
21:17:56.0125 1728 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR4
21:17:56.0125 1728 \Device\Harddisk2\DR4 - ok
21:17:56.0140 1728 Boot (0x1200) (dece859979cba5930379430018589656) \Device\Harddisk0\DR0\Partition0
21:17:56.0140 1728 \Device\Harddisk0\DR0\Partition0 - ok
21:17:56.0156 1728 Boot (0x1200) (098dd823607585d108493e5af1f8b28f) \Device\Harddisk1\DR1\Partition0
21:17:56.0156 1728 \Device\Harddisk1\DR1\Partition0 - ok
21:17:56.0171 1728 Boot (0x1200) (7c7f268a9f756b0afe78e8f98f1fdf96) \Device\Harddisk2\DR4\Partition0
21:17:56.0171 1728 \Device\Harddisk2\DR4\Partition0 - ok
21:17:56.0187 1728 ============================================================
21:17:56.0187 1728 Scan finished
21:17:56.0187 1728 ============================================================
21:17:56.0218 3928 Detected object count: 0
21:17:56.0218 3928 Actual detected object count: 0


----------------------------------------------------------------------------------------------------------------------




aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-22 21:19:09
-----------------------------
21:19:09.125 OS Version: Windows 5.1.2600 Service Pack 3
21:19:09.125 Number of processors: 1 586 0xA00
21:19:09.125 ComputerName: MUSIC-ROOM UserName:
21:19:09.656 Initialize success
21:22:54.343 AVAST engine defs: 12072201
21:23:49.718 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-13
21:23:49.718 Disk 0 Vendor: ST340015A 3.15 Size: 38166MB BusType: 3
21:23:49.718 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-1b
21:23:49.718 Disk 1 Vendor: ST340016A 3.10 Size: 38166MB BusType: 3
21:23:49.734 Disk 0 MBR read successfully
21:23:49.734 Disk 0 MBR scan
21:23:49.875 Disk 0 Windows XP default MBR code
21:23:49.906 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 38154 MB offset 63
21:23:49.906 Disk 0 scanning sectors +78140160
21:23:50.109 Disk 0 scanning C:\WINDOWS\system32\drivers
21:24:09.796 Service scanning
21:24:59.812 Modules scanning
21:25:16.875 Disk 0 trace - called modules:
21:25:16.890 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll sfsync02.sys atapi.sys viaide.sys PCIIDEX.SYS
21:25:16.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x83bd3ab8]
21:25:16.890 3 CLASSPNP.SYS[f76dffd7] -> nt!IofCallDriver -> \Device\0000006c[0x83b4e9e8]
21:25:16.890 5 ACPI.sys[f7626620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-13[0x83bd5d98]
21:25:16.890 \Driver\atapi[0x83bd8b10] -> IRP_MJ_INTERNAL_DEVICE_CONTROL -> sfsync02.sys[0xf76b08b4]
21:25:17.343 AVAST engine scan C:\WINDOWS
21:25:25.562 AVAST engine scan C:\WINDOWS\system32
21:30:37.359 AVAST engine scan C:\WINDOWS\system32\drivers
21:31:19.343 AVAST engine scan C:\Documents and Settings\Joel Binkholder
21:33:16.578 File: C:\Documents and Settings\Joel Binkholder\Application Data\hcobr.dll **INFECTED** Win32:Medfos [Trj]
21:46:01.703 AVAST engine scan C:\Documents and Settings\All Users
22:07:52.750 Scan finished successfully
22:22:24.718 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Joel Binkholder\Desktop\MBR.dat"
22:22:24.734 The log file has been saved successfully to "C:\Documents and Settings\Joel Binkholder\Desktop\aswMBR.txt"




Letting Eset scan overnight will post results tomorrow.

Thanks
Joel

#4 jwbink1500

jwbink1500
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:18 PM

Posted 23 July 2012 - 06:10 AM

Eset results:

C:\Documents and Settings\Joel Binkholder\Application Data\hcobr.dll a variant of Win32/Medfos.AR trojan cleaned by deleting - quarantined
C:\Documents and Settings\Joel Binkholder\Local Settings\Application Data\{5D131CEC-CE30-11E1-8270-B8AC6F996F26}\chrome\content\browser.xul JS/Redirector.NIQ trojan cleaned by deleting - quarantined
C:\Program Files\CouponAlert_2pEI\Installr\1.bin\NP2pEISb.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\Program Files\GridinSoft Trojan Killer\trojankiller.exe a variant of Win32/1AntiVirus application cleaned by deleting - quarantined
G:\Guitar Tabs\Misc Music\flstudio_8[1].0_install.exe probably a variant of Win32/Delf.LQXDKYX trojan cleaned by deleting - quarantined
G:\WD SmartWare.swstor\SUPERCOMPUTER\Volume.563834b8.043d.11dc.abec.806d6172696f\Documents and Settings\Joel Binkholder\Desktop\Dustin's Computer\Eli Young Band - Always the Love Songs(1).mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
G:\WD SmartWare.swstor\SUPERCOMPUTER\Volume.563834b8.043d.11dc.abec.806d6172696f\Documents and Settings\Joel Binkholder\Desktop\Dustin's Computer\peal jam better man (high bitrate).mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan cleaned - quarantined
J:\Guitar Tabs\Misc Music\flstudio_8[1].0_install.exe probably a variant of Win32/Delf.LQXDKYX trojan cleaned by deleting - quarantined


Joel

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:18 PM

Posted 23 July 2012 - 06:38 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log


Uninstall firefox

Makesure to checkmark Remove my personal data option

Reinstall it

#6 jwbink1500

jwbink1500
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:18 PM

Posted 24 July 2012 - 08:51 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Joel Binkholder (administrator) on 24-07-2012 at 18:35:20
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================
Windows IP ConfigurationSuccessfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Disconnected)
Realtek RTL8139 Family PCI Fast Ethernet NIC = Local Area Connection 2 (Disconnected)
Compact Wireless-G USB Network Adapter with SpeedBooster = Wireless Network Connection 3 (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection 3"

set address name="Wireless Network Connection 3" source=dhcp
set dns name="Wireless Network Connection 3" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 3" source=dhcp


popd
# End of interface IP configuration


Windows IP Configuration Host Name . . . . . . . . . . . . : music-room Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Unknown IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No DNS Suffix Search List. . . . . . : westell.comEthernet adapter Wireless Network Connection 3: Connection-specific DNS Suffix . : westell.com Description . . . . . . . . . . . : Compact Wireless-G USB Network Adapter with SpeedBooster Physical Address. . . . . . . . . : 00-1E-E5-9F-E7-C7 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.10 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 DHCP Server . . . . . . . . . . . : 192.168.1.1 DNS Servers . . . . . . . . . . . : 192.168.1.1 Lease Obtained. . . . . . . . . . : Tuesday, July 24, 2012 6:29:14 PM Lease Expires . . . . . . . . . . : Wednesday, July 25, 2012 6:29:14 PMServer: dslrouter.westell.com
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.225.40, 74.125.225.41, 74.125.225.46, 74.125.225.32
74.125.225.33, 74.125.225.34, 74.125.225.35, 74.125.225.36, 74.125.225.37
74.125.225.38, 74.125.225.39

Pinging google.com [74.125.225.39] with 32 bytes of data:Reply from 74.125.225.39: bytes=32 time=19ms TTL=55Reply from 74.125.225.39: bytes=32 time=19ms TTL=55Ping statistics for 74.125.225.39: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 19ms, Maximum = 19ms, Average = 19msServer: dslrouter.westell.com
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:Reply from 72.30.38.140: bytes=32 time=167ms TTL=49Reply from 72.30.38.140: bytes=32 time=75ms TTL=49Ping statistics for 72.30.38.140: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 75ms, Maximum = 167ms, Average = 121msServer: dslrouter.westell.com
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:Reply from 208.43.87.2: Destination host unreachable.Reply from 208.43.87.2: Destination host unreachable.Ping statistics for 208.43.87.2: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0msPinging 127.0.0.1 with 32 bytes of data:Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Reply from 127.0.0.1: bytes=32 time<1ms TTL=128Ping statistics for 127.0.0.1: Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 1e e5 9f e7 c7 ...... Compact Wireless-G USB Network Adapter with SpeedBooster - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.10 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.10 192.168.1.10 20
192.168.1.0 255.255.255.0 192.168.1.10 192.168.1.10 25
192.168.1.10 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.10 192.168.1.10 25
224.0.0.0 240.0.0.0 192.168.1.10 192.168.1.10 25
255.255.255.255 255.255.255.255 192.168.1.10 192.168.1.10 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/18/2012 07:40:28 PM) (Source: MsiInstaller) (User: MUSIC-ROOM)MUSIC-ROOM
Description: The installation of C:\Documents and Settings\Joel Binkholder\Application Data\Sun\Java\jre1.7.0_05\jre1.7.0_05-c.msi is not permitted due to an error in software restriction policy processing. The object cannot be trusted.

Error: (07/07/2012 00:07:25 AM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [iexplore.exe!ws!]

Error: (07/05/2012 08:24:26 AM) (Source: Application Hang) (User: )
Description: Hanging application winpatrol.exe, version 20.5.2011.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (06/30/2012 00:08:46 AM) (Source: Application Hang) (User: )
Description: Hanging application vlc.exe, version 1.1.7.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (06/28/2012 11:53:20 PM) (Source: Application Hang) (User: )
Description: Hanging application uTorrent.exe, version 3.1.3.27220, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (06/22/2012 11:39:16 PM) (Source: Application Error) (User: )
Description: Fault bucket -1662579985.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (06/22/2012 11:38:24 PM) (Source: Application Error) (User: )
Description: Faulting application photoshopelementseditor.exe, version 10.0.0.0, faulting module tbb.dll, version 2.2.2009.1011, fault address 0x000253da.
Processing media-specific event for [photoshopelementseditor.exe!ws!]

Error: (06/22/2012 03:39:41 PM) (Source: MsiInstaller) (User: MUSIC-ROOM)MUSIC-ROOM
Description: Product: Adobe Photoshop Elements 10 -- Please install/uninstall the product using Setup.exe in the root folder.

Error: (06/03/2012 01:05:02 AM) (Source: Application Hang) (User: )
Description: Fault bucket -1688581555.

Error: (06/03/2012 01:04:54 AM) (Source: Application Hang) (User: )
Description: Hanging application AcroRd32.exe, version 10.1.1.33, hang module hungapp, version 0.0.0.0, hang address 0x00000000.


System errors:
=============
Error: (07/18/2012 07:41:22 PM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 07:32:36 PM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 11:45:37 AM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 11:45:01 AM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 06:30:14 AM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 06:30:08 AM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/18/2012 06:30:04 AM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/17/2012 11:59:51 PM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/17/2012 11:54:03 PM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/17/2012 10:57:40 PM) (Source: DCOM) (User: MUSIC-ROOM)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

µTorrent (Version: 3.2.0)
1600 (Version: 47.0.1.000)
1600_Help (Version: 47.1.14.000)
1600Trb (Version: 47.1.14.000)
AC3Filter 1.63b (Version: 1.63b)
Adobe AIR (Version: 3.0.0.4080)
Adobe Community Help (Version: 3.5.23)
Adobe Download Assistant (Version: 1.2)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Flash Player 11 Plugin (Version: 11.3.300.265)
Adobe Photoshop Elements 10 (Version: 10.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader X (10.1.1) (Version: 10.1.1)
AiO_Scan (Version: 47.0.1.000)
AiOSoftware (Version: 47.0.1.000)
AMD Catalyst Install Manager (Version: 3.0.868.0)
Any Video Converter 3.3.4
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
ASIO4ALL (Version: 2.11 Beta1)
ATI Catalyst Control Center (Version: 2.009.0929.2221)
ATI Display Driver (Version: 8.593.100.3-090929a-089304C-ATI)
Bass Audio Decoder (remove only)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 45.4.157.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0929.2222.38284)
Catalyst Control Center Graphics Full Existing (Version: 2009.0929.2222.38284)
Catalyst Control Center Graphics Full New (Version: 2009.0929.2222.38284)
Catalyst Control Center Graphics Light (Version: 2009.0929.2222.38284)
Catalyst Control Center Graphics Previews Common (Version: 2009.0929.2222.38284)
Catalyst Control Center HydraVision Full (Version: 2009.0929.2222.38284)
Catalyst Control Center Localization All (Version: 2009.0929.2222.38284)
ccc-core-preinstall (Version: 2009.0929.2222.38284)
ccc-core-static (Version: 2009.0929.2222.38284)
ccc-utility (Version: 2009.0929.2222.38284)
CCC Help Chinese Standard (Version: 2009.0929.2221.38284)
CCC Help Chinese Traditional (Version: 2009.0929.2221.38284)
CCC Help Czech (Version: 2009.0929.2221.38284)
CCC Help Danish (Version: 2009.0929.2221.38284)
CCC Help Dutch (Version: 2009.0929.2221.38284)
CCC Help English (Version: 2009.0929.2221.38284)
CCC Help Finnish (Version: 2009.0929.2221.38284)
CCC Help French (Version: 2009.0929.2221.38284)
CCC Help German (Version: 2009.0929.2221.38284)
CCC Help Greek (Version: 2009.0929.2221.38284)
CCC Help Hungarian (Version: 2009.0929.2221.38284)
CCC Help Italian (Version: 2009.0929.2221.38284)
CCC Help Japanese (Version: 2009.0929.2221.38284)
CCC Help Korean (Version: 2009.0929.2221.38284)
CCC Help Norwegian (Version: 2009.0929.2221.38284)
CCC Help Polish (Version: 2009.0929.2221.38284)
CCC Help Portuguese (Version: 2009.0929.2221.38284)
CCC Help Russian (Version: 2009.0929.2221.38284)
CCC Help Spanish (Version: 2009.0929.2221.38284)
CCC Help Swedish (Version: 2009.0929.2221.38284)
CCC Help Thai (Version: 2009.0929.2221.38284)
CCC Help Turkish (Version: 2009.0929.2221.38284)
CCleaner (Version: 3.06)
CD Audio Reader Filter (remove only)
Chutes and Ladders
Combined Community Codec Pack 2010-10-10 (Version: 2010.10.10.0)
Copy (Version: 45.4.157.000)
CP_AtenaShokunin1Config (Version: 45.4.131.000)
cp_dwShrek2Albums1 (Version: 45.4.157.000)
cp_dwShrek2Cards1 (Version: 45.4.157.000)
Creative Audio Control Panel (Version: 2.00)
Creative Console Launcher
Creative MediaSource (Version: 3.00)
Creative Software AutoUpdate (Version: 1.40)
Creative System Information
Creative WaveStudio 7 (Version: 7.12)
CreativeProjects (Version: 45.4.157.000)
CreativeProjectsTemplates (Version: 45.4.157.000)
CueTour (Version: 45.4.157.000)
DAEMON Tools Lite (Version: 4.40.2.0131)
DCoder Image Source (remove only)
Destinations (Version: 45.4.157.000)
Director (Version: 45.4.157.000)
DocProc (Version: 4.5.0.0)
DocumentViewer (Version: 45.4.157.000)
DriverAgent Plugin for Netscape by eSupport.com
DScaler 5 Mpeg Decoders
DVD Shrink 3.2
Elements 10 Organizer (Version: 10.0)
Enhanced Multimedia Keyboard Solution
ESET Online Scanner v3
ExpressPCB (Version: 7.0.2)
Fax (Version: 47.0.1.000)
FileHippo.com Update Checker
FL Studio 10
FL Studio 9
Frostbite Full version 1.2
Gabest MPEG Splitter (remove only)
GameSpy Arcade
Ghost Recon
GT-8FxFloorboard 20120626 (Version: 20120626)
GTA San Andreas (Version: 1.00.00001)
Guitar Pro 5.2
Hardcore
HiJackThis (Version: 1.0.0)
HP Image Zone 4.7 (Version: 4.7)
HP Product Assistant (Version: 2.0.0.0)
HP PSC & OfficeJet 4.7
HP Software Update (Version: 3.0.2.991)
HPSystemDiagnostics (Version: 1.6.0.0)
iExplorer 2.2.0.0
IL Download Manager
Impulse® (Version: 3.29)
InstantShare (Version: 45.4.157.000)
InterActual Player
iTunes (Version: 10.5.0.142)
Japanese Fonts Support For Adobe Reader 9 (Version: 9.0.0)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 14.0.8117.416)
KC Softwares VideoInspector
LTspice IV
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Download Manager (Version: 1.2.1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel Viewer (Version: 12.0.6219.1000)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Ultimate 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Search Enhancement Pack (Version: 1.2.123.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.4518.1014)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
MONOGRAM AMR Splitter/Decoder (remove only)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 14.0.1468.721)
MUSICMATCH® Jukebox
OpenAL
OpenSource DTS/AC3/DD+ Source Filter (remove only)
PanoStandAlone (Version: 45.4.157.000)
PerformanceTest v7.0 (Version: 7.0)
PFPortChecker 1.0.32 (Version: 1.0.32)
Photo Viewer S2.5 (Version: 2.5)
PhotoGallery (Version: 45.4.157.000)
PoiZone
ProductContext (Version: 47.1.14.000)
PSE10 STI Installer (Version: 10.0)
QFolder (Version: 1.00.0000)
QuickTime (Version: 7.70.80.34)
QuickTime Alternative 3.2.2 (Version: 3.2.2)
Readme (Version: 47.0.1.000)
RealMedia (remove only)
Realtek AC'97 Audio
Return to Castle Wolfenstein (Version: 1.0)
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
S3GSetup (Version: 2.00.07.0709)
Sakura
Sansa Updater (Version: 1.313)
Sawer
Scan (Version: 4.5.0.0)
ScannerCopy (Version: 4.5.0.0)
Segoe UI (Version: 14.0.4327.805)
SHOUTcast Source (remove only)
Sibelius Scorch (Firefox, Opera, Netscape only) (Version: 6.2.0)
Sid Meier's Civilization 4 (Version: 1.00.0000)
Sid Meier's Civilization 4 (Version: 1.74)
Sid Meier's Civilization IV - Warlords
Sid Meier's Pirates! (Version: 1.00.0000)
Skins (Version: 2009.0929.2222.38284)
SkinsHP1 (Version: 45.4.157.000)
Sound Blaster X-Fi (Version: 1.0)
SUPERAntiSpyware (Version: 4.52.1000)
Tone Stack Calculator (Version: 1.3.0.41)
Toxic Biohazard
TrayApp (Version: 45.4.157.000)
Unity Web Player (Version: 2.6.1f3_31223)
Unload (Version: 4.5.0)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Update for Windows XP (KB978207) (Version: 1)
VIA/S3G Display Driver
VLC media player 1.1.7 (Version: 1.1.7)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 45.4.157.000)
Winamp (Version: 5.623 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Defender (Version: 1.1.1593.21)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Family Safety (Version: 14.0.8118.427)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Toolbar (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Windows Media Format 11 runtime
Windows Media Player 11
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Service Pack 3 (Version: 20080414.031525)
WinFast® Display Driver (Version: 1.00.000)
WinPatrol (Version: 20.5.2011.0)
WinPatrol (Version: 25.0.2012.5)
WinRAR archiver
Xvid 1.2.1 final uninstall (Version: 1.2)
Yahoo! Install Manager
Zoom Player (remove only)

========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 767.48 MB
Available physical RAM: 459.67 MB
Total Pagefile: 1874.97 MB
Available Pagefile: 1610.85 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.13 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:37.26 GB) (Free:1.37 GB) NTFS
3 Drive e: (Disc 2) (CDROM) (Total:0.32 GB) (Free:0 GB) CDFS
4 Drive g: (My Passport) (Fixed) (Total:465.73 GB) (Free:353.95 GB) NTFS
7 Drive j: (Local Disk) (Fixed) (Total:37.27 GB) (Free:3.76 GB) NTFS

========================= Users: ========================================

User accounts for \\MUSIC-ROOM

Administrator ASPNET Guest
HelpAssistant Joel Binkholder SUPPORT_388945a0


**** End of log ****



Farbar Service Scanner Version: 22-07-2012
Ran by Joel Binkholder (administrator) on 24-07-2012 at 19:26:26
Running from "C:\Documents and Settings\Joel Binkholder\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0


System Restore:
============
Srservice Service is not running. Checking service configuration:
The start type of Srservice service is OK.
The ImagePath of Srservice service is OK.
The ServiceDll of Srservice service is OK.

sr Service is not running. Checking service configuration:
The start type of sr service is set to Disabled. The default start type is Boot.
The ImagePath of sr: "\SystemRoot\system32\DRIVERS\sr.sys".


System Restore Disabled Policy:
========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=DWORD:1


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
fssfltr(9) Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x09000000050000000100000002000000030000000400000006000000070000000800000009000000
IpSec Tag value is correct.

**** End of log ****



# AdwCleaner v1.703 - Logfile created 07/24/2012 at 19:27:22
# Updated 20/07/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Joel Binkholder - MUSIC-ROOM
# Running from : C:\Documents and Settings\Joel Binkholder\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\Joel Binkholder\Local Settings\Application Data\uTorrentBar
Folder Deleted : C:\Documents and Settings\All Users\Application Data\InstallMate

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKCU\Software\uTorrentBar
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\DT Soft
Key Deleted : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A3F2A195-0D11-463b-96BB-D2FF1B7490A1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{ECD0ECC6-DCA4-4013-A915-12355AB70999}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Joel Binkholder\Application Data\Mozilla\Firefox\Profiles\h0jyw2c2.default\prefs.js

[OK] File is clean.

Profile name : default
File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\u791qcpu.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [1736 octets] - [24/07/2012 19:27:22]

########## EOF - C:\AdwCleaner[S1].txt - [1864 octets] ##########


Thanks
Joel

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:18 PM

Posted 24 July 2012 - 09:02 PM

You should be clean from redirects but we need to remove remaining traces

Uninstall firefox

Makesure to checkmark Remove my personal data option

Reinstall firefox

Let me know if you have any current issues?

#8 jwbink1500

jwbink1500
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Local time:11:18 PM

Posted 24 July 2012 - 09:24 PM

I uninstalled and reinstalled and deleted my personal preferences as well. Thank you for all of you help narenxp!!!

Joel

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:18 PM

Posted 24 July 2012 - 09:26 PM

That looks good

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users