Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't get rid of a site hijacking my homepage


  • This topic is locked This topic is locked
14 replies to this topic

#1 MATTtothefuture

MATTtothefuture

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 03 April 2013 - 08:31 PM

A website noticiasalpunto.net keeps hijacking my homepage. I keep restoring it it to default but after I restart my pc it goes back to that page.

 

I've run antivirus (MSE) but did not find anything. Anybody know what this is?

 

I'm running Firefox in WinXP.

 

UPDATE: The website has recently changed from noticiasalpunto.net to tumega.com

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 03 April 2013 - 08:54 PM

Welcome MATTtothefuture, Let's run these and see if we can find it.

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.

 

 

 

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 MATTtothefuture

MATTtothefuture
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 03 April 2013 - 09:06 PM

Hi, boopme. Thank you so much for the promt response. I am currently following the instructions you gave me in batches so here's the first LOG from TDSSKiller:

 

TDSSKiller LOG:

 

10:02:08.0312 3024  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:02:10.0015 3024  ============================================================
10:02:10.0015 3024  Current date / time: 2013/04/04 10:02:10.0015
10:02:10.0015 3024  SystemInfo:
10:02:10.0015 3024  
10:02:10.0015 3024  OS Version: 5.1.2600 ServicePack: 3.0
10:02:10.0015 3024  Product type: Workstation
10:02:10.0015 3024  ComputerName: LENOVO-C3EBD5E3
10:02:10.0031 3024  UserName: Patty
10:02:10.0031 3024  Windows directory: C:\WINDOWS
10:02:10.0031 3024  System windows directory: C:\WINDOWS
10:02:10.0031 3024  Processor architecture: Intel x86
10:02:10.0031 3024  Number of processors: 2
10:02:10.0031 3024  Page size: 0x1000
10:02:10.0031 3024  Boot type: Normal boot
10:02:10.0031 3024  ============================================================
10:02:15.0546 3024  Drive \Device\Harddisk0\DR0 - Size: 0x391E649400 (228.47 Gb), SectorSize: 0x200, Cylinders: 0x7481, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
10:02:15.0843 3024  ============================================================
10:02:15.0843 3024  \Device\Harddisk0\DR0:
10:02:15.0906 3024  MBR partitions:
10:02:15.0906 3024  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE476A01
10:02:15.0937 3024  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xE476A7F, BlocksNum 0xE476A01
10:02:15.0937 3024  ============================================================
10:02:16.0093 3024  D: <-> \Device\Harddisk0\DR0\Partition2
10:02:16.0187 3024  C: <-> \Device\Harddisk0\DR0\Partition1
10:02:16.0281 3024  ============================================================
10:02:16.0281 3024  Initialize success
10:02:16.0281 3024  ============================================================
10:02:53.0000 0832  ============================================================
10:02:53.0000 0832  Scan started
10:02:53.0000 0832  Mode: Manual; TDLFS;
10:02:53.0000 0832  ============================================================
10:02:54.0140 0832  ================ Scan system memory ========================
10:02:54.0140 0832  System memory - ok
10:02:54.0156 0832  ================ Scan services =============================
10:02:54.0328 0832  Abiosdsk - ok
10:02:54.0359 0832  abp480n5 - ok
10:02:54.0437 0832  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
10:02:54.0515 0832  ACPI - ok
10:02:54.0562 0832  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
10:02:54.0593 0832  ACPIEC - ok
10:02:54.0671 0832  [ C1EB9968EC89FBA5F3A264E2E57923AB ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
10:02:54.0921 0832  Adobe LM Service - ok
10:02:55.0031 0832  [ 14C23516C990DCD6052152CF034DDE40 ] Adobe Version Cue CS3 C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe
10:02:55.0171 0832  Adobe Version Cue CS3 - ok
10:02:55.0265 0832  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
10:02:55.0421 0832  AdobeFlashPlayerUpdateSvc - ok
10:02:55.0468 0832  adpu160m - ok
10:02:55.0500 0832  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
10:02:55.0562 0832  aec - ok
10:02:55.0609 0832  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
10:02:55.0609 0832  AFD - ok
10:02:55.0625 0832  Aha154x - ok
10:02:55.0640 0832  aic78u2 - ok
10:02:55.0656 0832  aic78xx - ok
10:02:55.0718 0832  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
10:02:55.0734 0832  Alerter - ok
10:02:55.0781 0832  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe
10:02:55.0812 0832  ALG - ok
10:02:55.0843 0832  AliIde - ok
10:02:55.0859 0832  amsint - ok
10:02:55.0937 0832  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:02:56.0015 0832  Apple Mobile Device - ok
10:02:56.0031 0832  AppMgmt - ok
10:02:56.0062 0832  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
10:02:56.0125 0832  Arp1394 - ok
10:02:56.0125 0832  asc - ok
10:02:56.0125 0832  asc3350p - ok
10:02:56.0140 0832  asc3550 - ok
10:02:56.0250 0832  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
10:02:56.0328 0832  aspnet_state - ok
10:02:56.0375 0832  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:02:56.0390 0832  AsyncMac - ok
10:02:56.0437 0832  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
10:02:56.0437 0832  atapi - ok
10:02:56.0437 0832  Atdisk - ok
10:02:56.0500 0832  [ 5784A06FDC2AC7954225A1A79E1A8F00 ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
10:02:56.0781 0832  Ati HotKey Poller - ok
10:02:56.0843 0832  [ DD222CE49E79F15D2312A5E1F42E716E ] ati2mtag        C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
10:02:57.0312 0832  ati2mtag - ok
10:02:57.0375 0832  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
10:02:57.0421 0832  Atmarpc - ok
10:02:57.0468 0832  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
10:02:57.0500 0832  AudioSrv - ok
10:02:57.0531 0832  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
10:02:57.0546 0832  audstub - ok
10:02:57.0609 0832  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:02:57.0625 0832  Beep - ok
10:02:57.0718 0832  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll
10:02:57.0859 0832  BITS - ok
10:02:57.0921 0832  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:02:58.0046 0832  Bonjour Service - ok
10:02:58.0093 0832  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll
10:02:58.0093 0832  Browser - ok
10:02:58.0140 0832  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
10:02:58.0171 0832  cbidf2k - ok
10:02:58.0218 0832  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
10:02:58.0234 0832  CCDECODE - ok
10:02:58.0281 0832  cd20xrnt - ok
10:02:58.0328 0832  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
10:02:58.0359 0832  Cdaudio - ok
10:02:58.0406 0832  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
10:02:58.0453 0832  Cdfs - ok
10:02:58.0562 0832  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
10:02:58.0609 0832  Cdrom - ok
10:02:58.0640 0832  Changer - ok
10:02:58.0718 0832  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe
10:02:58.0750 0832  CiSvc - ok
10:02:58.0781 0832  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
10:02:58.0828 0832  ClipSrv - ok
10:02:58.0906 0832  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:02:59.0031 0832  clr_optimization_v2.0.50727_32 - ok
10:02:59.0093 0832  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:02:59.0218 0832  clr_optimization_v4.0.30319_32 - ok
10:02:59.0250 0832  CmdIde - ok
10:02:59.0265 0832  COMSysApp - ok
10:02:59.0328 0832  Cpqarray - ok
10:02:59.0390 0832  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
10:02:59.0453 0832  CryptSvc - ok
10:02:59.0468 0832  dac2w2k - ok
10:02:59.0500 0832  dac960nt - ok
10:02:59.0562 0832  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:02:59.0578 0832  DcomLaunch - ok
10:02:59.0625 0832  [ C9F9CAFAFBFFAF7E380EFC353CCC940C ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
10:02:59.0734 0832  dg_ssudbus - ok
10:02:59.0765 0832  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
10:02:59.0796 0832  Dhcp - ok
10:02:59.0812 0832  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
10:02:59.0843 0832  Disk - ok
10:02:59.0843 0832  dmadmin - ok
10:02:59.0906 0832  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
10:02:59.0968 0832  dmboot - ok
10:02:59.0984 0832  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
10:03:00.0031 0832  dmio - ok
10:03:00.0062 0832  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
10:03:00.0093 0832  dmload - ok
10:03:00.0125 0832  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll
10:03:00.0140 0832  dmserver - ok
10:03:00.0156 0832  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
10:03:00.0203 0832  DMusic - ok
10:03:00.0234 0832  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:03:00.0234 0832  Dnscache - ok
10:03:00.0281 0832  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:03:00.0343 0832  Dot3svc - ok
10:03:00.0359 0832  dpti2o - ok
10:03:00.0390 0832  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:03:00.0406 0832  drmkaud - ok
10:03:00.0437 0832  [ D57A8FC800B501AC05B10D00F66D127A ] E100B           C:\WINDOWS\system32\DRIVERS\e100b325.sys
10:03:00.0515 0832  E100B - ok
10:03:00.0562 0832  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll
10:03:00.0609 0832  EapHost - ok
10:03:00.0640 0832  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll
10:03:00.0671 0832  ERSvc - ok
10:03:00.0718 0832  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe
10:03:00.0718 0832  Eventlog - ok
10:03:00.0750 0832  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll
10:03:00.0750 0832  EventSystem - ok
10:03:00.0765 0832  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
10:03:00.0812 0832  Fastfat - ok
10:03:00.0859 0832  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
10:03:00.0859 0832  FastUserSwitchingCompatibility - ok
10:03:00.0890 0832  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
10:03:00.0921 0832  Fdc - ok
10:03:00.0937 0832  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
10:03:00.0968 0832  Fips - ok
10:03:00.0984 0832  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
10:03:01.0000 0832  Flpydisk - ok
10:03:01.0031 0832  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:03:01.0078 0832  FltMgr - ok
10:03:01.0156 0832  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
10:03:01.0187 0832  FontCache3.0.0.0 - ok
10:03:01.0203 0832  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:03:01.0234 0832  Fs_Rec - ok
10:03:01.0234 0832  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
10:03:01.0281 0832  Ftdisk - ok
10:03:01.0312 0832  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
10:03:01.0343 0832  GEARAspiWDM - ok
10:03:01.0359 0832  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
10:03:01.0406 0832  Gpc - ok
10:03:01.0421 0832  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
10:03:01.0468 0832  HDAudBus - ok
10:03:01.0531 0832  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
10:03:01.0562 0832  helpsvc - ok
10:03:01.0593 0832  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll
10:03:01.0625 0832  HidServ - ok
10:03:01.0656 0832  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
10:03:01.0687 0832  HidUsb - ok
10:03:01.0718 0832  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
10:03:01.0781 0832  hkmsvc - ok
10:03:01.0781 0832  hpn - ok
10:03:01.0828 0832  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
10:03:01.0828 0832  HTTP - ok
10:03:01.0843 0832  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
10:03:01.0875 0832  HTTPFilter - ok
10:03:01.0875 0832  i2omgmt - ok
10:03:01.0890 0832  i2omp - ok
10:03:01.0921 0832  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
10:03:01.0968 0832  i8042prt - ok
10:03:02.0046 0832  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
10:03:02.0281 0832  idsvc - ok
10:03:02.0328 0832  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
10:03:02.0375 0832  Imapi - ok
10:03:02.0406 0832  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe
10:03:02.0484 0832  ImapiService - ok
10:03:02.0500 0832  ini910u - ok
10:03:02.0765 0832  [ 1265393299A72ADA509F5973040BB93F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
10:03:02.0968 0832  IntcAzAudAddService - ok
10:03:03.0015 0832  IntelIde - ok
10:03:03.0093 0832  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
10:03:03.0156 0832  intelppm - ok
10:03:03.0171 0832  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys
10:03:03.0250 0832  Ip6Fw - ok
10:03:03.0296 0832  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:03:03.0343 0832  IpFilterDriver - ok
10:03:03.0359 0832  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
10:03:03.0375 0832  IpInIp - ok
10:03:03.0421 0832  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
10:03:03.0453 0832  IpNat - ok
10:03:03.0531 0832  [ E46B17060D3962A384AE484094614788 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:03:03.0671 0832  iPod Service - ok
10:03:03.0734 0832  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
10:03:03.0781 0832  IPSec - ok
10:03:03.0796 0832  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
10:03:03.0828 0832  IRENUM - ok
10:03:03.0843 0832  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
10:03:03.0875 0832  isapnp - ok
10:03:03.0984 0832  [ 9AA67569D5257462E230767510B0C815 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
10:03:04.0125 0832  JavaQuickStarterService - ok
10:03:04.0156 0832  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
10:03:04.0203 0832  Kbdclass - ok
10:03:04.0234 0832  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
10:03:04.0265 0832  kbdhid - ok
10:03:04.0281 0832  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
10:03:04.0281 0832  kmixer - ok
10:03:04.0328 0832  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
10:03:04.0328 0832  KSecDD - ok
10:03:04.0359 0832  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
10:03:04.0375 0832  lanmanserver - ok
10:03:04.0406 0832  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
10:03:04.0406 0832  lanmanworkstation - ok
10:03:04.0406 0832  lbrtfdc - ok
10:03:04.0437 0832  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
10:03:04.0468 0832  LmHosts - ok
10:03:04.0500 0832  [ 9872EDB358875D15DF2AEB62DCC6944D ] MarsUsb         C:\WINDOWS\system32\DRIVERS\MarsUsb.sys
10:03:04.0531 0832  MarsUsb - ok
10:03:04.0578 0832  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
10:03:04.0609 0832  Messenger - ok
10:03:04.0703 0832  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
10:03:04.0734 0832  Microsoft Office Groove Audit Service - ok
10:03:04.0781 0832  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
10:03:04.0796 0832  mnmdd - ok
10:03:04.0828 0832  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
10:03:04.0890 0832  mnmsrvc - ok
10:03:04.0921 0832  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
10:03:04.0953 0832  Modem - ok
10:03:04.0968 0832  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
10:03:05.0000 0832  Mouclass - ok
10:03:05.0031 0832  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
10:03:05.0062 0832  mouhid - ok
10:03:05.0093 0832  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
10:03:05.0140 0832  MountMgr - ok
10:03:05.0203 0832  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
10:03:05.0296 0832  MozillaMaintenance - ok
10:03:05.0343 0832  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
10:03:05.0375 0832  MpFilter - ok
10:03:05.0500 0832  MpKsl2d32343e - ok
10:03:05.0500 0832  mraid35x - ok
10:03:05.0500 0832  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
10:03:05.0515 0832  MRxDAV - ok
10:03:05.0546 0832  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:03:05.0546 0832  MRxSmb - ok
10:03:05.0593 0832  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
10:03:05.0609 0832  MSDTC - ok
10:03:05.0625 0832  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:03:05.0718 0832  Msfs - ok
10:03:05.0718 0832  MSIServer - ok
10:03:05.0750 0832  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:03:05.0765 0832  MSKSSRV - ok
10:03:05.0828 0832  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
10:03:05.0875 0832  MsMpSvc - ok
10:03:05.0890 0832  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:03:05.0906 0832  MSPCLOCK - ok
10:03:05.0906 0832  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:03:05.0937 0832  MSPQM - ok
10:03:05.0968 0832  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
10:03:05.0984 0832  mssmbios - ok
10:03:06.0015 0832  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
10:03:06.0046 0832  MSTEE - ok
10:03:06.0078 0832  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
10:03:06.0078 0832  Mup - ok
10:03:06.0093 0832  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
10:03:06.0140 0832  NABTSFEC - ok
10:03:06.0171 0832  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll
10:03:06.0265 0832  napagent - ok
10:03:06.0343 0832  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
10:03:06.0390 0832  NDIS - ok
10:03:06.0453 0832  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
10:03:06.0484 0832  NdisIP - ok
10:03:06.0562 0832  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:03:06.0562 0832  NdisTapi - ok
10:03:06.0593 0832  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:03:06.0625 0832  Ndisuio - ok
10:03:06.0671 0832  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:03:06.0734 0832  NdisWan - ok
10:03:06.0796 0832  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:03:06.0796 0832  NDProxy - ok
10:03:06.0937 0832  [ 40D7D0A208EE863BCA8D89E299216F15 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
10:03:07.0109 0832  Nero BackItUp Scheduler 3 - ok
10:03:07.0140 0832  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:03:07.0171 0832  NetBIOS - ok
10:03:07.0187 0832  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:03:07.0250 0832  NetBT - ok
10:03:07.0281 0832  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe
10:03:07.0359 0832  NetDDE - ok
10:03:07.0359 0832  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
10:03:07.0375 0832  NetDDEdsdm - ok
10:03:07.0406 0832  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:03:07.0406 0832  Netlogon - ok
10:03:07.0453 0832  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll
10:03:07.0515 0832  Netman - ok
10:03:07.0625 0832  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
10:03:07.0703 0832  NetTcpPortSharing - ok
10:03:07.0718 0832  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
10:03:07.0765 0832  NIC1394 - ok
10:03:07.0812 0832  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll
10:03:07.0812 0832  Nla - ok
10:03:07.0890 0832  [ EBA1B4BF2E2375ABDADEDB649F283541 ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
10:03:08.0062 0832  NMIndexingService - ok
10:03:08.0093 0832  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:03:08.0125 0832  Npfs - ok
10:03:08.0140 0832  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:03:08.0203 0832  Ntfs - ok
10:03:08.0218 0832  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
10:03:08.0218 0832  NtLmSsp - ok
10:03:08.0265 0832  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
10:03:08.0312 0832  NtmsSvc - ok
10:03:08.0328 0832  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:03:08.0359 0832  Null - ok
10:03:08.0390 0832  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
10:03:08.0421 0832  NwlnkFlt - ok
10:03:08.0421 0832  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
10:03:08.0468 0832  NwlnkFwd - ok
10:03:08.0562 0832  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:03:08.0687 0832  odserv - ok
10:03:08.0718 0832  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
10:03:08.0765 0832  ohci1394 - ok
10:03:08.0796 0832  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:03:08.0875 0832  ose - ok
10:03:08.0890 0832  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
10:03:08.0953 0832  Parport - ok
10:03:08.0953 0832  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
10:03:08.0984 0832  PartMgr - ok
10:03:09.0015 0832  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
10:03:09.0031 0832  ParVdm - ok
10:03:09.0062 0832  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
10:03:09.0109 0832  PCI - ok
10:03:09.0109 0832  PCIDump - ok
10:03:09.0140 0832  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
10:03:09.0156 0832  PCIIde - ok
10:03:09.0171 0832  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
10:03:09.0203 0832  Pcmcia - ok
10:03:09.0203 0832  PDCOMP - ok
10:03:09.0218 0832  PDFRAME - ok
10:03:09.0218 0832  PDRELI - ok
10:03:09.0218 0832  PDRFRAME - ok
10:03:09.0218 0832  perc2 - ok
10:03:09.0234 0832  perc2hib - ok
10:03:09.0265 0832  [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\WINDOWS\system32\IoctlSvc.exe
10:03:09.0328 0832  PLFlash DeviceIoControl Service - ok
10:03:09.0343 0832  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe
10:03:09.0359 0832  PlugPlay - ok
10:03:09.0359 0832  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
10:03:09.0359 0832  PolicyAgent - ok
10:03:09.0390 0832  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:03:09.0437 0832  PptpMiniport - ok
10:03:09.0437 0832  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
10:03:09.0437 0832  ProtectedStorage - ok
10:03:09.0453 0832  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
10:03:09.0500 0832  PSched - ok
10:03:09.0531 0832  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
10:03:09.0562 0832  Ptilink - ok
10:03:09.0562 0832  ql1080 - ok
10:03:09.0562 0832  Ql10wnt - ok
10:03:09.0578 0832  ql12160 - ok
10:03:09.0578 0832  ql1240 - ok
10:03:09.0578 0832  ql1280 - ok
10:03:09.0593 0832  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:03:09.0593 0832  RasAcd - ok
10:03:09.0625 0832  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:03:09.0656 0832  RasAuto - ok
10:03:09.0671 0832  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:03:09.0718 0832  Rasl2tp - ok
10:03:09.0750 0832  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:03:09.0812 0832  RasMan - ok
10:03:09.0828 0832  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:03:09.0890 0832  RasPppoe - ok
10:03:09.0890 0832  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
10:03:09.0906 0832  Raspti - ok
10:03:09.0921 0832  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:03:09.0937 0832  Rdbss - ok
10:03:09.0953 0832  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
10:03:09.0968 0832  RDPCDD - ok
10:03:10.0015 0832  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
10:03:10.0015 0832  RDPWD - ok
10:03:10.0062 0832  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
10:03:10.0125 0832  RDSessMgr - ok
10:03:10.0156 0832  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
10:03:10.0203 0832  redbook - ok
10:03:10.0234 0832  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:03:10.0281 0832  RemoteAccess - ok
10:03:10.0328 0832  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:03:10.0375 0832  RpcLocator - ok
10:03:10.0406 0832  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:03:10.0406 0832  RpcSs - ok
10:03:10.0437 0832  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
10:03:10.0546 0832  RSVP - ok
10:03:10.0562 0832  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe
10:03:10.0562 0832  SamSs - ok
10:03:10.0593 0832  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
10:03:10.0640 0832  SCardSvr - ok
10:03:10.0687 0832  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:03:10.0750 0832  Schedule - ok
10:03:10.0765 0832  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
10:03:10.0796 0832  Secdrv - ok
10:03:10.0843 0832  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll
10:03:10.0859 0832  seclogon - ok
10:03:10.0890 0832  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll
10:03:10.0921 0832  SENS - ok
10:03:10.0937 0832  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
10:03:10.0968 0832  serenum - ok
10:03:10.0968 0832  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
10:03:11.0046 0832  Serial - ok
10:03:11.0062 0832  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
10:03:11.0093 0832  Sfloppy - ok
10:03:11.0125 0832  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:03:11.0203 0832  SharedAccess - ok
10:03:11.0234 0832  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:03:11.0234 0832  ShellHWDetection - ok
10:03:11.0234 0832  Simbad - ok
10:03:11.0265 0832  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
10:03:11.0500 0832  SkypeUpdate - ok
10:03:11.0515 0832  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
10:03:11.0546 0832  SLIP - ok
10:03:11.0578 0832  [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1        C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
10:03:11.0593 0832  SONYPVU1 - ok
10:03:11.0609 0832  Sparrow - ok
10:03:11.0640 0832  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
10:03:11.0656 0832  splitter - ok
10:03:11.0703 0832  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe
10:03:11.0703 0832  Spooler - ok
10:03:11.0765 0832  [ 68103A2B441BBF3908EBB587F0704D6C ] sptd            C:\WINDOWS\System32\Drivers\sptd.sys
10:03:12.0515 0832  sptd - ok
10:03:12.0578 0832  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
10:03:12.0640 0832  sr - ok
10:03:12.0687 0832  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll
10:03:12.0718 0832  srservice - ok
10:03:12.0750 0832  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:03:12.0750 0832  Srv - ok
10:03:12.0828 0832  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:03:12.0875 0832  SSDPSRV - ok
10:03:12.0984 0832  [ 91970CC4A3A30A01C1573184A62F5143 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
10:03:13.0062 0832  ssudmdm - ok
10:03:13.0093 0832  [ F88E4D5B0FA6F3A8FED93FB5C82D560A ] ssudobex        C:\WINDOWS\system32\DRIVERS\ssudobex.sys
10:03:13.0171 0832  ssudobex - ok
10:03:13.0218 0832  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
10:03:13.0296 0832  stisvc - ok
10:03:13.0375 0832  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
10:03:13.0406 0832  streamip - ok
10:03:13.0437 0832  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
10:03:13.0453 0832  swenum - ok
10:03:13.0468 0832  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
10:03:13.0515 0832  swmidi - ok
10:03:13.0515 0832  SwPrv - ok
10:03:13.0531 0832  symc810 - ok
10:03:13.0531 0832  symc8xx - ok
10:03:13.0531 0832  sym_hi - ok
10:03:13.0531 0832  sym_u3 - ok
10:03:13.0546 0832  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
10:03:13.0593 0832  sysaudio - ok
10:03:13.0625 0832  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
10:03:13.0703 0832  SysmonLog - ok
10:03:13.0750 0832  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:03:13.0796 0832  TapiSrv - ok
10:03:13.0828 0832  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:03:13.0843 0832  Tcpip - ok
10:03:13.0875 0832  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
10:03:13.0890 0832  TDPIPE - ok
10:03:13.0937 0832  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
10:03:13.0953 0832  TDTCP - ok
10:03:14.0000 0832  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
10:03:14.0031 0832  TermDD - ok
10:03:14.0125 0832  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll
10:03:14.0187 0832  TermService - ok
10:03:14.0203 0832  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll
10:03:14.0203 0832  Themes - ok
10:03:14.0250 0832  TosIde - ok
10:03:14.0343 0832  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll
10:03:14.0375 0832  TrkWks - ok
10:03:14.0406 0832  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
10:03:14.0453 0832  Udfs - ok
10:03:14.0453 0832  ultra - ok
10:03:14.0500 0832  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
10:03:14.0546 0832  Update - ok
10:03:14.0578 0832  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:03:14.0656 0832  upnphost - ok
10:03:14.0703 0832  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe
10:03:14.0781 0832  UPS - ok
10:03:14.0828 0832  [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys
10:03:14.0875 0832  USBAAPL - ok
10:03:14.0906 0832  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
10:03:14.0937 0832  usbccgp - ok
10:03:14.0953 0832  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
10:03:14.0984 0832  usbehci - ok
10:03:15.0015 0832  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
10:03:15.0078 0832  usbhub - ok
10:03:15.0109 0832  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys
10:03:15.0140 0832  usbprint - ok
10:03:15.0171 0832  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
10:03:15.0187 0832  usbscan - ok
10:03:15.0250 0832  [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
10:03:15.0281 0832  usbstor - ok
10:03:15.0328 0832  [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
10:03:15.0359 0832  usbuhci - ok
10:03:15.0375 0832  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
10:03:15.0390 0832  VgaSave - ok
10:03:15.0390 0832  ViaIde - ok
10:03:15.0406 0832  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
10:03:15.0453 0832  VolSnap - ok
10:03:15.0500 0832  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe
10:03:15.0578 0832  VSS - ok
10:03:15.0609 0832  [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time         C:\WINDOWS\system32\w32time.dll
10:03:15.0640 0832  W32Time - ok
10:03:15.0671 0832  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:03:15.0718 0832  Wanarp - ok
10:03:15.0765 0832  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
10:03:15.0812 0832  Wdf01000 - ok
10:03:15.0843 0832  WDICA - ok
10:03:15.0875 0832  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
10:03:15.0937 0832  wdmaud - ok
10:03:16.0015 0832  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:03:16.0046 0832  WebClient - ok
10:03:16.0109 0832  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:03:16.0203 0832  winmgmt - ok
10:03:16.0234 0832  [ FD600B032E741EB6AAB509FC630F7C42 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
10:03:16.0281 0832  WinUSB - ok
10:03:16.0312 0832  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
10:03:16.0343 0832  WmdmPmSN - ok
10:03:16.0375 0832  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
10:03:16.0468 0832  WmiApSrv - ok
10:03:16.0562 0832  [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
10:03:17.0234 0832  WMPNetworkSvc - ok
10:03:17.0328 0832  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
10:03:17.0406 0832  WPFFontCache_v0400 - ok
10:03:17.0468 0832  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
10:03:17.0562 0832  wscsvc - ok
10:03:17.0593 0832  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
10:03:17.0625 0832  WSTCODEC - ok
10:03:17.0656 0832  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
10:03:17.0671 0832  wuauserv - ok
10:03:17.0734 0832  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
10:03:17.0796 0832  WudfPf - ok
10:03:17.0843 0832  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
10:03:17.0921 0832  WudfRd - ok
10:03:17.0937 0832  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
10:03:18.0000 0832  WudfSvc - ok
10:03:18.0046 0832  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
10:03:18.0125 0832  WZCSVC - ok
10:03:18.0171 0832  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
10:03:18.0281 0832  xmlprov - ok
10:03:18.0359 0832  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
10:03:19.0062 0832  YahooAUService - ok
10:03:19.0125 0832  [ 71BC1F2DC470EA7CA0372DB917E14F67 ] ZSMC302         C:\WINDOWS\system32\Drivers\usbVM31b.sys
10:03:19.0171 0832  ZSMC302 - ok
10:03:19.0218 0832  ================ Scan global ===============================
10:03:19.0250 0832  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
10:03:19.0328 0832  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:03:19.0343 0832  [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
10:03:19.0375 0832  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
10:03:19.0375 0832  [Global] - ok
10:03:19.0375 0832  ================ Scan MBR ==================================
10:03:19.0406 0832  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
10:03:19.0671 0832  \Device\Harddisk0\DR0 - ok
10:03:19.0671 0832  ================ Scan VBR ==================================
10:03:19.0718 0832  [ 2AAE18F80CD8500D9B0C8492BE04368F ] \Device\Harddisk0\DR0\Partition1
10:03:19.0718 0832  \Device\Harddisk0\DR0\Partition1 - ok
10:03:19.0750 0832  [ 6098FD3174149F9172FC18BC96B3FA36 ] \Device\Harddisk0\DR0\Partition2
10:03:19.0750 0832  \Device\Harddisk0\DR0\Partition2 - ok
10:03:19.0750 0832  ============================================================
10:03:19.0750 0832  Scan finished
10:03:19.0750 0832  ============================================================
10:03:19.0812 3900  Detected object count: 0
10:03:19.0812 3900  Actual detected object count: 0
 

AdwCleaner LOG:

 

# AdwCleaner v2.200 - Logfile created 04/04/2013 at 10:07:52
# Updated 02/04/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Patty - LENOVO-C3EBD5E3
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Patty.LENOVO-C3EBD5E3\My Documents\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****


***** [Registry] *****


***** [Internet Browsers] *****

-\\ Internet Explorer v7.0.6000.17123

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (en-US)

-\\ Google Chrome v26.0.1410.43

*************************

AdwCleaner[S2].txt - [642 octets] - [04/04/2013 10:07:52]

########## EOF - C:\AdwCleaner[S2].txt - [701 octets] ##########
 

ESET found no infections.

 

MiniToolBox LOG:

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Patty (administrator) on 04-04-2013 at 15:57:44
Running from "C:\Documents and Settings\Patty.LENOVO-C3EBD5E3\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1       localhost

========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Connected)
Intel® PRO/100 VM Network Connection = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : lenovo-c3ebd5e3

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : localdomain



Ethernet adapter Local Area Connection:



        Connection-specific DNS Suffix  . : localdomain

        Description . . . . . . . . . . . : Intel® PRO/100 VM Network Connection

        Physical Address. . . . . . . . . : 00-01-6C-8B-EA-7F

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.11.3

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.11.1

        DHCP Server . . . . . . . . . . . : 192.168.11.1

        DNS Servers . . . . . . . . . . . : 192.168.11.1

        Lease Obtained. . . . . . . . . . : Thursday, April 04, 2013 10:09:51 AM

        Lease Expires . . . . . . . . . . : Saturday, April 06, 2013 10:09:51 AM

Server:  UnKnown
Address:  192.168.11.1

DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Addresses:  122.2.128.226, 122.2.128.227, 122.2.128.231, 122.2.128.232
      122.2.128.236, 122.2.128.237, 122.2.128.241, 122.2.128.242, 122.2.128.246
      122.2.128.247, 122.2.128.251, 122.2.128.212, 122.2.128.216, 122.2.128.217
      122.2.128.221, 122.2.128.222



Pinging google.com [122.2.128.241] with 32 bytes of data:



Reply from 122.2.128.241: bytes=32 time=552ms TTL=61

Reply from 122.2.128.241: bytes=32 time=366ms TTL=61



Ping statistics for 122.2.128.241:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 366ms, Maximum = 552ms, Average = 459ms

Server:  UnKnown
Address:  192.168.11.1

DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.138.253.109, 98.139.183.24, 206.190.36.45



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=658ms TTL=46

Reply from 98.138.253.109: bytes=32 time=608ms TTL=46



Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 608ms, Maximum = 658ms, Average = 633ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 01 6c 8b ea 7f ...... Intel® PRO/100 VM Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.11.1    192.168.11.3      20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0     192.168.11.3    192.168.11.3      20
     192.168.11.0    255.255.255.0     192.168.11.3    192.168.11.3      20
     192.168.11.3  255.255.255.255        127.0.0.1       127.0.0.1      20
   192.168.11.255  255.255.255.255     192.168.11.3    192.168.11.3      20
        224.0.0.0        240.0.0.0     192.168.11.3    192.168.11.3      20
  255.255.255.255  255.255.255.255     192.168.11.3    192.168.11.3      1
Default Gateway:      192.168.11.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/04/2013 10:14:12 AM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(f4:1b:a1:6f:96:dd@fe80::f61b:a1ff:fe6f:96dd._apple-mobdev._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 21

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 20

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 19

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 18

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 17

Error: (04/04/2013 10:11:55 AM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 16


System errors:
=============
Error: (04/04/2013 08:53:08 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.11.2 for the Network Card with network address 00016C8BEA7F has been
denied by the DHCP server 192.168.11.1 (The DHCP Server sent a DHCPNACK message).

Error: (04/04/2013 05:46:49 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.11.2 for the Network Card with network address 00016C8BEA7F has been
denied by the DHCP server 192.168.11.1 (The DHCP Server sent a DHCPNACK message).

Error: (04/03/2013 10:05:09 AM) (Source: 0) (User: )
Description: 192.168.11.2F4:1B:A1:6F:96:DD

Error: (04/03/2013 10:05:09 AM) (Source: 0) (User: )
Description: 192.168.11.2F4:1B:A1:6F:96:DD

Error: (04/03/2013 10:05:09 AM) (Source: 0) (User: )
Description: 192.168.11.2F4:1B:A1:6F:96:DD

Error: (04/03/2013 08:05:24 AM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.11.3 for the Network Card with network address 00016C8BEA7F has been
denied by the DHCP server 192.168.11.1 (The DHCP Server sent a DHCPNACK message).

Error: (04/02/2013 05:34:18 PM) (Source: 0) (User: )
Description: \Device\Harddisk1\D

Error: (04/02/2013 05:30:47 PM) (Source: 0) (User: )
Description: \Device\Harddisk1\D

Error: (04/02/2013 05:26:10 PM) (Source: 0) (User: )
Description: \Device\Harddisk1\D

Error: (04/02/2013 05:23:49 PM) (Source: 0) (User: )
Description: \Device\Harddisk1\D


Microsoft Office Sessions:
=========================
Error: (06/24/2012 11:35:10 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 612 seconds with 600 seconds of active time.  This session ended with a crash.

Error: (06/15/2011 10:42:51 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 715 seconds with 360 seconds of active time.  This session ended with a crash.

Error: (08/24/2010 05:48:42 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6541.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 964 seconds with 840 seconds of active time.  This session ended with a crash.

Error: (05/19/2010 10:12:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6367 seconds with 1680 seconds of active time.  This session ended with a crash.

Error: (03/08/2010 09:15:46 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6500.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 34 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (09/13/2009 07:52:21 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 6 seconds with 0 seconds of active time.  This session ended with a crash.

Error: (09/13/2009 07:52:08 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 2 seconds with 0 seconds of active time.  This session ended with a crash.


=========================== Installed Programs ============================

Acrobat.com (Version: 0.0.0)
Add or Remove Adobe Creative Suite 3 Design Premium (Version: 1.0)
Adobe AIR (Version: 2.6.0.19140)
Adobe Asset Services CS3 (Version: 3)
Adobe Audition 3.0 (Version: 3.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Digital Editions 2.0 (Version: 2.0)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader X (10.1.6) (Version: 10.1.6)
Adobe Setup (Version: 1.0)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Server (Version: 3.0)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1022)
ATI Display Driver (Version: 8.25-060404a1-034503C)
BitTorrent (Version: 7.7.0)
Bonjour (Version: 3.0.0.10)
Canon MP Navigator 3.0
Canon MP160
CCleaner (Version: 3.28)
Critical Update for Windows Media Player 11 (KB959772)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Google Chrome (Version: 26.0.1410.43)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
HP Image Zone Express (Version: 1.5.1.29)
Intel® PRO Network Connections Software v10.1.41.0
Intel® PROSafe for Wired Connections (Version: 8.00.0005)
Intel® PROSafe for Wired Connections (Version: 99.99.9999)
InterVideo FilterSDK for 10moons
iTunes (Version: 11.0.2.26)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
Lenovo Dingol (Version: 1.00.010)
Lenovo Q350
LENOVO TianJiao OKS Software (Version: 1.32.005)
Magic ISO Maker v5.4 (build 0239)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project 2007 Service Pack 3 (SP3)
Microsoft Office Project MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Software Update for Web Folders  (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ Run Time  Lib Setup (Version: 1.0.0)
Microsoft WinUsb 1.0
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 8 HD (Version: 8.3.173)
neroxml (Version: 1.0.0)
NVIDIA Drivers
QuickTime (Version: 7.70.80.34)
Realtek High Definition Audio Driver (Version: 1.92)
SAMSUNG USB Driver for Mobile Phones (Version: 1.4.2.2)
SilvestriRN5e
Skype™ 5.10 (Version: 5.10.116)
swMSM (Version: 12.0.0.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768024) 32-Bit Edition
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VCRedistSetup (Version: 1.0.0)
VLC media player 2.0.5 (Version: 2.0.5)
WebFldrs XP (Version: 9.50.7523)
Windows Media Format 11 runtime
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
Yahoo! Install Manager
Yahoo! Messenger
Yahoo! Search Protection
Yahoo! Software Update

========================= Memory info: ===================================

Percentage of memory in use: 65%
Total physical RAM: 511.36 MB
Available physical RAM: 174.28 MB
Total Pagefile: 1248.44 MB
Available Pagefile: 860.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1973.92 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:114.23 GB) (Free:23.99 GB) NTFS
2 Drive d: () (Fixed) (Total:114.23 GB) (Free:110.77 GB) NTFS

========================= Users: ========================================

User accounts for \\LENOVO-C3EBD5E3

Administrator            ASPNET                   ferdie                   
Guest                    HelpAssistant            Patty                    
SUPPORT_388945a0         


**** End of log ****
 

There :)


Edited by MATTtothefuture, 04 April 2013 - 03:02 AM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 04 April 2013 - 08:02 PM

Hello, figures I get to answer right away and then all heck breaks loose and I cannot get back till now.
Any way was that the complete ADWcleaner log ,as it was really short.
 

 
The machine looks pretty clean.. What browser are you using?
 
In FireFox it may be the Add ons/Plugins. try disabling them one at a time and see which one was at fault.
How to disable extensions and plugins
Keeping your third-party plugins up to date


In Chrome it may be the Add ons/Plugins. try disabling them one at a time and see which one was at fault.
OR  Disable All Extensions ,see if that worked,then you need to go back to one by one to see which was the culprit.


Edited by boopme, 04 April 2013 - 08:16 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 04 April 2013 - 08:20 PM

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.


Please follow these steps to remove older version Java components and update:

  •  
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  •  
  • Look for "Java Platform, Standard Edition".
  •  
  • Click the "Download JRE" button to the right.
  •  
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  •  
  • From the list, select your OS and Platform (32-bit or 64-bit). 64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  •  
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  •  
  • Close any programs you may have running - especially your web browser.
  •  
  • Go to StartBtn.gif > Control Panel, double-click on or Programs and Features in Vista/Windows 7/8 and remove [b]all[/b] older versions of Java.
  •  
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  •  
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  •  
  • Repeat as many times as necessary to remove each Java version.
  •  
  • Reboot your computer once all Java components are removed.
  •  
  •  Then from your desktop double-click on jre-6u43-windows-i586.exe (or jre-6u43-windows-x64.exe for 64-bit) to install the newest version
  •  
  • If using Windows 7/8 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  •  
  • When the Java Setup - Welcome window opens, click the Install > button.
  •  
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  •  
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java. -- Java is updated frequently. If you want to be automatically notified of future updates, just turn on the Java Automatic Update feature and you will not have to remember to update when Java releases a new version. Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary. To disable the JQS service if you don't want to use it:
  •  
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  •  
  • Click Ok and reboot your computer.

 

 

Also update to Adobe Reader XI ... NOTE Un check this box

 

Yes, install Chrome as my default browser and Google Toolbar for Internet Explorer – optional. (32.11 MB) Install Options

 

 


Edited by boopme, 04 April 2013 - 08:39 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 MATTtothefuture

MATTtothefuture
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 04 April 2013 - 09:12 PM

Bam! And just like that, updating Java did the trick!

 

THANK YOU SO MUCH, BOOPME! ^_^


Edited by MATTtothefuture, 04 April 2013 - 09:12 PM.


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 04 April 2013 - 10:09 PM

Wooo Hooo :bananas:

 

You're welcome.. I'll post back with some mop up steps as soon as I can fix my coding errors.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Samohme

Samohme

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:03:50 PM

Posted 05 April 2013 - 11:16 AM

hey i also have same problem but i'm using google chrome. what to do? and there is also always an added extensions by a third party evrytime i open the browser. help pls



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 05 April 2013 - 09:41 PM

If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Start > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Start > Run and type: Cleanmgr
  • Click "Ok".
  • Click the "More Options" Tab.
  • Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.
Vista Users can refer to these links: Create a New Restore Point and Disk Cleanup.

To protect yourself against malware and reduce the potential for re-infection, be sure to read:
"Simple and easy ways to keep your computer safe".
"How did I get infected?, With steps so it does not happen again!".
"Best Practices - Internet Safety for 2008".
"Hardening Windows Security - Part 1 & Part 2".
"IE Recommended Minimal Security Settings".
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 MATTtothefuture

MATTtothefuture
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 05 April 2013 - 10:06 PM

Oh dear, the site is back. :(



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 05 April 2013 - 10:32 PM

Rats!!

There must be a protected malware. We need a deeper look to use some other tools. You have to start a new topic with a DDS log from this guide.
Title it Can't kill a hijacker.

Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.


Include this link back to here...

 

http://www.bleepingcomputer.com/forums/t/490720/cant-get-rid-of-a-site-hijacking-my-homepage/#ipboard_body
 

 


@Samohme you may as well post a new topic also as we will probably wind up in the same place.
 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 MATTtothefuture

MATTtothefuture
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 06 April 2013 - 06:08 AM

Thanks, boopme! Although, the Microsoft Backup for XP when clicked only leads me to this page: "We are sorry, the page you requested cannot be found." Shall I go though with running DDS anyhow? :)



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 06 April 2013 - 08:43 PM

Yes, move on to DDS .. I'll check those links, but you can wait on that until the new topic is complete.


Edited by boopme, 06 April 2013 - 09:18 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 MATTtothefuture

MATTtothefuture
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Philippines
  • Local time:03:50 PM

Posted 06 April 2013 - 08:47 PM

Thanks! :)



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,566 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:50 AM

Posted 06 April 2013 - 09:20 PM

You're very welcome, Glad to have helped.

You're new topic link... http://www.bleepingcomputer.com/forums/u/828816/matttothefuture/

 

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 2 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

 

To avoid confusion, I am closing this topic.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users