Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Avira free version keeps finding Malware but unable to remove


  • Please log in to reply
11 replies to this topic

#1 hYlAnDeR~TFC

hYlAnDeR~TFC

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 11 August 2012 - 11:21 AM

Aug 6, 2012, according to Avira events and quarantine notes, family member watching and downloading various music video and streaming from unknown sites during the day. System is 4+ years old and uses Windows XP Home Edition. Son does not recall which sites he had visited but said that they were considered trustworthy sites according to free version of WOT browsing Tool. Avira virus/malware warning popped up several malware detections while either the computer was simply idle or while surfing the net. We followed the instructions to scan and moved the detected malware to quarantine. Other various malwares were subsequently detected on 8-9-12; 8-10-12; and again today also moved to quarantine. The detections indicate from the Alvira reports that the viruses were found on the C: and E: drives.

I ran free version of Malware Bytes at the inception (8-9-12) of the detected virus and it stated it found 1 virus and moved it to quarantine. Next, I ran SuperAntiVirus Software (free version) and it also found virus and moved it to quarantine. Granted, Malware Bytes and SuperAntivirus do not run in the background on this system and are only used manally as a back up search and removal tool on this computer. I use the free Spyware Blaser software that does run while the computer is on along with the free version of Avira Antivirus. I use the free version of Zone Alarm as my primary firewall along with Router firewall. Finally, just to try and make sure all the malware and/or viruses were removed, I ran ESET free online scan over night on Thursday and it did not detect any viruses. However, as noted above, I still keep getting Avira pop ups of malware found on my computer and the performance of my system is a bit slower.

Here is a brief list of the identified quarantined malware files:

ADWARE/Aware.Gen (2 times)
ADWARE/Bundledz.C
ADSPY/404Search.F
ADSPY/404Search.F.1 (2 times)
ADSPY/Agent.61859
ADWARE/Agent.86016.8 ( 2 times)
ADSPY/Sahat.F.5
TR/SAHAgent.A
EXP/Wimad.G (3 times)
TR/Dldr.WMA.Wima.AD
R/Brisy.B

Thank you in advance for any help you can provide!
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 11 August 2012 - 12:51 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 11 August 2012 - 09:51 PM

TDSKiller Log:


16:56:43.0921 2636 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
16:56:45.0921 2636 ============================================================
16:56:45.0921 2636 Current date / time: 2012/08/11 16:56:45.0921
16:56:45.0921 2636 SystemInfo:
16:56:45.0921 2636
16:56:45.0921 2636 OS Version: 5.1.2600 ServicePack: 3.0
16:56:45.0921 2636 Product type: Workstation
16:56:45.0921 2636 ComputerName: JANINA
16:56:45.0921 2636 UserName: Janina Joy
16:56:45.0921 2636 Windows directory: C:\WINDOWS
16:56:45.0921 2636 System windows directory: C:\WINDOWS
16:56:45.0921 2636 Processor architecture: Intel x86
16:56:45.0921 2636 Number of processors: 2
16:56:45.0921 2636 Page size: 0x1000
16:56:45.0921 2636 Boot type: Normal boot
16:56:45.0921 2636 ============================================================
16:56:48.0218 2636 Drive \Device\Harddisk0\DR0 - Size: 0x728D84000 (28.64 Gb), SectorSize: 0x200, Cylinders: 0xE9A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:56:48.0234 2636 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
16:56:48.0250 2636 ============================================================
16:56:48.0250 2636 \Device\Harddisk0\DR0:
16:56:48.0250 2636 MBR partitions:
16:56:48.0250 2636 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3944DDB
16:56:48.0250 2636 \Device\Harddisk1\DR1:
16:56:48.0265 2636 MBR partitions:
16:56:48.0265 2636 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A18A82
16:56:48.0265 2636 ============================================================
16:56:48.0328 2636 C: <-> \Device\Harddisk1\DR1\Partition0
16:56:48.0359 2636 E: <-> \Device\Harddisk0\DR0\Partition0
16:56:48.0375 2636 ============================================================
16:56:48.0375 2636 Initialize success
16:56:48.0375 2636 ============================================================
16:56:50.0218 2740 ============================================================
16:56:50.0218 2740 Scan started
16:56:50.0218 2740 Mode: Manual;
16:56:50.0218 2740 ============================================================
16:56:51.0031 2740 Abiosdsk - ok
16:56:51.0046 2740 abp480n5 - ok
16:56:51.0078 2740 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:56:51.0093 2740 ACPI - ok
16:56:51.0109 2740 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:56:51.0140 2740 ACPIEC - ok
16:56:51.0218 2740 AdobeFlashPlayerUpdateSvc (f19c98ad81d2c0e1bbfd8153d2c80ee8) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:56:51.0218 2740 AdobeFlashPlayerUpdateSvc - ok
16:56:51.0218 2740 adpu160m - ok
16:56:51.0250 2740 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
16:56:51.0281 2740 aec - ok
16:56:51.0328 2740 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
16:56:51.0328 2740 AFD - ok
16:56:51.0328 2740 Aha154x - ok
16:56:51.0343 2740 aic78u2 - ok
16:56:51.0343 2740 aic78xx - ok
16:56:51.0375 2740 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
16:56:51.0375 2740 Alerter - ok
16:56:51.0390 2740 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
16:56:51.0390 2740 ALG - ok
16:56:51.0390 2740 AliIde - ok
16:56:51.0406 2740 amsint - ok
16:56:51.0500 2740 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
16:56:51.0500 2740 AntiVirSchedulerService - ok
16:56:51.0515 2740 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
16:56:51.0515 2740 AntiVirService - ok
16:56:51.0578 2740 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:56:51.0578 2740 Apple Mobile Device - ok
16:56:51.0593 2740 AppMgmt - ok
16:56:51.0593 2740 asc - ok
16:56:51.0593 2740 asc3350p - ok
16:56:51.0609 2740 asc3550 - ok
16:56:51.0687 2740 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
16:56:51.0718 2740 aspnet_state - ok
16:56:51.0750 2740 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:56:51.0750 2740 AsyncMac - ok
16:56:51.0765 2740 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:56:51.0765 2740 atapi - ok
16:56:51.0796 2740 AtcL002 (2610034ecd11a675ed2e2601c87961af) C:\WINDOWS\system32\DRIVERS\l251x86.sys
16:56:51.0796 2740 AtcL002 - ok
16:56:51.0796 2740 Atdisk - ok
16:56:51.0812 2740 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:56:51.0828 2740 Atmarpc - ok
16:56:51.0859 2740 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
16:56:51.0890 2740 AudioSrv - ok
16:56:51.0906 2740 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:56:51.0937 2740 audstub - ok
16:56:51.0968 2740 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
16:56:51.0968 2740 avgntflt - ok
16:56:52.0015 2740 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\WINDOWS\system32\DRIVERS\avipbb.sys
16:56:52.0015 2740 avipbb - ok
16:56:52.0046 2740 avkmgr (53e56450da16a1a7f0d002f511113f67) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
16:56:52.0062 2740 avkmgr - ok
16:56:52.0140 2740 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:56:52.0156 2740 Beep - ok
16:56:52.0515 2740 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
16:56:52.0734 2740 BITS - ok
16:56:52.0812 2740 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
16:56:52.0812 2740 Bonjour Service - ok
16:56:52.0843 2740 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
16:56:52.0859 2740 Browser - ok
16:56:52.0875 2740 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:56:52.0890 2740 cbidf2k - ok
16:56:52.0890 2740 cd20xrnt - ok
16:56:52.0906 2740 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:56:52.0921 2740 Cdaudio - ok
16:56:52.0953 2740 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
16:56:52.0953 2740 Cdfs - ok
16:56:53.0000 2740 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:56:53.0015 2740 Cdrom - ok
16:56:53.0015 2740 Changer - ok
16:56:53.0046 2740 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
16:56:53.0062 2740 CiSvc - ok
16:56:53.0078 2740 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
16:56:53.0093 2740 ClipSrv - ok
16:56:53.0156 2740 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:56:53.0218 2740 clr_optimization_v2.0.50727_32 - ok
16:56:53.0250 2740 CLTNetCnService - ok
16:56:53.0250 2740 CmdIde - ok
16:56:53.0265 2740 COMSysApp - ok
16:56:53.0281 2740 Cpqarray - ok
16:56:53.0312 2740 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
16:56:53.0328 2740 CryptSvc - ok
16:56:53.0328 2740 dac2w2k - ok
16:56:53.0328 2740 dac960nt - ok
16:56:53.0375 2740 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
16:56:53.0390 2740 DcomLaunch - ok
16:56:53.0421 2740 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
16:56:53.0453 2740 Dhcp - ok
16:56:53.0484 2740 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
16:56:53.0484 2740 Disk - ok
16:56:53.0484 2740 dmadmin - ok
16:56:53.0562 2740 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
16:56:53.0578 2740 dmboot - ok
16:56:53.0625 2740 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
16:56:53.0640 2740 dmio - ok
16:56:53.0656 2740 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:56:53.0656 2740 dmload - ok
16:56:53.0687 2740 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
16:56:53.0687 2740 dmserver - ok
16:56:53.0718 2740 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
16:56:53.0718 2740 DMusic - ok
16:56:53.0765 2740 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
16:56:53.0765 2740 Dnscache - ok
16:56:53.0796 2740 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
16:56:53.0828 2740 Dot3svc - ok
16:56:53.0828 2740 dpti2o - ok
16:56:53.0859 2740 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
16:56:53.0859 2740 drmkaud - ok
16:56:53.0875 2740 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
16:56:53.0906 2740 EapHost - ok
16:56:53.0921 2740 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
16:56:53.0937 2740 ERSvc - ok
16:56:53.0968 2740 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:56:53.0968 2740 Eventlog - ok
16:56:54.0015 2740 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
16:56:54.0031 2740 EventSystem - ok
16:56:54.0062 2740 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
16:56:54.0062 2740 Fastfat - ok
16:56:54.0109 2740 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
16:56:54.0125 2740 FastUserSwitchingCompatibility - ok
16:56:54.0156 2740 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
16:56:54.0156 2740 Fdc - ok
16:56:54.0171 2740 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
16:56:54.0171 2740 Fips - ok
16:56:54.0187 2740 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
16:56:54.0203 2740 Flpydisk - ok
16:56:54.0234 2740 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
16:56:54.0234 2740 FltMgr - ok
16:56:54.0312 2740 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
16:56:54.0343 2740 FontCache3.0.0.0 - ok
16:56:54.0375 2740 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:56:54.0390 2740 Fs_Rec - ok
16:56:54.0421 2740 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:56:54.0421 2740 Ftdisk - ok
16:56:54.0453 2740 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
16:56:54.0468 2740 GEARAspiWDM - ok
16:56:54.0468 2740 GMSIPCI - ok
16:56:54.0515 2740 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:56:54.0515 2740 Gpc - ok
16:56:54.0640 2740 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:56:54.0640 2740 gupdate - ok
16:56:54.0640 2740 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
16:56:54.0640 2740 gupdatem - ok
16:56:54.0703 2740 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:56:54.0734 2740 gusvc - ok
16:56:54.0765 2740 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:56:54.0765 2740 HDAudBus - ok
16:56:54.0828 2740 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
16:56:54.0843 2740 helpsvc - ok
16:56:54.0843 2740 HidServ - ok
16:56:54.0875 2740 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:56:54.0890 2740 HidUsb - ok
16:56:54.0906 2740 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
16:56:54.0937 2740 hkmsvc - ok
16:56:54.0937 2740 hpn - ok
16:56:54.0968 2740 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
16:56:54.0968 2740 HPZid412 - ok
16:56:55.0000 2740 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
16:56:55.0000 2740 HPZipr12 - ok
16:56:55.0031 2740 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
16:56:55.0031 2740 HPZius12 - ok
16:56:55.0062 2740 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
16:56:55.0078 2740 HTTP - ok
16:56:55.0109 2740 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
16:56:55.0125 2740 HTTPFilter - ok
16:56:55.0125 2740 i2omgmt - ok
16:56:55.0140 2740 i2omp - ok
16:56:55.0156 2740 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:56:55.0187 2740 i8042prt - ok
16:56:55.0281 2740 ialm (6fcb904910da07c9dc2593d66438fa29) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
16:56:55.0328 2740 ialm - ok
16:56:55.0453 2740 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:56:55.0593 2740 idsvc - ok
16:56:55.0671 2740 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:56:55.0687 2740 Imapi - ok
16:56:55.0718 2740 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
16:56:55.0718 2740 ImapiService - ok
16:56:55.0734 2740 ini910u - ok
16:56:56.0015 2740 IntcAzAudAddService (cdfd5a68a2e1caa89c5c0e0b3cb98731) C:\WINDOWS\system32\drivers\RtkHDAud.sys
16:56:56.0093 2740 IntcAzAudAddService - ok
16:56:56.0156 2740 IntelIde - ok
16:56:56.0187 2740 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:56:56.0187 2740 intelppm - ok
16:56:56.0203 2740 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
16:56:56.0203 2740 Ip6Fw - ok
16:56:56.0234 2740 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:56:56.0250 2740 IpFilterDriver - ok
16:56:56.0281 2740 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:56:56.0296 2740 IpInIp - ok
16:56:56.0312 2740 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:56:56.0328 2740 IpNat - ok
16:56:56.0406 2740 iPod Service (e6be7a41a28d8f2db174957454d32448) C:\Program Files\iPod\bin\iPodService.exe
16:56:56.0421 2740 iPod Service - ok
16:56:56.0453 2740 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:56:56.0453 2740 IPSec - ok
16:56:56.0484 2740 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:56:56.0500 2740 IRENUM - ok
16:56:56.0515 2740 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:56:56.0515 2740 isapnp - ok
16:56:56.0562 2740 ISWKL (08a811bfd207dfdec588881c18bacbaa) C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
16:56:56.0578 2740 ISWKL - ok
16:56:56.0625 2740 IswSvc (5b2ccef06f96dfb22893ab8f0b3f891d) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
16:56:56.0625 2740 IswSvc - ok
16:56:56.0750 2740 JavaQuickStarterService (de5d05fd449798ef88cc34ad4b1e7f85) C:\Program Files\Java\jre6\bin\jqs.exe
16:56:56.0750 2740 JavaQuickStarterService - ok
16:56:56.0765 2740 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:56:56.0781 2740 Kbdclass - ok
16:56:56.0812 2740 KeyScrambler (1223a8b567ffdb4b8bb5f59e5f033fdb) C:\WINDOWS\system32\drivers\keyscrambler.sys
16:56:56.0843 2740 KeyScrambler - ok
16:56:56.0875 2740 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
16:56:56.0906 2740 kmixer - ok
16:56:56.0921 2740 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
16:56:56.0921 2740 KSecDD - ok
16:56:56.0968 2740 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
16:56:56.0968 2740 lanmanserver - ok
16:56:57.0000 2740 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
16:56:57.0000 2740 lanmanworkstation - ok
16:56:57.0015 2740 lbrtfdc - ok
16:56:57.0078 2740 LightScribeService (53710476495886d9961be46983a6a33f) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
16:56:57.0078 2740 LightScribeService - ok
16:56:57.0093 2740 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
16:56:57.0109 2740 LmHosts - ok
16:56:57.0140 2740 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
16:56:57.0156 2740 Messenger - ok
16:56:57.0187 2740 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:56:57.0203 2740 mnmdd - ok
16:56:57.0234 2740 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
16:56:57.0234 2740 mnmsrvc - ok
16:56:57.0265 2740 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
16:56:57.0265 2740 Modem - ok
16:56:57.0406 2740 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:56:57.0421 2740 Mouclass - ok
16:56:57.0437 2740 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:56:57.0453 2740 mouhid - ok
16:56:57.0468 2740 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
16:56:57.0468 2740 MountMgr - ok
16:56:57.0468 2740 mraid35x - ok
16:56:57.0484 2740 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:56:57.0484 2740 MRxDAV - ok
16:56:57.0546 2740 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:56:57.0562 2740 MRxSmb - ok
16:56:57.0593 2740 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
16:56:57.0609 2740 MSDTC - ok
16:56:57.0609 2740 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
16:56:57.0609 2740 Msfs - ok
16:56:57.0609 2740 MSICPL - ok
16:56:57.0625 2740 MSIServer - ok
16:56:57.0640 2740 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:56:57.0656 2740 MSKSSRV - ok
16:56:57.0687 2740 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:56:57.0703 2740 MSPCLOCK - ok
16:56:57.0718 2740 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
16:56:57.0734 2740 MSPQM - ok
16:56:57.0750 2740 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:56:57.0750 2740 mssmbios - ok
16:56:57.0765 2740 MTsensor (d48659bb24c48345d926ecb45c1ebdf5) C:\WINDOWS\system32\DRIVERS\ASACPI.sys
16:56:57.0781 2740 MTsensor - ok
16:56:57.0812 2740 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
16:56:57.0812 2740 Mup - ok
16:56:57.0859 2740 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
16:56:57.0890 2740 napagent - ok
16:56:57.0906 2740 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
16:56:57.0921 2740 NDIS - ok
16:56:57.0953 2740 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:56:57.0968 2740 NdisTapi - ok
16:56:57.0968 2740 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:56:57.0984 2740 Ndisuio - ok
16:56:58.0000 2740 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:56:58.0015 2740 NdisWan - ok
16:56:58.0062 2740 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
16:56:58.0062 2740 NDProxy - ok
16:56:58.0062 2740 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:56:58.0062 2740 NetBIOS - ok
16:56:58.0078 2740 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:56:58.0093 2740 NetBT - ok
16:56:58.0109 2740 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:56:58.0140 2740 NetDDE - ok
16:56:58.0140 2740 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
16:56:58.0140 2740 NetDDEdsdm - ok
16:56:58.0187 2740 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:56:58.0187 2740 Netlogon - ok
16:56:58.0203 2740 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
16:56:58.0250 2740 Netman - ok
16:56:58.0328 2740 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:56:58.0359 2740 NetTcpPortSharing - ok
16:56:58.0406 2740 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
16:56:58.0406 2740 Nla - ok
16:56:58.0437 2740 NMIndexingService - ok
16:56:58.0468 2740 nosGetPlusHelper (9865516d33bc66fddac9db4087d4b6aa) C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
16:56:58.0546 2740 nosGetPlusHelper - ok
16:56:58.0593 2740 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
16:56:58.0593 2740 Npfs - ok
16:56:58.0593 2740 npggsvc - ok
16:56:58.0609 2740 NTACCESS - ok
16:56:58.0640 2740 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
16:56:58.0640 2740 Ntfs - ok
16:56:58.0671 2740 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:56:58.0671 2740 NtLmSsp - ok
16:56:58.0734 2740 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
16:56:58.0781 2740 NtmsSvc - ok
16:56:58.0812 2740 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:56:58.0828 2740 Null - ok
16:56:59.0468 2740 nv (7b5a17bd54bb9142843dbe99a1caaed8) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:56:59.0781 2740 nv - ok
16:56:59.0875 2740 NVSvc (5150b108ea88831e1c599603d8b89621) C:\WINDOWS\system32\nvsvc32.exe
16:56:59.0875 2740 NVSvc - ok
16:57:00.0031 2740 nvUpdatusService (83e8ab7bb3c8956c53fec071c94f0bbb) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:57:00.0046 2740 nvUpdatusService - ok
16:57:00.0109 2740 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:57:00.0109 2740 NwlnkFlt - ok
16:57:00.0125 2740 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:57:00.0140 2740 NwlnkFwd - ok
16:57:00.0171 2740 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
16:57:00.0203 2740 Parport - ok
16:57:00.0218 2740 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
16:57:00.0218 2740 PartMgr - ok
16:57:00.0234 2740 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
16:57:00.0234 2740 ParVdm - ok
16:57:00.0250 2740 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
16:57:00.0250 2740 PCI - ok
16:57:00.0250 2740 PCIDump - ok
16:57:00.0296 2740 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:57:00.0296 2740 PCIIde - ok
16:57:00.0312 2740 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:57:00.0343 2740 Pcmcia - ok
16:57:00.0343 2740 PDCOMP - ok
16:57:00.0359 2740 PDFRAME - ok
16:57:00.0359 2740 PDRELI - ok
16:57:00.0359 2740 PDRFRAME - ok
16:57:00.0375 2740 perc2 - ok
16:57:00.0375 2740 perc2hib - ok
16:57:00.0421 2740 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
16:57:00.0421 2740 PlugPlay - ok
16:57:00.0453 2740 Pml Driver HPZ12 (2d091a99624fb9e7eef0a86d872ec0c3) C:\WINDOWS\system32\HPZipm12.exe
16:57:00.0453 2740 Pml Driver HPZ12 - ok
16:57:00.0484 2740 PnkBstrA (3a2bdd76e7d2a5f40a7174793d1ba794) C:\WINDOWS\system32\PnkBstrA.exe
16:57:00.0484 2740 PnkBstrA - ok
16:57:00.0515 2740 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:57:00.0515 2740 PolicyAgent - ok
16:57:00.0531 2740 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:57:00.0546 2740 PptpMiniport - ok
16:57:00.0546 2740 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:57:00.0546 2740 ProtectedStorage - ok
16:57:00.0562 2740 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
16:57:00.0562 2740 PSched - ok
16:57:00.0593 2740 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:57:00.0609 2740 Ptilink - ok
16:57:00.0609 2740 ql1080 - ok
16:57:00.0609 2740 Ql10wnt - ok
16:57:00.0625 2740 ql12160 - ok
16:57:00.0625 2740 ql1240 - ok
16:57:00.0640 2740 ql1280 - ok
16:57:00.0656 2740 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:57:00.0656 2740 RasAcd - ok
16:57:00.0687 2740 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
16:57:00.0703 2740 RasAuto - ok
16:57:00.0718 2740 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:57:00.0765 2740 Rasl2tp - ok
16:57:00.0781 2740 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
16:57:00.0812 2740 RasMan - ok
16:57:00.0828 2740 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:57:00.0828 2740 RasPppoe - ok
16:57:00.0843 2740 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:57:00.0843 2740 Raspti - ok
16:57:00.0859 2740 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:57:00.0875 2740 Rdbss - ok
16:57:00.0875 2740 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:57:00.0890 2740 RDPCDD - ok
16:57:00.0937 2740 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
16:57:00.0937 2740 RDPWD - ok
16:57:00.0968 2740 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
16:57:00.0984 2740 RDSessMgr - ok
16:57:01.0015 2740 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:57:01.0015 2740 redbook - ok
16:57:01.0031 2740 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
16:57:01.0046 2740 RemoteAccess - ok
16:57:01.0140 2740 RichVideo (bd517c7fb119997effbe39d5e4b37b05) C:\Program Files\CyberLink\Shared Files\RichVideo.exe
16:57:01.0140 2740 RichVideo - ok
16:57:01.0171 2740 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
16:57:01.0171 2740 RpcLocator - ok
16:57:01.0234 2740 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
16:57:01.0250 2740 RpcSs - ok
16:57:01.0281 2740 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
16:57:01.0296 2740 RSVP - ok
16:57:01.0312 2740 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
16:57:01.0312 2740 SamSs - ok
16:57:01.0390 2740 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
16:57:01.0390 2740 SASDIFSV - ok
16:57:01.0406 2740 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
16:57:01.0437 2740 SASKUTIL - ok
16:57:01.0468 2740 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
16:57:01.0500 2740 SCardSvr - ok
16:57:01.0531 2740 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
16:57:01.0562 2740 Schedule - ok
16:57:01.0609 2740 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:57:01.0625 2740 Secdrv - ok
16:57:01.0656 2740 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
16:57:01.0671 2740 seclogon - ok
16:57:01.0703 2740 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
16:57:01.0703 2740 SENS - ok
16:57:01.0734 2740 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
16:57:01.0734 2740 serenum - ok
16:57:01.0765 2740 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
16:57:01.0781 2740 Serial - ok
16:57:01.0796 2740 SetupNTGLM7X - ok
16:57:01.0812 2740 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
16:57:01.0828 2740 Sfloppy - ok
16:57:01.0875 2740 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
16:57:01.0875 2740 SharedAccess - ok
16:57:01.0921 2740 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
16:57:01.0921 2740 ShellHWDetection - ok
16:57:01.0937 2740 Simbad - ok
16:57:01.0937 2740 Sparrow - ok
16:57:01.0968 2740 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
16:57:01.0984 2740 splitter - ok
16:57:02.0015 2740 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
16:57:02.0015 2740 Spooler - ok
16:57:02.0031 2740 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
16:57:02.0031 2740 sr - ok
16:57:02.0062 2740 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
16:57:02.0078 2740 srservice - ok
16:57:02.0125 2740 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
16:57:02.0140 2740 Srv - ok
16:57:02.0187 2740 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
16:57:02.0218 2740 SSDPSRV - ok
16:57:02.0234 2740 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
16:57:02.0250 2740 ssmdrv - ok
16:57:02.0296 2740 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
16:57:02.0328 2740 stisvc - ok
16:57:02.0375 2740 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:57:02.0375 2740 swenum - ok
16:57:02.0406 2740 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
16:57:02.0421 2740 swmidi - ok
16:57:02.0421 2740 SwPrv - ok
16:57:02.0421 2740 symc810 - ok
16:57:02.0437 2740 symc8xx - ok
16:57:02.0437 2740 sym_hi - ok
16:57:02.0437 2740 sym_u3 - ok
16:57:02.0468 2740 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
16:57:02.0468 2740 sysaudio - ok
16:57:02.0515 2740 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
16:57:02.0515 2740 SysmonLog - ok
16:57:02.0546 2740 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
16:57:02.0562 2740 TapiSrv - ok
16:57:02.0593 2740 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:57:02.0609 2740 Tcpip - ok
16:57:02.0640 2740 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:57:02.0656 2740 TDPIPE - ok
16:57:02.0671 2740 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
16:57:02.0671 2740 TDTCP - ok
16:57:02.0687 2740 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:57:02.0687 2740 TermDD - ok
16:57:02.0718 2740 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
16:57:02.0750 2740 TermService - ok
16:57:02.0812 2740 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
16:57:02.0812 2740 Themes - ok
16:57:02.0812 2740 TosIde - ok
16:57:02.0828 2740 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
16:57:02.0843 2740 TrkWks - ok
16:57:02.0859 2740 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
16:57:02.0875 2740 Udfs - ok
16:57:02.0875 2740 ultra - ok
16:57:02.0906 2740 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
16:57:02.0921 2740 Update - ok
16:57:02.0953 2740 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
16:57:02.0968 2740 upnphost - ok
16:57:02.0984 2740 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
16:57:03.0000 2740 UPS - ok
16:57:03.0031 2740 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\WINDOWS\system32\Drivers\usbaapl.sys
16:57:03.0046 2740 USBAAPL - ok
16:57:03.0062 2740 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:57:03.0062 2740 usbccgp - ok
16:57:03.0078 2740 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:57:03.0093 2740 usbehci - ok
16:57:03.0093 2740 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:57:03.0109 2740 usbhub - ok
16:57:03.0140 2740 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:57:03.0140 2740 usbprint - ok
16:57:03.0171 2740 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:57:03.0171 2740 usbscan - ok
16:57:03.0187 2740 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:57:03.0203 2740 usbstor - ok
16:57:03.0234 2740 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:57:03.0234 2740 usbuhci - ok
16:57:03.0234 2740 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
16:57:03.0250 2740 VgaSave - ok
16:57:03.0250 2740 ViaIde - ok
16:57:03.0296 2740 Viewpoint Manager Service - ok
16:57:03.0328 2740 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
16:57:03.0328 2740 VolSnap - ok
16:57:03.0375 2740 Vsdatant (558cee3d9c470651f1843d51b42d761b) C:\WINDOWS\system32\vsdatant.sys
16:57:03.0421 2740 Vsdatant - ok
16:57:03.0468 2740 vsmon - ok
16:57:03.0500 2740 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
16:57:03.0562 2740 VSS - ok
16:57:03.0593 2740 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
16:57:03.0609 2740 W32Time - ok
16:57:03.0625 2740 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:57:03.0640 2740 Wanarp - ok
16:57:03.0640 2740 WDICA - ok
16:57:03.0671 2740 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
16:57:03.0671 2740 wdmaud - ok
16:57:03.0687 2740 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
16:57:03.0687 2740 WebClient - ok
16:57:03.0765 2740 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
16:57:03.0765 2740 winmgmt - ok
16:57:03.0828 2740 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
16:57:03.0843 2740 WmdmPmSN - ok
16:57:03.0875 2740 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
16:57:03.0875 2740 WmiApSrv - ok
16:57:03.0968 2740 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
16:57:04.0015 2740 WMPNetworkSvc - ok
16:57:04.0046 2740 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
16:57:04.0109 2740 wscsvc - ok
16:57:04.0125 2740 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
16:57:04.0125 2740 wuauserv - ok
16:57:04.0171 2740 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
16:57:04.0171 2740 WudfPf - ok
16:57:04.0203 2740 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
16:57:04.0218 2740 WudfRd - ok
16:57:04.0234 2740 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
16:57:04.0296 2740 WudfSvc - ok
16:57:04.0328 2740 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
16:57:04.0390 2740 WZCSVC - ok
16:57:04.0421 2740 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
16:57:04.0453 2740 xmlprov - ok
16:57:04.0468 2740 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
16:57:04.0765 2740 \Device\Harddisk0\DR0 - ok
16:57:04.0765 2740 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
16:57:05.0109 2740 \Device\Harddisk1\DR1 - ok
16:57:05.0125 2740 Boot (0x1200) (7b628b17f603dc4faa61fa0006dfcef6) \Device\Harddisk0\DR0\Partition0
16:57:05.0125 2740 \Device\Harddisk0\DR0\Partition0 - ok
16:57:05.0125 2740 Boot (0x1200) (329774653ead2d1b1a8f1f93b16f0408) \Device\Harddisk1\DR1\Partition0
16:57:05.0125 2740 \Device\Harddisk1\DR1\Partition0 - ok
16:57:05.0125 2740 ============================================================
16:57:05.0125 2740 Scan finished
16:57:05.0125 2740 ============================================================
16:57:05.0140 3972 Detected object count: 0
16:57:05.0140 3972 Actual detected object count: 0
16:57:24.0046 3812 Deinitialize success





*****************************************
*****************************************



aswMBR Log:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-11 16:58:30
-----------------------------
16:58:30.468 OS Version: Windows 5.1.2600 Service Pack 3
16:58:30.468 Number of processors: 2 586 0xF0D
16:58:30.468 ComputerName: JANINA UserName:
16:58:31.375 Initialize success
16:59:58.765 AVAST engine defs: 12081101
17:00:01.046 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-c
17:00:01.046 Disk 0 Vendor: Maxtor_6E030L0 NAR61590 Size: 29325MB BusType: 3
17:00:01.046 Disk 1 (boot) \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-17
17:00:01.046 Disk 1 Vendor: WDC_WD1600AAJS-00WAA0 58.01D58 Size: 152627MB BusType: 3
17:00:01.062 Disk 1 MBR read successfully
17:00:01.062 Disk 1 MBR scan
17:00:01.265 Disk 1 Windows XP default MBR code
17:00:01.265 Disk 1 Partition 1 80 (A) 07 HPFS/NTFS NTFS 152625 MB offset 63
17:00:01.296 Disk 1 scanning sectors +312576705
17:00:01.453 Disk 1 scanning C:\WINDOWS\system32\drivers
17:00:18.843 Service scanning
17:00:22.296 Service GMSIPCI D:\INSTALL\GMSIPCI.SYS **LOCKED** 21
17:00:25.437 Service MSICPL D:\install4\MSICPL.sys **LOCKED** 21
17:00:26.953 Service NTACCESS D:\NTACCESS.sys **LOCKED** 21
17:00:30.828 Service SetupNTGLM7X D:\NTGLM7X.sys **LOCKED** 21
17:00:34.625 Modules scanning
17:00:39.500 Disk 1 trace - called modules:
17:00:39.515 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
17:00:39.515 1 nt!IofCallDriver -> \Device\Harddisk1\DR1[0x87173ab8]
17:00:39.515 3 CLASSPNP.SYS[f761cfd7] -> nt!IofCallDriver -> \Device\00000068[0x87147698]
17:00:39.515 5 ACPI.sys[f74b3620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-17[0x87169030]
17:00:40.468 AVAST engine scan C:\WINDOWS
17:01:02.328 AVAST engine scan C:\WINDOWS\system32
17:05:07.593 AVAST engine scan C:\WINDOWS\system32\drivers
17:05:27.156 AVAST engine scan C:\Documents and Settings\Janina Joy
17:07:05.453 Disk 1 MBR has been saved successfully to "C:\Documents and Settings\Janina Joy\Desktop\MBR.dat"
17:07:05.562 The log file has been saved successfully to "C:\Documents and Settings\Janina Joy\Desktop\aswMBR.txt"






****************************
****************************


ESET did not create a log of any threats. ESET completed scan and found no known threats.
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 11 August 2012 - 09:55 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 12 August 2012 - 02:36 AM

MBAM shows clean log



Mini Tool Box Results:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Janina Joy (administrator) on 12-08-2012 at 00:20:17
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



127.0.0.1 localhost
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 abcstats.com
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 aconti.net
127.0.0.1 secure.aconti.net
127.0.0.1 www.aconti.net 127.0.0.1 ads.active.com 127.0.0.1 am1.activemeter.com

There are 12610 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros L2 Fast Ethernet 10/100 Base-T Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : JANINA

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : sd.cox.net



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : sd.cox.net

Description . . . . . . . . . . . : Atheros L2 Fast Ethernet 10/100 Base-T Controller

Physical Address. . . . . . . . . : 00-1E-8C-6B-40-04

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.100

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 68.105.28.11

68.105.29.11

68.105.28.12

Lease Obtained. . . . . . . . . . : Saturday, August 11, 2012 11:46:28 PM

Lease Expires . . . . . . . . . . : Sunday, August 12, 2012 11:46:28 PM

Server: cdns1.cox.net
Address: 68.105.28.11

Name: google.com
Addresses: 74.125.224.160, 74.125.224.161, 74.125.224.162, 74.125.224.163
74.125.224.164, 74.125.224.165, 74.125.224.166, 74.125.224.167, 74.125.224.168
74.125.224.169, 74.125.224.174



Pinging google.com [74.125.239.0] with 32 bytes of data:



Reply from 74.125.239.0: bytes=32 time=33ms TTL=55

Reply from 74.125.239.0: bytes=32 time=36ms TTL=55



Ping statistics for 74.125.239.0:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 33ms, Maximum = 36ms, Average = 34ms

Server: cdns1.cox.net
Address: 68.105.28.11

Name: yahoo.com
Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140



Pinging yahoo.com [72.30.38.140] with 32 bytes of data:



Reply from 72.30.38.140: bytes=32 time=88ms TTL=54

Reply from 72.30.38.140: bytes=32 time=35ms TTL=53



Ping statistics for 72.30.38.140:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 35ms, Maximum = 88ms, Average = 61ms

Server: cdns1.cox.net
Address: 68.105.28.11

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1e 8c 6b 40 04 ...... Atheros L2 Fast Ethernet 10/100 Base-T Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.100 192.168.1.100 20
192.168.1.0 255.255.255.0 192.168.1.100 192.168.1.100 20
192.168.1.100 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.100 192.168.1.100 20
224.0.0.0 240.0.0.0 192.168.1.100 192.168.1.100 20
255.255.255.255 255.255.255.255 192.168.1.100 192.168.1.100 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/09/2012 06:07:41 PM) (Source: LoadPerf) (User: )
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The
Error code is the first DWORD in Data section.

Error: (08/09/2012 06:07:41 PM) (Source: LoadPerf) (User: )
Description: The performance strings in the Performance registry value is corrupted when
process Performance extension counter provider. BaseIndex value from Performance
registry is the first DWORD in Data section, LastCounter value is the second
DWORD in Data section, and LastHelp value is the third DWORD in Data section.

Error: (08/09/2012 11:41:52 AM) (Source: Application Error) (User: )
Description: Faulting application chrome.exe, version 21.0.1180.60, faulting module chrome.dll, version 21.0.1180.60, fault address 0x0052c336.
Processing media-specific event for [chrome.exe!ws!]

Error: (08/09/2012 11:32:18 AM) (Source: nview_info) (User: )
Description: NVIEW : regsvr32: Shared heap exhausted or damaged, process ID fe0, total alloc:0...

Error: (08/09/2012 11:32:18 AM) (Source: nview_info) (User: )
Description: NVIEW : regsvr32: Shared heap exhausted or damaged, process ID fe0, total alloc:0...

Error: (08/09/2012 11:32:18 AM) (Source: nview_info) (User: )
Description: NVIEW : regsvr32: Shared heap exhausted or damaged, process ID fe0, total alloc:0...

Error: (08/08/2012 11:08:54 PM) (Source: Application Error) (User: )
Description: Faulting application iTunes.exe, version 10.6.3.25, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [iTunes.exe!ws!]

Error: (07/29/2012 05:40:56 PM) (Source: Application Error) (User: )
Description: Faulting application FlashPlayerUpdateService.exe, version 11.3.300.268, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x000113c0.
Processing media-specific event for [FlashPlayerUpdateService.exe!ws!]

Error: (07/23/2012 07:40:34 PM) (Source: Application Error) (User: )
Description: Faulting application FlashPlayerUpdateService.exe, version 11.3.300.265, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x000113c0.
Processing media-specific event for [FlashPlayerUpdateService.exe!ws!]

Error: (07/12/2012 06:40:56 AM) (Source: Application Error) (User: )
Description: Faulting application FlashPlayerUpdateService.exe, version 11.3.300.265, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x000113c0.
Processing media-specific event for [FlashPlayerUpdateService.exe!ws!]


System errors:
=============
Error: (08/11/2012 11:46:46 PM) (Source: Service Control Manager) (User: )
Description: The Viewpoint Manager Service service failed to start due to the following error:
%%2

Error: (08/11/2012 11:46:38 PM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume2

Error: (08/11/2012 07:20:52 AM) (Source: Service Control Manager) (User: )
Description: The Viewpoint Manager Service service failed to start due to the following error:
%%2

Error: (08/10/2012 05:17:40 PM) (Source: Service Control Manager) (User: )
Description: The Viewpoint Manager Service service failed to start due to the following error:
%%2

Error: (08/10/2012 05:16:05 PM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

Error: (08/10/2012 05:16:03 PM) (Source: Service Control Manager) (User: )
Description: The iPod Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/10/2012 05:16:03 PM) (Source: Service Control Manager) (User: )
Description: The Cyberlink RichVideo Service(CRVS) service terminated unexpectedly. It has done this 1 time(s).

Error: (08/10/2012 05:16:03 PM) (Source: Service Control Manager) (User: )
Description: The PnkBstrA service terminated unexpectedly. It has done this 1 time(s).

Error: (08/10/2012 05:16:03 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Driver Helper Service service terminated unexpectedly. It has done this 1 time(s).

Error: (08/10/2012 05:16:03 PM) (Source: Service Control Manager) (User: )
Description: The LightScribeService Direct Disc Labeling Service service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe AIR (Version: 2.6.0.19140)
Adobe Community Help (Version: 3.4.980)
Adobe Download Assistant (Version: 1.0.3)
Adobe Download Manager (Version: 1.6.2.102)
Adobe Flash Player 11 ActiveX (Version: 11.3.300.270)
Adobe Flash Player 11 Plugin (Version: 11.3.300.270)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player (Version: 11)
AIM 6
AiO_Scan_CDA (Version: 70.0.231.000)
AiOSoftwareNPI (Version: 70.0.231.000)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® L2 Fast Ethernet Driver (Version: 1.0.11.1)
Avira Free Antivirus (Version: 12.0.0.1167)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 70.0.170.000)
Call of Duty: Modern Warfare 2 - Multiplayer
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 4.0)
Critical Update for Windows Media Player 11 (KB959772)
CustomerResearchQFolder (Version: 1.00.0000)
Destinations (Version: 70.0.170.000)
DeviceManagementQFolder (Version: 1.00.0000)
Elf 1.15 Toolbar (Version: 6.2.7.3)
EPSON Printer Software
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
F300 (Version: 70.0.231.000)
F300_Help (Version: 70.0.231.000)
Fax_CDA (Version: 70.0.231.000)
Free Studio version 5.0.9
GearDrvs (Version: 1.00.0000)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.115)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HP Customer Participation Program 7.0 (Version: 7.0)
HP Imaging Device Functions 7.0 (Version: 7.0)
HP Photosmart Essential (Version: 1.9.1.3)
HP Photosmart, Officejet and Deskjet 7.0.A
HP Product Assistant (Version: 100.000.001.000)
HP Solution Center 7.0 (Version: 7.0)
HP Update (Version: 5.002.008.001)
HPPhotoSmartExpress (Version: 70.0.170.000)
HPProductAssistant (Version: 70.0.170.000)
HPSSupply (Version: 100.0.172.000)
ieSpell (Version: 2.5.1 (build 106))
InstantShareDevicesMFC (Version: 70.0.170.000)
Intel® Graphics Media Accelerator Driver
iPhone Configuration Utility (Version: 2.1.0.163)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 33 (Version: 6.0.330)
KeyScrambler (Version: 2.9.2.0)
LightScribe System Software 1.10.13.1 (Version: 1.10.13.1)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
MarketResearch (Version: 70.0.170.000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Encarta Encyclopedia Standard 2003 (Version: 2003)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2003 (Version: 11.0.50)
Microsoft Money 2003 System Pack (Version: 11.0.80)
Microsoft National Language Support Downlevel APIs
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Picture It! Photo 7.0 (Version: 7.0.0.0000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Streets and Trips 2002 (Version: 9.00.17.0200)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Word 2002 (Version: 10.0.6626.0)
Microsoft Works 2003 Setup Launcher
Microsoft Works 7.0 (Version: 07.02.0710.1)
Microsoft Works Suite Add-in for Microsoft Word (Version: 2.0.0.0000)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
MobileMe Control Panel (Version: 3.1.8.0)
Move Media Player
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Musicnotes Player V1.23.1 and Viewer (Version: 1.23.1)
My.Freeze.com NetAssistant (Version: 3.6.0)
neroxml (Version: 1.0.0)
Netscape (7.2)
NewCopy_CDA (Version: 70.0.231.000)
NVIDIA Control Panel 301.42 (Version: 301.42)
NVIDIA Graphics Driver 301.42 (Version: 301.42)
NVIDIA Install Application (Version: 2.1002.75.420)
NVIDIA nView 136.27 (Version: 136.27)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Update 1.8.15 (Version: 1.8.15)
NVIDIA Update Components (Version: 1.8.15)
PowerDVD (Version: 7.0.2414.0)
ProductContextNPI (Version: 70.0.231.000)
QuickTime (Version: 7.72.80.56)
Readme (Version: 70.0.231.000)
Realm of the Mad God
Realtek High Definition Audio Driver (Version: 5.10.0.5397)
Rhapsody Player Engine (Version: 1.1.0)
Safari (Version: 5.34.54.16)
Scan (Version: 7.0.0.0)
ScannerCopy (Version: 7.0.0.0)
Shop for HP Supplies (Version: 10.0)
Sibelius Scorch (ActiveX Only) (Version: 5.2.1)
SolutionCenter (Version: 70.0.170.000)
SpiralFrog Download Manager 0.8.25 (Version: 0.8.25.2761)
SpywareBlaster 4.6 (Version: 4.6.0)
Status (Version: 70.0.170.000)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 4.48.1000)
Toolbox (Version: 70.0.170.000)
TrayApp (Version: 70.0.170.000)
TuxGuitar 1.2
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
Viewpoint Media Player
vixy converter uninstall (Version: 1.0)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 70.0.170.000)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows XP Service Pack 3 (Version: 20080414.031525)
Works Suite OS Pack (Version: 3.0.0.0000)
WOT for Internet Explorer (Version: 10.12.20.0)
ZoneAlarm Firewall (Version: 10.1.065.000)
ZoneAlarm Free (Version: 10.1.065.000)
ZoneAlarm Security (Version: 10.1.065.000)
ZoneAlarm Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 61%
Total physical RAM: 1023.17 MB
Available physical RAM: 390.73 MB
Total Pagefile: 2460.57 MB
Available Pagefile: 1770.12 MB
Total Virtual: 2047.88 MB
Available Virtual: 1965.86 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:149.05 GB) (Free:22.66 GB) NTFS
3 Drive e: () (Fixed) (Total:28.63 GB) (Free:15.3 GB) NTFS

========================= Users: ========================================

User accounts for \\JANINA

Administrator ASPNET Guest
HelpAssistant Janina Joy Jenna
Joshua SUPPORT_388945a0 UpdatusUser
William


**** End of log ****





***********************
***********************





FSS Scan Log Results:



Farbar Service Scanner Version: 06-08-2012
Ran by Janina Joy (administrator) on 12-08-2012 at 00:24:54
Running from "C:\Documents and Settings\Janina Joy\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x080000000500000001000000020000000300000004000000060000000700000008000000
IpSec Tag value is correct.

**** End of log ****







**********************
**********************






ADWARE Cleaner Log Results:




# AdwCleaner v1.800 - Logfile created 08/12/2012 at 00:28:40
# Updated 01/08/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Janina Joy - JANINA
# Running from : C:\Documents and Settings\Janina Joy\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Viewpoint Manager Service

***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\Janina Joy\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Janina Joy\Local Settings\Application Data\Elf_1.15
Folder Deleted : C:\Documents and Settings\William\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\William\Local Settings\Application Data\ConduitEngine
Folder Deleted : C:\Documents and Settings\Joshua\Local Settings\Application Data\AskToolbar
Folder Deleted : C:\Documents and Settings\Joshua\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Joshua\Local Settings\Application Data\ConduitEngine
Folder Deleted : C:\Documents and Settings\Janina Joy\Application Data\PriceGong
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
Folder Deleted : C:\Documents and Settings\All Users\Application Data\InstallMate
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Elf_1.15
Folder Deleted : C:\Program Files\Viewpoint

***** [Registry] *****

[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2645238
[*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2866295
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Elf_1.15
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\Elf_1.15
Key Deleted : HKLM\SOFTWARE\Freeze.com
Key Deleted : HKLM\SOFTWARE\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Elf_1.15 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Viewpoint

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DE58A878-2010-427F-84D3-6466056BF212}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B9D63C58-90CC-428B-8D3B-CBB88EB07E7E}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{B9D63C58-90CC-428B-8D3B-CBB88EB07E7E}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

*************************

AdwCleaner[S1].txt - [291 octets] - [12/08/2012 00:26:57]
AdwCleaner[S2].txt - [4693 octets] - [12/08/2012 00:28:40]

########## EOF - C:\AdwCleaner[S2].txt - [4821 octets] ##########



Off to bed to catch some zzz's. Catch up with you tomorrow or whenever you get your next opportunity.

How is the system looking now?

Thanks again for your help!
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 12 August 2012 - 04:15 AM

System looks good.Does Avira still detect infections?

#7 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 12 August 2012 - 09:22 AM

Let me boot up the system to see how it is running and then also let it stay idle for about an hour. I'll get back with you shortly.
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 12 August 2012 - 09:41 AM

:thumbup2:

#9 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 12 August 2012 - 06:30 PM

Well,

after a few hours of online game play, web-surfing and working online study, it appears that all is back to normal again. No Avira pop-ups, no further detections of any kind, and the system is also working a bit faster again.

Thank you very very much for all your help. Unless there is anything else that needs to be done, I believe this ticket can be closed!
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 12 August 2012 - 09:46 PM

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://support.microsoft.com/kb/310405

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#11 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:03:32 AM

Posted 13 August 2012 - 07:53 PM

Awesome!

Thank again so very much for all your help!

Peace
hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:32 AM

Posted 13 August 2012 - 09:06 PM

You're most welcome :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users