Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Introduction + optimizer pro issue!


  • Please log in to reply
11 replies to this topic

#1 manicmoron

manicmoron

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 08 December 2012 - 08:52 AM

Hi firstly I'm new to bleeping , so a big "HI" to all :)
Love the following :-gaming, YouTube vids (weird I know!) and music.
The last one actually got me into the current situation. While trying to download a song from the site "mp3juices", I accidentally ran an exe file which installed "optimizer pro". I never ran the app and I noticed that it closed my chrome browser, so I tried uninstalling it through control panel ->add/remove program.also "ended process tree" in task manager, but by then I noticed the slowness (comp plus Internet) and I just couldn't open other browsers as well. So after uninstalling,using task mgr,using ccleaner,kaspersky and malware (ran scans) I thought it was over. But now I can't connect to the net and not able to open browser. So would like to know how to solve this issue! :(

P.S: sorry for the detailed explanation. Also checked regedit,couldn't find any key/value with the name "optimizer pro". Installed revo uninstaller but nothing to uninstall :/

*Moderator Edit: Moved topic from Introductions to the more appropriate forum. Everything I have read about Optimizer Pro calls it malware.~ Queen-Evie*

Edited by Queen-Evie, 08 December 2012 - 09:26 AM.


BC AdBot (Login to Remove)

 


#2 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:06:02 AM

Posted 08 December 2012 - 09:53 AM

Hi, manicmoron! I'm going to try to help you out. :)

Since you're not able to go on the internet on this computer, you'll need to use a removable device (like as USB or CD) to transfer the files I need you to download onto the sick PC. :)

TDSSKiller

I need you to run a scan using TDSSKiller.

  • Download TDSSKiller from here, and save it to your desktop.
  • Double click the file to launch the program. Once the program starts, click Start Scan. Don't change any default scan settings.
  • Once the scan is finished, you'll find a log in your root drive (usually C: ) that will start with TDSS in the file name, please copy and paste it into your reply.

AdwCleaner

I need you to run AdwCleaner to see if it removes anything.

  • Download AdwCleaner from here, and save it to your desktop.
  • Close all open programs.
  • Open the file on your desktop, and click the Delete button. Confirm operations at every prompt. Your PC will be rebooted after the final prompt.
  • Once rebooted, a text file will open up. Please copy and paste it into your reply.

RogueKiller

I need you to run RogueKiller to see if it removes anything.

  • Download RogueKiller from here, and save it to your desktop.
  • Close all open programs.
  • Double click the file on your desktop. Once the automatic check completes, hit the Scan button.
  • Once the full scan has finished, click on the Delete button. Once it's done removing things, open the newest log on your desktop (should be called RKreport[2].txt) and copy and paste it into your reply.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#3 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 08 December 2012 - 10:00 AM

Hi gunto,

Many thanks for the speedy reply. Am downloading the files you mentioned as I am typing this. Will get back to you with the logs/results.

P.S: did a quick scan of all directories using malware bytes and it found no harmful objects. Performing a full scan now.

#4 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 08 December 2012 - 11:20 AM

Hi gunto,

I be pasted the logs below:-

1.TDSSKillet:

21:15:22.0203 1228 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
21:15:24.0218 1228 ============================================================
21:15:24.0218 1228 Current date / time: 2012/12/08 21:15:24.0218
21:15:24.0218 1228 SystemInfo:
21:15:24.0218 1228
21:15:24.0218 1228 OS Version: 5.1.2600 ServicePack: 2.0
21:15:24.0218 1228 Product type: Workstation
21:15:24.0218 1228 ComputerName: SYSTEM
21:15:24.0218 1228 UserName: Administrator
21:15:24.0218 1228 Windows directory: C:\WINDOWS
21:15:24.0218 1228 System windows directory: C:\WINDOWS
21:15:24.0218 1228 Processor architecture: Intel x86
21:15:24.0218 1228 Number of processors: 2
21:15:24.0218 1228 Page size: 0x1000
21:15:24.0218 1228 Boot type: Normal boot
21:15:24.0218 1228 ============================================================
21:15:33.0968 1228 Drive \Device\Harddisk0\DR0 - Size: 0x3A38A25E00 (232.88 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:15:33.0968 1228 Drive \Device\Harddisk1\DR8 - Size: 0xE8E0DB5E00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:15:33.0984 1228 Drive \Device\Harddisk2\DR10 - Size: 0xEFBFFE00 (3.75 Gb), SectorSize: 0x200, Cylinders: 0x1E9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:15:34.0000 1228 ============================================================
21:15:34.0000 1228 \Device\Harddisk0\DR0:
21:15:34.0000 1228 MBR partitions:
21:15:34.0000 1228 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4E1EDEC
21:15:34.0015 1228 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x4E1EE6A, BlocksNum 0x61A7927
21:15:34.0031 1228 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xAFC67D0, BlocksNum 0x61A7927
21:15:34.0046 1228 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1116E136, BlocksNum 0x4E1EDEC
21:15:34.0062 1228 \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x15F8CF61, BlocksNum 0x723375F
21:15:34.0062 1228 \Device\Harddisk1\DR8:
21:15:34.0062 1228 MBR partitions:
21:15:34.0062 1228 \Device\Harddisk1\DR8\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
21:15:34.0062 1228 \Device\Harddisk2\DR10:
21:15:34.0062 1228 MBR partitions:
21:15:34.0062 1228 \Device\Harddisk2\DR10\Partition1: MBR, Type 0xB, StartLBA 0x26, BlocksNum 0x779FC2
21:15:34.0062 1228 ============================================================
21:15:34.0125 1228 C: <-> \Device\Harddisk0\DR0\Partition1
21:15:34.0156 1228 D: <-> \Device\Harddisk0\DR0\Partition2
21:15:34.0203 1228 E: <-> \Device\Harddisk0\DR0\Partition3
21:15:34.0281 1228 F: <-> \Device\Harddisk0\DR0\Partition4
21:15:34.0375 1228 G: <-> \Device\Harddisk0\DR0\Partition5
21:15:34.0453 1228 L: <-> \Device\Harddisk1\DR8\Partition1
21:15:34.0453 1228 ============================================================
21:15:34.0453 1228 Initialize success
21:15:34.0453 1228 ============================================================
21:15:38.0265 3000 ============================================================
21:15:38.0265 3000 Scan started
21:15:38.0265 3000 Mode: Manual;
21:15:38.0265 3000 ============================================================
21:15:41.0015 3000 ================ Scan system memory ========================
21:15:41.0015 3000 System memory - ok
21:15:41.0015 3000 ================ Scan services =============================
21:15:41.0140 3000 [ 0352A73CD6B1782EA3ED7A03A8268F55 ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
21:15:41.0140 3000 Aavmker4 - ok
21:15:41.0140 3000 Abiosdsk - ok
21:15:41.0156 3000 abp480n5 - ok
21:15:41.0187 3000 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:15:41.0187 3000 ACPI - ok
21:15:41.0218 3000 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
21:15:41.0218 3000 ACPIEC - ok
21:15:41.0281 3000 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:15:41.0296 3000 AdobeFlashPlayerUpdateSvc - ok
21:15:41.0312 3000 adpu160m - ok
21:15:41.0343 3000 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
21:15:41.0343 3000 aec - ok
21:15:41.0375 3000 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
21:15:41.0375 3000 AFD - ok
21:15:41.0390 3000 Aha154x - ok
21:15:41.0390 3000 aic78u2 - ok
21:15:41.0390 3000 aic78xx - ok
21:15:41.0437 3000 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
21:15:41.0437 3000 Alerter - ok
21:15:41.0468 3000 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
21:15:41.0468 3000 ALG - ok
21:15:41.0468 3000 AliIde - ok
21:15:41.0468 3000 amsint - ok
21:15:41.0546 3000 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:15:41.0562 3000 Apple Mobile Device - ok
21:15:41.0593 3000 [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
21:15:41.0593 3000 AppMgmt - ok
21:15:41.0593 3000 asc - ok
21:15:41.0609 3000 asc3350p - ok
21:15:41.0609 3000 asc3550 - ok
21:15:41.0656 3000 [ 4EABF511B1AF176A971C3271E48FA3A8 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
21:15:41.0671 3000 aspnet_state - ok
21:15:41.0703 3000 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
21:15:41.0734 3000 aswFsBlk - ok
21:15:41.0765 3000 [ 2B9B1DF809E965EF63402CBBA6DB50AE ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
21:15:41.0765 3000 aswMon2 - ok
21:15:41.0781 3000 [ B7D5E4486BA658ED08624D8084ABB830 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
21:15:41.0781 3000 AswRdr - ok
21:15:41.0812 3000 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
21:15:41.0828 3000 aswSnx - ok
21:15:41.0875 3000 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
21:15:41.0890 3000 aswSP - ok
21:15:41.0906 3000 [ DFE9152ABFA89BB8CFDC057409B2D4DA ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
21:15:41.0906 3000 aswTdi - ok
21:15:41.0937 3000 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:15:41.0937 3000 AsyncMac - ok
21:15:41.0953 3000 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
21:15:41.0953 3000 atapi - ok
21:15:41.0968 3000 Atdisk - ok
21:15:42.0000 3000 [ 70F72C50D39F5AFA76C17F86223A7C4F ] atksgt C:\WINDOWS\system32\DRIVERS\atksgt.sys
21:15:42.0031 3000 atksgt - ok
21:15:42.0062 3000 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:15:42.0062 3000 Atmarpc - ok
21:15:42.0093 3000 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
21:15:42.0093 3000 AudioSrv - ok
21:15:42.0125 3000 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
21:15:42.0125 3000 audstub - ok
21:15:42.0187 3000 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:15:42.0187 3000 avast! Antivirus - ok
21:15:42.0234 3000 [ 6C9D5BADC8F83D410A278717C2EEA6F6 ] AVP C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
21:15:42.0250 3000 AVP - ok
21:15:42.0265 3000 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
21:15:42.0281 3000 Beep - ok
21:15:42.0312 3000 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\system32\qmgr.dll
21:15:42.0390 3000 BITS - ok
21:15:42.0453 3000 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:15:42.0484 3000 Bonjour Service - ok
21:15:42.0515 3000 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
21:15:42.0515 3000 Browser - ok
21:15:42.0531 3000 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
21:15:42.0546 3000 cbidf2k - ok
21:15:42.0546 3000 cd20xrnt - ok
21:15:42.0562 3000 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
21:15:42.0562 3000 Cdaudio - ok
21:15:42.0593 3000 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
21:15:42.0593 3000 Cdfs - ok
21:15:42.0625 3000 [ 882B4257E5A5ADFB6B5C03E8A02D4BF1 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:15:42.0625 3000 Cdrom - ok
21:15:42.0640 3000 Changer - ok
21:15:42.0656 3000 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
21:15:42.0656 3000 CiSvc - ok
21:15:42.0671 3000 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
21:15:42.0671 3000 ClipSrv - ok
21:15:42.0718 3000 [ 234B1BC2796483E1F5C3F26649FB3388 ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:15:42.0781 3000 clr_optimization_v2.0.50727_32 - ok
21:15:42.0828 3000 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:15:42.0828 3000 clr_optimization_v4.0.30319_32 - ok
21:15:42.0843 3000 CmdIde - ok
21:15:42.0843 3000 COMSysApp - ok
21:15:42.0859 3000 Cpqarray - ok
21:15:42.0890 3000 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
21:15:42.0890 3000 CryptSvc - ok
21:15:42.0890 3000 dac2w2k - ok
21:15:42.0890 3000 dac960nt - ok
21:15:42.0937 3000 [ CE94A2BD25E3E9F4D46A7373FF455C6D ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
21:15:42.0953 3000 DcomLaunch - ok
21:15:42.0968 3000 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
21:15:42.0968 3000 Dhcp - ok
21:15:43.0000 3000 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
21:15:43.0000 3000 Disk - ok
21:15:43.0015 3000 dmadmin - ok
21:15:43.0062 3000 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
21:15:43.0093 3000 dmboot - ok
21:15:43.0093 3000 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
21:15:43.0109 3000 dmio - ok
21:15:43.0125 3000 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
21:15:43.0140 3000 dmload - ok
21:15:43.0156 3000 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
21:15:43.0156 3000 dmserver - ok
21:15:43.0171 3000 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
21:15:43.0171 3000 DMusic - ok
21:15:43.0203 3000 [ AAC8FFBFD61E784FA3BAC851D4A0BD5F ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
21:15:43.0203 3000 Dnscache - ok
21:15:43.0218 3000 dpti2o - ok
21:15:43.0234 3000 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
21:15:43.0234 3000 drmkaud - ok
21:15:43.0234 3000 EagleNT - ok
21:15:43.0265 3000 [ EFACD8D57A42A93E244A0DBD357E8CB8 ] EAPPkt C:\WINDOWS\system32\DRIVERS\EAPPkt.sys
21:15:43.0265 3000 EAPPkt - ok
21:15:43.0281 3000 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
21:15:43.0281 3000 ERSvc - ok
21:15:43.0312 3000 [ C6CE6EEC82F187615D1002BB3BB50ED4 ] Eventlog C:\WINDOWS\system32\services.exe
21:15:43.0312 3000 Eventlog - ok
21:15:43.0359 3000 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\system32\es.dll
21:15:43.0375 3000 EventSystem - ok
21:15:43.0390 3000 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
21:15:43.0406 3000 Fastfat - ok
21:15:43.0437 3000 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
21:15:43.0453 3000 FastUserSwitchingCompatibility - ok
21:15:43.0500 3000 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
21:15:43.0500 3000 Fdc - ok
21:15:43.0531 3000 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
21:15:43.0531 3000 Fips - ok
21:15:43.0562 3000 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
21:15:43.0562 3000 Flpydisk - ok
21:15:43.0593 3000 [ 3D234FB6D6EE875EB009864A299BEA29 ] FltMgr C:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:15:43.0593 3000 FltMgr - ok
21:15:43.0640 3000 [ 993883524AA9CF1C90E1545411A9AC9C ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:15:43.0640 3000 FontCache3.0.0.0 - ok
21:15:43.0656 3000 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:15:43.0671 3000 Fs_Rec - ok
21:15:43.0687 3000 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:15:43.0687 3000 Ftdisk - ok
21:15:43.0718 3000 [ B6BFEC7542730E9A376BF2408423D493 ] gdrv C:\WINDOWS\gdrv.sys
21:15:44.0078 3000 gdrv - ok
21:15:44.0109 3000 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:15:44.0109 3000 GEARAspiWDM - ok
21:15:44.0156 3000 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\WINDOWS\system32\DRIVERS\ggflt.sys
21:15:44.0156 3000 ggflt - ok
21:15:44.0171 3000 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\WINDOWS\system32\DRIVERS\ggsemc.sys
21:15:44.0171 3000 ggsemc - ok
21:15:44.0171 3000 GMSIPCI - ok
21:15:44.0203 3000 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:15:44.0203 3000 Gpc - ok
21:15:44.0265 3000 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
21:15:44.0265 3000 gupdate - ok
21:15:44.0281 3000 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
21:15:44.0281 3000 gupdatem - ok
21:15:44.0296 3000 [ 7929A161F9951D173CA9900FE7067391 ] hamachi C:\WINDOWS\system32\DRIVERS\hamachi.sys
21:15:44.0296 3000 hamachi - ok
21:15:44.0328 3000 [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:15:44.0343 3000 HDAudBus - ok
21:15:44.0390 3000 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:15:44.0390 3000 helpsvc - ok
21:15:44.0406 3000 [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ C:\WINDOWS\System32\hidserv.dll
21:15:44.0406 3000 HidServ - ok
21:15:44.0421 3000 [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:15:44.0421 3000 HidUsb - ok
21:15:44.0421 3000 hpn - ok
21:15:44.0453 3000 [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32 C:\WINDOWS\system32\Drivers\ANDROIDUSB.sys
21:15:44.0453 3000 HTCAND32 - ok
21:15:44.0484 3000 [ 04E3B3554076B8192A668EFE88A682A1 ] htcnprot C:\WINDOWS\system32\DRIVERS\htcnprot.sys
21:15:44.0484 3000 htcnprot - ok
21:15:44.0531 3000 [ CB77BB47E67E84DEB17BA29632501730 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
21:15:44.0562 3000 HTTP - ok
21:15:44.0578 3000 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
21:15:44.0609 3000 HTTPFilter - ok
21:15:44.0609 3000 i2omgmt - ok
21:15:44.0609 3000 i2omp - ok
21:15:44.0640 3000 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:15:44.0640 3000 i8042prt - ok
21:15:44.0703 3000 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:15:44.0703 3000 IDriverT - ok
21:15:44.0750 3000 [ E7CC3AEAED9893A88876744CD439F76C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:15:44.0796 3000 idsvc - ok
21:15:44.0843 3000 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
21:15:44.0843 3000 Imapi - ok
21:15:44.0875 3000 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\system32\imapi.exe
21:15:44.0875 3000 ImapiService - ok
21:15:44.0890 3000 ini910u - ok
21:15:45.0031 3000 [ C282875880DF189C64C465FC54A0150A ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
21:15:45.0156 3000 IntcAzAudAddService - ok
21:15:45.0156 3000 IntelIde - ok
21:15:45.0187 3000 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:15:45.0187 3000 intelppm - ok
21:15:45.0203 3000 [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:15:45.0203 3000 Ip6Fw - ok
21:15:45.0234 3000 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:15:45.0234 3000 IpFilterDriver - ok
21:15:45.0250 3000 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:15:45.0250 3000 IpInIp - ok
21:15:45.0281 3000 [ E2168CBC7098FFE963C6F23F472A3593 ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:15:45.0281 3000 IpNat - ok
21:15:45.0328 3000 [ EF1C51222117B37AFBFF8F4642EA8C62 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
21:15:45.0343 3000 iPod Service - ok
21:15:45.0375 3000 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:15:45.0375 3000 IPSec - ok
21:15:45.0406 3000 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
21:15:45.0406 3000 IRENUM - ok
21:15:45.0437 3000 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:15:45.0437 3000 isapnp - ok
21:15:45.0515 3000 [ 9AE07549A0D691A103FAF8946554BDB7 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
21:15:45.0531 3000 JavaQuickStarterService - ok
21:15:45.0546 3000 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:15:45.0546 3000 Kbdclass - ok
21:15:45.0562 3000 [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:15:45.0562 3000 kbdhid - ok
21:15:45.0609 3000 [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] KL1 C:\WINDOWS\system32\DRIVERS\kl1.sys
21:15:45.0609 3000 KL1 - ok
21:15:45.0625 3000 [ BF485BFBA13C0AB116701FD9C55324D0 ] kl2 C:\WINDOWS\system32\DRIVERS\kl2.sys
21:15:45.0625 3000 kl2 - ok
21:15:45.0640 3000 [ 5D92A03045A6A98708975B3D77B39A36 ] KLIF C:\WINDOWS\system32\DRIVERS\klif.sys
21:15:45.0671 3000 KLIF - ok
21:15:45.0671 3000 [ 96A7EC308A93DA26DFE481308BAAC2A2 ] klim5 C:\WINDOWS\system32\DRIVERS\klim5.sys
21:15:45.0687 3000 klim5 - ok
21:15:45.0687 3000 [ 3959530F69E19DA56F1F24F2C89F1E2C ] klmouflt C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:15:45.0687 3000 klmouflt - ok
21:15:45.0718 3000 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
21:15:45.0718 3000 kmixer - ok
21:15:45.0750 3000 [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
21:15:45.0750 3000 KSecDD - ok
21:15:45.0781 3000 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
21:15:45.0796 3000 lanmanserver - ok
21:15:45.0828 3000 [ 3CD291A2C4909088B3D1E98DED73D4B2 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
21:15:45.0828 3000 lanmanworkstation - ok
21:15:45.0843 3000 lbrtfdc - ok
21:15:45.0875 3000 [ F8A7212D0864EF5E9185FB95E6623F4D ] lirsgt C:\WINDOWS\system32\DRIVERS\lirsgt.sys
21:15:45.0875 3000 lirsgt - ok
21:15:45.0906 3000 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
21:15:45.0906 3000 LmHosts - ok
21:15:45.0937 3000 [ 6DFE7F2E8E8A337263AA5C92A215F161 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
21:15:45.0937 3000 MBAMProtector - ok
21:15:45.0984 3000 [ 43683E970F008C93C9429EF428147A54 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:15:46.0015 3000 MBAMService - ok
21:15:46.0015 3000 MBAMSwissArmy - ok
21:15:46.0031 3000 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
21:15:46.0046 3000 Messenger - ok
21:15:46.0062 3000 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
21:15:46.0078 3000 mnmdd - ok
21:15:46.0109 3000 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
21:15:46.0109 3000 mnmsrvc - ok
21:15:46.0125 3000 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
21:15:46.0125 3000 Modem - ok
21:15:46.0140 3000 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:15:46.0140 3000 Mouclass - ok
21:15:46.0156 3000 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:15:46.0156 3000 mouhid - ok
21:15:46.0187 3000 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
21:15:46.0187 3000 MountMgr - ok
21:15:46.0234 3000 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:15:46.0250 3000 MozillaMaintenance - ok
21:15:46.0250 3000 mraid35x - ok
21:15:46.0281 3000 [ 29414447EB5BDE2F8397DC965DBB3156 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:15:46.0296 3000 MRxDAV - ok
21:15:46.0343 3000 [ 025AF03CE51645C62F3B6907A7E2BE5E ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:15:46.0359 3000 MRxSmb - ok
21:15:46.0375 3000 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
21:15:46.0390 3000 MSDTC - ok
21:15:46.0437 3000 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
21:15:46.0437 3000 Msfs - ok
21:15:46.0453 3000 MSIServer - ok
21:15:46.0468 3000 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:15:46.0484 3000 MSKSSRV - ok
21:15:46.0500 3000 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:15:46.0515 3000 MSPCLOCK - ok
21:15:46.0515 3000 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
21:15:46.0515 3000 MSPQM - ok
21:15:46.0546 3000 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:15:46.0546 3000 mssmbios - ok
21:15:46.0562 3000 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
21:15:46.0562 3000 Mup - ok
21:15:46.0656 3000 [ 5E8EDD6A52E897C19EC6E149FE6C7A8E ] NBService C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
21:15:46.0671 3000 NBService - ok
21:15:46.0703 3000 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
21:15:46.0718 3000 NDIS - ok
21:15:46.0750 3000 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:15:46.0750 3000 NdisTapi - ok
21:15:46.0781 3000 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:15:46.0781 3000 Ndisuio - ok
21:15:46.0796 3000 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:15:46.0796 3000 NdisWan - ok
21:15:46.0812 3000 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
21:15:46.0812 3000 NDProxy - ok
21:15:46.0828 3000 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
21:15:46.0828 3000 NetBIOS - ok
21:15:46.0843 3000 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
21:15:46.0843 3000 NetBT - ok
21:15:46.0875 3000 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
21:15:46.0875 3000 NetDDE - ok
21:15:46.0890 3000 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
21:15:46.0890 3000 NetDDEdsdm - ok
21:15:46.0906 3000 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\system32\lsass.exe
21:15:46.0906 3000 Netlogon - ok
21:15:46.0937 3000 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
21:15:46.0953 3000 Netman - ok
21:15:46.0984 3000 [ F9102685F97F9BA85F4A70AFCF722CFE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:15:47.0000 3000 NetTcpPortSharing - ok
21:15:47.0031 3000 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
21:15:47.0046 3000 Nla - ok
21:15:47.0109 3000 [ A328A46D87BB92CE4D8A4528E9D84787 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
21:15:47.0109 3000 NMIndexingService - ok
21:15:47.0140 3000 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
21:15:47.0140 3000 Npfs - ok
21:15:47.0171 3000 [ 19A811EF5F1ED5C926A028CE107FF1AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
21:15:47.0218 3000 Ntfs - ok
21:15:47.0250 3000 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
21:15:47.0250 3000 NtLmSsp - ok
21:15:47.0296 3000 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
21:15:47.0312 3000 NtmsSvc - ok
21:15:47.0328 3000 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
21:15:47.0328 3000 Null - ok
21:15:47.0593 3000 [ B9B1BB146EB9A83DCF0F5635B09D3D43 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
21:15:47.0828 3000 nv - ok
21:15:47.0859 3000 [ CC4F8220EAD1F6A38D51679708F435B9 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
21:15:47.0859 3000 NVSvc - ok
21:15:47.0890 3000 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:15:47.0890 3000 NwlnkFlt - ok
21:15:47.0906 3000 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:15:47.0906 3000 NwlnkFwd - ok
21:15:47.0968 3000 [ 84DE1DD996B48B05ACE31AD015FA108A ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:15:48.0015 3000 odserv - ok
21:15:48.0046 3000 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:15:48.0046 3000 ose - ok
21:15:48.0078 3000 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
21:15:48.0078 3000 Parport - ok
21:15:48.0093 3000 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
21:15:48.0093 3000 PartMgr - ok
21:15:48.0125 3000 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
21:15:48.0125 3000 ParVdm - ok
21:15:48.0187 3000 [ 5FBCC9EEEFACA3019D5BD5979618F298 ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
21:15:48.0187 3000 PassThru Service - ok
21:15:48.0218 3000 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
21:15:48.0234 3000 PCI - ok
21:15:48.0234 3000 PCIDump - ok
21:15:48.0250 3000 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
21:15:48.0250 3000 PCIIde - ok
21:15:48.0296 3000 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
21:15:48.0296 3000 Pcmcia - ok
21:15:48.0296 3000 PDCOMP - ok
21:15:48.0312 3000 PDFRAME - ok
21:15:48.0312 3000 PDRELI - ok
21:15:48.0328 3000 PDRFRAME - ok
21:15:48.0328 3000 perc2 - ok
21:15:48.0328 3000 perc2hib - ok
21:15:48.0359 3000 [ C6CE6EEC82F187615D1002BB3BB50ED4 ] PlugPlay C:\WINDOWS\system32\services.exe
21:15:48.0359 3000 PlugPlay - ok
21:15:48.0375 3000 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
21:15:48.0390 3000 PolicyAgent - ok
21:15:48.0390 3000 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:15:48.0390 3000 PptpMiniport - ok
21:15:48.0406 3000 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
21:15:48.0406 3000 ProtectedStorage - ok
21:15:48.0421 3000 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
21:15:48.0421 3000 PSched - ok
21:15:48.0437 3000 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:15:48.0437 3000 Ptilink - ok
21:15:48.0484 3000 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
21:15:48.0484 3000 PxHelp20 - ok
21:15:48.0484 3000 ql1080 - ok
21:15:48.0500 3000 Ql10wnt - ok
21:15:48.0515 3000 ql12160 - ok
21:15:48.0515 3000 ql1240 - ok
21:15:48.0515 3000 ql1280 - ok
21:15:48.0531 3000 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:15:48.0531 3000 RasAcd - ok
21:15:48.0562 3000 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
21:15:48.0593 3000 RasAuto - ok
21:15:48.0593 3000 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:15:48.0609 3000 Rasl2tp - ok
21:15:48.0640 3000 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
21:15:48.0640 3000 RasMan - ok
21:15:48.0656 3000 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:15:48.0671 3000 RasPppoe - ok
21:15:48.0671 3000 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
21:15:48.0671 3000 Raspti - ok
21:15:48.0703 3000 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:15:48.0703 3000 Rdbss - ok
21:15:48.0718 3000 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:15:48.0718 3000 RDPCDD - ok
21:15:48.0750 3000 [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:15:48.0750 3000 rdpdr - ok
21:15:48.0781 3000 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
21:15:48.0796 3000 RDPWD - ok
21:15:48.0828 3000 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
21:15:48.0843 3000 RDSessMgr - ok
21:15:48.0859 3000 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
21:15:48.0859 3000 redbook - ok
21:15:48.0890 3000 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
21:15:48.0906 3000 RemoteAccess - ok
21:15:48.0937 3000 [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
21:15:48.0937 3000 RemoteRegistry - ok
21:15:48.0968 3000 [ 8B5B8A11306190C6963D3473F052D3C8 ] Revoflt C:\WINDOWS\system32\DRIVERS\revoflt.sys
21:15:48.0968 3000 Revoflt - ok
21:15:49.0000 3000 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\system32\locator.exe
21:15:49.0000 3000 RpcLocator - ok
21:15:49.0031 3000 [ CE94A2BD25E3E9F4D46A7373FF455C6D ] RpcSs C:\WINDOWS\system32\rpcss.dll
21:15:49.0031 3000 RpcSs - ok
21:15:49.0078 3000 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
21:15:49.0093 3000 RSVP - ok
21:15:49.0109 3000 [ 36ADA62330C31AD314E4A26B815FC485 ] RTLE8023xp C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
21:15:49.0125 3000 RTLE8023xp - ok
21:15:49.0156 3000 [ 691DB86B09E13CA5D3E8881141738CC5 ] RTLWUSB C:\WINDOWS\system32\DRIVERS\wg111v2.sys
21:15:49.0156 3000 RTLWUSB - ok
21:15:49.0171 3000 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
21:15:49.0171 3000 SamSs - ok
21:15:49.0203 3000 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
21:15:49.0218 3000 SCardSvr - ok
21:15:49.0265 3000 [ C23DBD9BFBA8B1170706E0896B3CF7DA ] SCDEmu C:\WINDOWS\system32\drivers\SCDEmu.sys
21:15:49.0265 3000 SCDEmu - ok
21:15:49.0296 3000 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
21:15:49.0343 3000 Schedule - ok
21:15:49.0375 3000 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:15:49.0375 3000 Secdrv - ok
21:15:49.0406 3000 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
21:15:49.0421 3000 seclogon - ok
21:15:49.0437 3000 [ E5B56569A9F79B70314FEDE6C953641E ] seehcri C:\WINDOWS\system32\DRIVERS\seehcri.sys
21:15:49.0453 3000 seehcri - ok
21:15:49.0468 3000 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
21:15:49.0468 3000 SENS - ok
21:15:49.0500 3000 [ A2D868AEEFF612E70E213C451A70CAFB ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
21:15:49.0500 3000 serenum - ok
21:15:49.0515 3000 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
21:15:49.0515 3000 Serial - ok
21:15:49.0546 3000 [ 1F16931C722C69E4A7866244796C66A0 ] sermouse C:\WINDOWS\system32\DRIVERS\sermouse.sys
21:15:49.0546 3000 sermouse - ok
21:15:49.0593 3000 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
21:15:49.0593 3000 Sfloppy - ok
21:15:49.0625 3000 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
21:15:49.0640 3000 SharedAccess - ok
21:15:49.0656 3000 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:15:49.0671 3000 ShellHWDetection - ok
21:15:49.0671 3000 Simbad - ok
21:15:49.0687 3000 Sparrow - ok
21:15:49.0718 3000 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
21:15:49.0718 3000 splitter - ok
21:15:49.0750 3000 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
21:15:49.0765 3000 Spooler - ok
21:15:49.0812 3000 [ D390675B8CE45E5FB359338E5E649329 ] sptd C:\WINDOWS\system32\Drivers\sptd.sys
21:15:49.0812 3000 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: D390675B8CE45E5FB359338E5E649329
21:15:49.0812 3000 sptd ( LockedFile.Multi.Generic ) - warning
21:15:49.0812 3000 sptd - detected LockedFile.Multi.Generic (1)
21:15:49.0843 3000 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
21:15:49.0843 3000 sr - ok
21:15:49.0875 3000 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\system32\srsvc.dll
21:15:49.0875 3000 srservice - ok
21:15:49.0906 3000 [ 7A0111577D8046633D5162A3CE15E9E1 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
21:15:49.0921 3000 Srv - ok
21:15:49.0937 3000 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
21:15:49.0953 3000 SSDPSRV - ok
21:15:49.0984 3000 [ B6763F8534AC547CF1AF98AFDFF2EDC8 ] stisvc C:\WINDOWS\system32\wiaservc.dll
21:15:50.0000 3000 stisvc - ok
21:15:50.0015 3000 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
21:15:50.0015 3000 swenum - ok
21:15:50.0046 3000 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
21:15:50.0046 3000 swmidi - ok
21:15:50.0062 3000 SwPrv - ok
21:15:50.0062 3000 symc810 - ok
21:15:50.0062 3000 symc8xx - ok
21:15:50.0078 3000 sym_hi - ok
21:15:50.0078 3000 sym_u3 - ok
21:15:50.0093 3000 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
21:15:50.0109 3000 sysaudio - ok
21:15:50.0125 3000 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
21:15:50.0156 3000 SysmonLog - ok
21:15:50.0218 3000 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
21:15:50.0250 3000 TapiSrv - ok
21:15:50.0281 3000 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:15:50.0296 3000 Tcpip - ok
21:15:50.0328 3000 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
21:15:50.0343 3000 TDPIPE - ok
21:15:50.0359 3000 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
21:15:50.0359 3000 TDTCP - ok
21:15:50.0390 3000 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
21:15:50.0390 3000 TermDD - ok
21:15:50.0421 3000 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
21:15:50.0437 3000 TermService - ok
21:15:50.0453 3000 [ 6815DEF9B810AEFAC107EEAF72DA6F82 ] Themes C:\WINDOWS\System32\shsvcs.dll
21:15:50.0468 3000 Themes - ok
21:15:50.0484 3000 [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
21:15:50.0500 3000 TlntSvr - ok
21:15:50.0500 3000 TosIde - ok
21:15:50.0531 3000 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
21:15:50.0546 3000 TrkWks - ok
21:15:50.0562 3000 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
21:15:50.0578 3000 Udfs - ok
21:15:50.0578 3000 ultra - ok
21:15:50.0609 3000 [ CED744117E91BDC0BEB810F7D8608183 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
21:15:50.0625 3000 Update - ok
21:15:50.0671 3000 [ ACA5D98663D879C6BAAFCEA7E2F1B710 ] upnphost C:\WINDOWS\System32\upnphost.dll
21:15:50.0703 3000 upnphost - ok
21:15:50.0734 3000 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
21:15:50.0750 3000 UPS - ok
21:15:50.0796 3000 [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
21:15:50.0796 3000 USBAAPL - ok
21:15:50.0828 3000 [ 45A0D14B26C35497AD93BCE7E15C9941 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
21:15:50.0828 3000 usbaudio - ok
21:15:50.0843 3000 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:15:50.0859 3000 usbccgp - ok
21:15:50.0890 3000 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:15:50.0890 3000 usbehci - ok
21:15:50.0921 3000 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:15:50.0921 3000 usbhub - ok
21:15:50.0953 3000 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:15:50.0953 3000 usbscan - ok
21:15:50.0984 3000 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:15:51.0000 3000 USBSTOR - ok
21:15:51.0015 3000 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:15:51.0015 3000 usbuhci - ok
21:15:51.0015 3000 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
21:15:51.0031 3000 VgaSave - ok
21:15:51.0031 3000 ViaIde - ok
21:15:51.0062 3000 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
21:15:51.0062 3000 VolSnap - ok
21:15:51.0109 3000 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
21:15:51.0140 3000 VSS - ok
21:15:51.0171 3000 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\system32\w32time.dll
21:15:51.0187 3000 W32Time - ok
21:15:51.0203 3000 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:15:51.0203 3000 Wanarp - ok
21:15:51.0250 3000 [ D918617B46457B9AC28027722E30F647 ] Wdf01000 C:\WINDOWS\system32\Drivers\wdf01000.sys
21:15:51.0265 3000 Wdf01000 - ok
21:15:51.0265 3000 WDICA - ok
21:15:51.0281 3000 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
21:15:51.0281 3000 wdmaud - ok
21:15:51.0328 3000 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
21:15:51.0343 3000 WebClient - ok
21:15:51.0406 3000 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
21:15:51.0406 3000 winmgmt - ok
21:15:51.0453 3000 [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB C:\WINDOWS\system32\DRIVERS\WinUSB.sys
21:15:51.0453 3000 WinUSB - ok
21:15:51.0500 3000 [ 94A85E956A065E23E0010A6A7826243B ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
21:15:51.0515 3000 WLSetupSvc - ok
21:15:51.0546 3000 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
21:15:51.0546 3000 WmdmPmSN - ok
21:15:51.0593 3000 [ 1AFF244CA134956C54474F4E2433E4CE ] Wmi C:\WINDOWS\System32\advapi32.dll
21:15:51.0609 3000 Wmi - ok
21:15:51.0640 3000 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
21:15:51.0656 3000 WmiApSrv - ok
21:15:51.0734 3000 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
21:15:51.0765 3000 WMPNetworkSvc - ok
21:15:51.0781 3000 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:15:51.0796 3000 WpdUsb - ok
21:15:51.0875 3000 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:15:51.0906 3000 WPFFontCache_v0400 - ok
21:15:51.0953 3000 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
21:15:51.0968 3000 wscsvc - ok
21:15:51.0984 3000 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
21:15:52.0000 3000 wuauserv - ok
21:15:52.0015 3000 [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:15:52.0031 3000 WudfPf - ok
21:15:52.0046 3000 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:15:52.0062 3000 WudfRd - ok
21:15:52.0078 3000 [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
21:15:52.0140 3000 WudfSvc - ok
21:15:52.0171 3000 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
21:15:52.0203 3000 WZCSVC - ok
21:15:52.0203 3000 XDva297 - ok
21:15:52.0234 3000 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
21:15:52.0281 3000 xmlprov - ok
21:15:52.0281 3000 zumbus - ok
21:15:52.0296 3000 ================ Scan global ===============================
21:15:52.0328 3000 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
21:15:52.0359 3000 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
21:15:52.0390 3000 [ 3D21B3BE0C5768E76FD9780E9CF9E07C ] C:\WINDOWS\system32\winsrv.dll
21:15:52.0406 3000 [ C6CE6EEC82F187615D1002BB3BB50ED4 ] C:\WINDOWS\system32\services.exe
21:15:52.0406 3000 [Global] - ok
21:15:52.0421 3000 ================ Scan MBR ==================================
21:15:52.0421 3000 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
21:15:52.0593 3000 \Device\Harddisk0\DR0 - ok
21:15:52.0625 3000 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR8
21:15:52.0640 3000 \Device\Harddisk1\DR8 - ok
21:15:52.0656 3000 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR10
21:15:52.0687 3000 \Device\Harddisk2\DR10 - ok
21:15:52.0687 3000 ================ Scan VBR ==================================
21:15:52.0687 3000 [ 360F8988AD286F9A936B0308F45C8295 ] \Device\Harddisk0\DR0\Partition1
21:15:52.0687 3000 \Device\Harddisk0\DR0\Partition1 - ok
21:15:52.0703 3000 [ 0FDF11A188DB45EB840879DABC8026BB ] \Device\Harddisk0\DR0\Partition2
21:15:52.0703 3000 \Device\Harddisk0\DR0\Partition2 - ok
21:15:52.0718 3000 [ 5C84EDF88C5DC3FBE685AA7AAEBF83B9 ] \Device\Harddisk0\DR0\Partition3
21:15:52.0734 3000 \Device\Harddisk0\DR0\Partition3 - ok
21:15:52.0750 3000 [ 294D7E5155C73D9E730D25AF727F858D ] \Device\Harddisk0\DR0\Partition4
21:15:52.0750 3000 \Device\Harddisk0\DR0\Partition4 - ok
21:15:52.0765 3000 [ CD318E8B168CC1AA57B0DD1D2642CDC9 ] \Device\Harddisk0\DR0\Partition5
21:15:52.0765 3000 \Device\Harddisk0\DR0\Partition5 - ok
21:15:52.0765 3000 [ 54A61EFE205CFCD76EADDE7C191E5B92 ] \Device\Harddisk1\DR8\Partition1
21:15:52.0765 3000 \Device\Harddisk1\DR8\Partition1 - ok
21:15:52.0781 3000 [ FD02D8711D1EFDEC650541CE0FD2FDBC ] \Device\Harddisk2\DR10\Partition1
21:15:52.0781 3000 \Device\Harddisk2\DR10\Partition1 - ok
21:15:52.0781 3000 ============================================================
21:15:52.0781 3000 Scan finished
21:15:52.0781 3000 ============================================================
21:15:52.0796 3904 Detected object count: 1
21:15:52.0796 3904 Actual detected object count: 1
21:16:15.0328 3904 sptd ( LockedFile.Multi.Generic ) - skipped by user
21:16:15.0328 3904 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:17:02.0562 3772 Deinitialize success

-----2.adwcleaner:
# AdwCleaner v2.011 - Logfile created 12/08/2012 at 21:21:29
# Updated 02/12/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)
# User : Administrator - SYSTEM
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Administrator\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ngmmcbedgcbfghamlghhpbpifnbhhpik
File Deleted : C:\Program Files\Mozilla FireFox\Components\AskSearch.js
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\facemoods.com
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\PriceGong
Folder Deleted : C:\Documents and Settings\Administrator\Application Data\Toolbar4
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\BitTorrentBar2
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Administrator\Local Settings\Application Data\Softonic-Eng7
Folder Deleted : C:\Documents and Settings\All Users\Application Data\InstallMate
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Premium
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Trymedia
Folder Deleted : C:\Program Files\AskSearch
Folder Deleted : C:\Program Files\BitTorrentBar2
Folder Deleted : C:\Program Files\Softonic-Eng7

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\AskSA
Key Deleted : HKCU\Software\BitTorrentBar2
Key Deleted : HKCU\Software\Google\Chrome\Extensions\ngmmcbedgcbfghamlghhpbpifnbhhpik
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{14CD42DD-ABCD-3586-DCAB-40E3693E3737}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486B-A045-B233BD0DA8FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{656461EF-40F6-4115-9FF1-BCED9812CCBB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}
Key Deleted : HKCU\Software\PriceGong
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Softonic-Eng7
Key Deleted : HKLM\Software\AskBarDis
Key Deleted : HKLM\Software\BitTorrentBar2
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{656461EF-40F6-4115-9FF1-BCED9812CCBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C94E154B-1459-4A47-966B-4B843BEFC7DB}
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr
Key Deleted : HKLM\SOFTWARE\Classes\facemoods.facemoodsHlpr.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2405280
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3045275
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jplinpmadfkdgipabgcdchbdikologlh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ngmmcbedgcbfghamlghhpbpifnbhhpik
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{20D455E0-62B5-41E9-B4AE-549E8780B54A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{866DB122-BBFC-431C-AF50-E5BE8FA92250}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E56C47BD-65BF-463B-A6BE-2CDF92C1FB4C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BitTorrentBar2 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Softonic-Eng7 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BitTorrentBar2 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Softonic-Eng7 Toolbar
Key Deleted : HKLM\Software\Softonic-Eng7
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{656461EF-40F6-4115-9FF1-BCED9812CCBB}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{656461EF-40F6-4115-9FF1-BCED9812CCBB}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{C94E154B-1459-4A47-966B-4B843BEFC7DB}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{CA3EB689-8F09-4026-AA10-B9534C691CE0}]

***** [Internet Browsers] *****

-\\ Internet Explorer v6.0.2900.2180

Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://start.facemoods.com/?a=ost&s={searchTerms}&f=4 --> hxxp://www.google.com

-\\ Google Chrome v [Unable to get version]

File : C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [7765 octets] - [08/12/2012 21:21:29]

########## EOF - C:\AdwCleaner[S1].txt - [7825 octets] ##########

---- 3.rogue killer:

RogueKiller V8.3.2 [Dec 7 2012] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Started in : Normal mode
User : Administrator [Admin rights]
Mode : Remove -- Date : 12/08/2012 21:30:15

Bad processes : 0

Registry Entries : 5
[TASK][SUSP PATH] OptimizerProUpdaterTask{26B0C21A-A3C3-4982-BC54-7C5B9F69A93F}.job : C:\Documents and Settings\All Users\Application Data\Premium\OptimizerPro\OptimizerPro.exe /schedule /profilepath "C:\Documents and Settings\All Users\Application Data\Premium\OptimizerPro\profile.ini" -> DELETED
[DNS] HKLM\[...]\ControlSet001\Services\Interfaces\{B711100F-4A07-412B-9AC5-F34383C76FC0} : NameServer (203.145.184.32,203.145.184.13) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet002\Services\Interfaces\{B711100F-4A07-412B-9AC5-F34383C76FC0} : NameServer (203.145.184.32,203.145.184.13) -> NOT REMOVED, USE DNSFIX
[DNS] HKLM\[...]\ControlSet003\Services\Interfaces\{B711100F-4A07-412B-9AC5-F34383C76FC0} : NameServer (203.145.184.32,203.145.184.13) -> NOT REMOVED, USE DNSFIX
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

Particular Files / Folders:

Driver : [LOADED]

HOSTS File:
--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost


MBR Check:

+++++ PhysicalDrive0: ST3250310AS +++++
--- User ---
[MBR] 8de9ea18889078e8f11b076c4bf49b8d
[BSP] bd318ba94dae2b0b94fb22c232f2b71f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 39997 Mo
1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 81915435 | Size: 198467 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[2]_D_12082012_02d2130.txt >>
RKreport[1]_S_12082012_02d2129.txt ; RKreport[2]_D_12082012_02d2130.txt

Thanks a lot for the effort.

Regards.

P.S: when I install and open chrome/Firefox , I get an application error pop up box saying : "exception in system exception (some code) at the location (some code).

#5 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:06:02 AM

Posted 08 December 2012 - 10:43 PM

Hi,

Has anything improved since we've run these tools?

Can you navigate to C:\Documents and Settings\All Users\Application Data\ and see if a folder called Premium exists there? If it does, please delete it.

Going to wait for your feedback before providing any more instructions. :)

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#6 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 09 December 2012 - 01:13 AM

Hi gunto,

There was no folder named "premium" In the path u suggested. Also, I'm still unable to connect to the net and Firefox gives me the same application error :(

#7 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:06:02 AM

Posted 09 December 2012 - 05:43 AM

Hi,

I have a couple more scans to try. Without working internet our options are bit limited. :(

Farbar Service Scanner

I need you to run a scan with Farbar Service Scanner.

  • Download FSS from here, and save it to your desktop.
  • Double click the file to start the program. On the main interface, make sure the following options are checked:
    Internet Services
    Windows Firewall
    System Restore
    Security Center/Action Center
    Windows Update
    Windows Defender
    and click Scan.
  • Once the scan is done, copy and paste the contents of the resulting log into your reply.

Junkware Removal Tool

I need you to run a scan with Junkware Removal Tool.

  • Download JRT from here, and save it to your desktop.
  • Double click the file to open it, and hit any key as per the instructions of the popped up window.
  • Once the scan is done, copy and paste the contents of the resulting log into your reply.

Please tell me how your PC is doing in your next reply.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#8 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 09 December 2012 - 05:59 AM

Ok will do, by the way I am using windows xp (not genuine). Sorry, I should have mentioned it earlier. Will run the apps and get back to you with he logs. Thanks.

Regards.

#9 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 09 December 2012 - 10:32 AM

Hi Gunto,

I ran FSS and JRT apps and rebooted my comp. Thankfully, Firefox browser opened without showing any application error message, however, im still unable to connect to the net.

Below are the logs you mentioned:

1.FSS->

Farbar Service Scanner Version: 07-12-2012
Ran by Administrator (administrator) on 09-12-2012 at 16:44:03
Running from "C:\Documents and Settings\Administrator\Desktop"
Microsoft Windows XP Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Attempt to access Google.com returned error: Other errors
Yahoo IP is accessible.
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll
[2004-08-04 06:26] - [2006-05-19 18:29] - 0111616 ____A (Microsoft Corporation) EF545E1A4B043DA4C84E230DD471C55F

C:\WINDOWS\system32\Drivers\afd.sys
[2004-08-04 04:44] - [2008-08-14 15:21] - 0138368 ____A (Microsoft Corporation) 55E6E1C51B6D30E54335750955453702

C:\WINDOWS\system32\Drivers\netbt.sys
[2004-08-04 04:44] - [2004-08-04 04:44] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys
[2004-08-04 04:44] - [2008-06-20 16:15] - 0360320 ____A (Microsoft Corporation) 2A5554FC5B1E04E131230E3CE035C3F9

C:\WINDOWS\system32\Drivers\ipsec.sys
[2004-08-04 04:44] - [2004-08-04 04:44] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll
[2004-08-04 06:26] - [2008-02-20 11:02] - 0045568 ____A (Microsoft Corporation) AAC8FFBFD61E784FA3BAC851D4A0BD5F

C:\WINDOWS\system32\ipnathlp.dll
[2004-08-04 06:26] - [2004-08-04 06:26] - 0331264 ____A (Microsoft Corporation) 36CC8C01B5E50163037BEF56CB96DEFF

C:\WINDOWS\system32\netman.dll
[2004-08-04 06:26] - [2005-08-22 23:59] - 0197632 ____A (Microsoft Corporation) 36739B39267914BA69AD0610A0299732

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2008-05-29 19:03] - [2004-08-04 06:26] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\srsvc.dll
[2008-05-29 19:04] - [2004-08-04 06:26] - 0170496 ____A (Microsoft Corporation) 92BDF74F12D6CBEC43C94D4B7F804838

C:\WINDOWS\system32\Drivers\sr.sys
[2008-05-29 19:04] - [2004-08-04 04:36] - 0073472 ____A (Microsoft Corporation) E41B6D037D6CD08461470AF04500DC24

C:\WINDOWS\system32\wscsvc.dll
[2004-08-04 06:26] - [2004-08-04 06:26] - 0081408 ____A (Microsoft Corporation) 4D59DAA66C60858CDF4F67A900F42D4A

C:\WINDOWS\system32\wbem\WMIsvc.dll
[2008-05-29 19:03] - [2004-08-04 06:26] - 0144896 ____A (Microsoft Corporation) F399242A80C4066FD155EFA4CF96658E

C:\WINDOWS\system32\wuauserv.dll
[2008-05-29 19:05] - [2004-08-04 06:26] - 0006656 ____A (Microsoft Corporation) 13D72740963CBA12D9FF76A7F218BCD8

C:\WINDOWS\system32\qmgr.dll
[2008-05-29 19:05] - [2004-08-04 06:26] - 0382464 ____A (Microsoft Corporation) 2C69EC7E5A311334D10DD95F338FCCEA

C:\WINDOWS\system32\es.dll
[2004-08-04 06:26] - [2008-07-08 02:02] - 0253952 ____A (Microsoft Corporation) 60D1A6342238378BFB7545C81EE3606C

C:\WINDOWS\system32\cryptsvc.dll
[2004-08-04 06:26] - [2004-08-04 06:26] - 0060416 ____A (Microsoft Corporation) 10654F9DDCEA9C46CFB77554231BE73B

C:\WINDOWS\system32\svchost.exe
[2004-08-04 06:26] - [2004-08-04 06:26] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2004-08-04 06:26] - [2005-07-26 10:09] - 0397824 ____A (Microsoft Corporation) CE94A2BD25E3E9F4D46A7373FF455C6D

C:\WINDOWS\system32\services.exe
[2004-08-04 06:26] - [2004-08-04 06:26] - 0108032 ____A (Microsoft Corporation) C6CE6EEC82F187615D1002BB3BB50ED4


Extra List:
=======
aswTdi(10) Gpc(3) IPSec(5) kl2(9) NetBT(6) PSched(7) Tcpip(4)
0x0A000000090000000800000005000000010000000200000003000000040000000A0000000600000007000000


**** End of log ****

2.JRT->

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.0.1 (12.09.2012:1)
OS: Microsoft Windows XP x86
Ran by Administrator on Sun 12/09/2012 at 16:54:37.07
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{0329e7d6-6f54-462d-93f6-f5c3118badf2}
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{0329e7d6-6f54-462d-93f6-f5c3118badf2}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\toolbar\webbrowser\\{ef99bd32-c1fb-11d2-892f-0090271d4f88}
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\internet explorer\urlsearchhooks\\{ef99bd32-c1fb-11d2-892f-0090271d4f88}
Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\.default\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-18\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-19\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\s-1-5-20\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_users\S-1-5-21-1343024091-573735546-839522115-500\software\microsoft\internet explorer\main\\Start Page
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\main\\Start Page



~~~ Registry Keys

Successfully deleted: [Registry Key] "hkey_current_user\software\sweetim"
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{9afb8248-617f-460d-9366-d71cdeda3179}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\Administrator\Application Data\dvdvideosoftiehelpers"
Successfully deleted: [Folder] "C:\Program Files\fbphotozoom"
Failed to delete: [Folder] "C:\Program Files\mocaflix"





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 12/09/2012 at 17:45:07.56
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Thanks & regards,
manicmoron

#10 Gunto

Gunto

    Bleepin' Reject Phoenix


  • Malware Response Team
  • 1,291 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:North Las Vegas, Nevada, USA
  • Local time:06:02 AM

Posted 09 December 2012 - 11:06 AM

Hi,

Nice to hear that things are getting better, but it looks like you're going to need more advanced help.

Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

Gunto

Beautiful avatar by Plumbeck!

 

Bury me in honor; when I'm dead and hit the ground, a love back home, it unfolds...


#11 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 09 December 2012 - 10:14 PM

Ok thanks a lot will follow the steps. Hopefully it will get resolved soon .

Thanks and regards,
Manicmoron

#12 manicmoron

manicmoron
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:06:32 PM

Posted 10 December 2012 - 11:01 AM

Hi gunto,

An update: I ran dds in my system and have the logs. Weirdly, I'm now able to connect to the net, but I've had intermittent problems at times in the past as well. I shall post the logs in the forum as you suggested . Just wanted to thank you so much. Your a life saver! :)

Thanks and regards,
Manic moron




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users