Osteward
-
Posts
56 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by Osteward
-
-
Thank you for clearing that up. However, it is possible for someone to not be breathing but still have a pulse, which would lead to rescue breathing only.
My CPR/AED training was before the new hands only method, so cannot wait until it's time to renew.
I'm a Registered Nurse and there has been some heated discussion over the new method. Some people just don't like change.
-
Actually, the new CPR is no breaths. Studies show that compressions alone force enough air into the lungs. I think the child was choking, the one woman looked to be doing thrusts.
-
Saw this on facebook and brought a tear to my eye. It is very touching.
http://www.youtube.com/watch?v=Mo1bcEBwEzw
-
I hope he doesn't grow out of it. But, we all know about the "Mom, stop! You are embarrassing me" stage.
-
Nevermind, I found it...
-
Do you know where you found that image @Ronnie M
-
We surf fish off the coast of NC, however we just got back from a trip to Cadillac Michigan and got to try some fresh water lake fishing. That was a blast.
Sushi anyone?
-
Here's another
-
Not a problem that you "busted" into my thread!
Sorry to hear about your fishing partner and your wife. I was finally able to get my oldest son addicted to fishing, so I don't have to go alone anymore. I wonder how long that will last.
-
I made this background from scratch using photoshop and never had any use for it, but decided to use it here. I'll def. make a more "manly" one later but felt inspired.
-
awesome thanks for the link!
-
Thanks everyone for the warm welcome.
A huge thank you to Maniac as my laptop is up and running perfectly now, and here sony wanted to charge me 80 to do a factory restore.
I will def. be sending him a donation and buying the program.
Like I said before, I do graphic's design if anyone would like a signature done or skin for anything please let me know. (free of charge of course)
-
all done! Thanks again so much. I will most def. be sending a donation your way.
-
Update: Laptop has been on for almost 30 minutes since last scan and running the fix. No ad's have played, no weird stuff going on.
Still waiting for you to advise me on what to do next before I give it back to the kiddo.
-
oh and system log
---------------------------------------Malwarebytes Anti-Rootkit BETA 1.06.1.1005© Malwarebytes Corporation 2011-2012OS version: 6.1.7601 Windows 7 Service Pack 1 x64Account is AdministrativeInternet Explorer version: 10.0.9200.16635File system is: NTFSDisk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXEDCPU speed: 2.494000 GHzMemory total: 6340063232, free: 2354208768Downloaded database version: v2013.08.08.01Downloaded database version: v2013.08.08.02Downloaded database version: v2013.08.08.03Downloaded database version: v2013.08.08.04Downloaded database version: v2013.08.08.05Downloaded database version: v2013.08.08.06Downloaded database version: v2013.08.08.07Downloaded database version: v2013.08.09.01Downloaded database version: v2013.08.09.02Downloaded database version: v2013.08.09.03Downloaded database version: v2013.08.09.04Initializing...------------ Kernel report ------------08/09/2013 10:21:59------------ Loaded modules -----------\SystemRoot\system32\ntoskrnl.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\mcupdate_GenuineIntel.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\system32\drivers\ACPI.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\vdrvroot.sys\SystemRoot\system32\drivers\iusb3hcs.sys\SystemRoot\system32\DRIVERS\kl1.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\compbatt.sys\SystemRoot\system32\drivers\BATTC.SYS\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\iaStor.sys\SystemRoot\system32\drivers\amdxata.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\System32\Drivers\msrpc.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\System32\Drivers\cng.sys\SystemRoot\System32\drivers\pcw.sys\SystemRoot\System32\Drivers\Fs_Rec.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\Drivers\ksecpkg.sys\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\system32\drivers\wd.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\drivers\rdyboost.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\hwpolicy.sys\SystemRoot\System32\DRIVERS\fvevol.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\DRIVERS\cdrom.sys\SystemRoot\system32\DRIVERS\klif.sys\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\system32\drivers\rdprefmp.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\kl2.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\ws2ifsl.sys\SystemRoot\system32\DRIVERS\wfplwf.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\vwififlt.sys\SystemRoot\system32\DRIVERS\klim6.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\drivers\termdd.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\system32\drivers\mssmbios.sys\SystemRoot\System32\drivers\discache.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\drivers\blbdrive.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\igdkmd64.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\dxgmms1.sys\SystemRoot\system32\drivers\iusb3xhc.sys\SystemRoot\system32\drivers\USBD.SYS\SystemRoot\system32\drivers\HECIx64.sys\SystemRoot\system32\drivers\usbehci.sys\SystemRoot\system32\drivers\USBPORT.SYS\SystemRoot\system32\drivers\HDAudBus.sys\SystemRoot\system32\DRIVERS\athrx.sys\SystemRoot\system32\DRIVERS\vwifibus.sys\SystemRoot\system32\DRIVERS\RtsPStor.sys\SystemRoot\system32\DRIVERS\Rt64win7.sys\SystemRoot\system32\drivers\SFEP.sys\SystemRoot\system32\drivers\i8042prt.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\drivers\SynTP.sys\SystemRoot\system32\DRIVERS\klmouflt.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\drivers\CmBatt.sys\SystemRoot\system32\drivers\intelppm.sys\SystemRoot\system32\drivers\CompositeBus.sys\SystemRoot\system32\DRIVERS\AgileVpn.sys\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\drivers\swenum.sys\SystemRoot\system32\drivers\ks.sys\SystemRoot\system32\drivers\btath_bus.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\drivers\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\iusb3hub.sys\SystemRoot\system32\drivers\RTKVHD64.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\system32\drivers\ksthunk.sys\SystemRoot\system32\DRIVERS\IntcDAud.sys\SystemRoot\system32\DRIVERS\btfilter.sys\SystemRoot\System32\Drivers\BTHUSB.sys\SystemRoot\System32\Drivers\bthport.sys\SystemRoot\system32\DRIVERS\usbccgp.sys\SystemRoot\System32\Drivers\usbvideo.sys\SystemRoot\system32\DRIVERS\ArcSoftKsUFilter.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_iaStor.sys\SystemRoot\System32\Drivers\dump_dumpfve.sys\SystemRoot\system32\DRIVERS\rfcomm.sys\SystemRoot\system32\drivers\BthEnum.sys\SystemRoot\system32\DRIVERS\bthpan.sys\SystemRoot\system32\drivers\btath_avdt.sys\SystemRoot\system32\drivers\btath_vdp.sys\SystemRoot\system32\drivers\btath_rcp.sys\SystemRoot\system32\drivers\HIDCLASS.SYS\SystemRoot\system32\drivers\HIDPARSE.SYS\SystemRoot\system32\drivers\btath_a2dp.sys\SystemRoot\system32\drivers\btath_hcrp.sys\SystemRoot\system32\DRIVERS\btath_flt.sys\SystemRoot\system32\DRIVERS\btath_lwflt.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\system32\drivers\luafv.sys\??\C:\Windows\system32\drivers\mbam.sys\SystemRoot\system32\DRIVERS\Sftvollh.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\system32\DRIVERS\Sftfslh.sys\SystemRoot\system32\DRIVERS\Sftplaylh.sys\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\system32\DRIVERS\Sftredirlh.sys\SystemRoot\System32\DRIVERS\srv.sys\??\C:\Windows\system32\drivers\semav6thermal64ro.sys\SystemRoot\System32\cdd.dll\??\C:\Windows\system32\drivers\mbamchameleon.sys\??\C:\Windows\system32\drivers\mbamswissarmy.sys\Windows\System32\ntdll.dll\Windows\System32\smss.exe\Windows\System32\apisetschema.dll----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xfffffa8008af9060Upper Device Driver Name: \Driver\Disk\Lower Device Name: \Device\Ide\IAAStorageDevice-1\Lower Device Object: 0xfffffa8006601050Lower Device Driver Name: \00000465\IRP handler 0 of \Driver\iaStor points to an unknown moduleUnhooking enabled.<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xfffffa8008af9060Upper Device Driver Name: \Driver\Disk\Lower Device Name: \Device\Ide\IAAStorageDevice-1\Lower Device Object: 0xfffffa8006601050Lower Device Driver Name: \00000465\Driver name found: iaStorInitialization returned 0x0Load Function returned 0x0<<<2>>>Device number: 0, partition: 3Physical Sector Size: 512Drive: 0, DevicePointer: 0xfffffa8008af9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\--------- Disk Stack ------DevicePointer: 0xfffffa8008af9b90, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xfffffa8008af9060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\DevicePointer: 0xfffffa8006601050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \00000465\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\Upper DeviceData: 0xfffff8a00318d590, 0xfffffa8008af9060, 0xfffffa8008af7090Lower DeviceData: 0xfffff8a004fd2dd0, 0xfffffa8006601050, 0xfffffa800e147940<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\Windows\system32\drivers...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...MBR buffers are not equalMBR is forged! [0c09dbfb6e001608950df0db533ee0d1]Inspecting partition table:MBR Signature: 55AADisk Signature: CAD94FFPartition information:Partition 0 type is Other (0x27)Partition is NOT ACTIVE.Partition starts at LBA: 2048 Numsec = 38789120Partition 1 type is Primary (0x7)Partition is ACTIVE.Partition starts at LBA: 38791168 Numsec = 716800Partition file system is NTFSPartition is bootablePartition 2 type is Primary (0x7)Partition is NOT ACTIVE.Partition starts at LBA: 39507968 Numsec = 1425639152Partition 3 type is Empty (0x0)Partition is NOT ACTIVE.Partition starts at LBA: 0 Numsec = 0Infected: MBR on Drive 0 --> [Rootkit.Harbinger.MBR]Replacement MBR for a drive 0 foundMBR infection found on drive 0Disk Size: 750156374016 bytesSector size: 512 bytesScanning physical sectors of unpartitioned space on drive 0 (1-2047-1465129168-1465149168)...Sectors 1465148901 - 1465149167 --> [Forged physical sectors]Done!Infected: HKCU\SOFTWARE\teeveewatchSA --> [Adware.HotBar.TVW]Scan finishedCreating System Restore point...Cleaning up...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesRemoval scheduling successful. System shutdown needed.System shutdown occurred=======================================---------------------------------------Malwarebytes Anti-Rootkit BETA 1.06.1.1005© Malwarebytes Corporation 2011-2012OS version: 6.1.7601 Windows 7 Service Pack 1 x64Account is AdministrativeInternet Explorer version: 10.0.9200.16635File system is: NTFSDisk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXEDCPU speed: 2.494000 GHzMemory total: 6340063232, free: 4373655552Initializing...------------ Kernel report ------------08/09/2013 11:19:28------------ Loaded modules -----------\SystemRoot\system32\ntoskrnl.exe\SystemRoot\system32\hal.dll\SystemRoot\system32\kdcom.dll\SystemRoot\system32\mcupdate_GenuineIntel.dll\SystemRoot\system32\PSHED.dll\SystemRoot\system32\CLFS.SYS\SystemRoot\system32\CI.dll\SystemRoot\system32\drivers\Wdf01000.sys\SystemRoot\system32\drivers\WDFLDR.SYS\SystemRoot\system32\drivers\ACPI.sys\SystemRoot\system32\drivers\WMILIB.SYS\SystemRoot\system32\drivers\msisadrv.sys\SystemRoot\system32\drivers\pci.sys\SystemRoot\system32\drivers\vdrvroot.sys\SystemRoot\system32\drivers\iusb3hcs.sys\SystemRoot\system32\DRIVERS\kl1.sys\SystemRoot\System32\drivers\partmgr.sys\SystemRoot\system32\drivers\compbatt.sys\SystemRoot\system32\drivers\BATTC.SYS\SystemRoot\system32\drivers\volmgr.sys\SystemRoot\System32\drivers\volmgrx.sys\SystemRoot\System32\drivers\mountmgr.sys\SystemRoot\system32\drivers\iaStor.sys\SystemRoot\system32\drivers\amdxata.sys\SystemRoot\system32\drivers\fltmgr.sys\SystemRoot\system32\drivers\fileinfo.sys\SystemRoot\System32\Drivers\Ntfs.sys\SystemRoot\System32\Drivers\msrpc.sys\SystemRoot\System32\Drivers\ksecdd.sys\SystemRoot\System32\Drivers\cng.sys\SystemRoot\System32\drivers\pcw.sys\SystemRoot\System32\Drivers\Fs_Rec.sys\SystemRoot\system32\drivers\ndis.sys\SystemRoot\system32\drivers\NETIO.SYS\SystemRoot\System32\Drivers\ksecpkg.sys\SystemRoot\System32\drivers\tcpip.sys\SystemRoot\System32\drivers\fwpkclnt.sys\SystemRoot\system32\drivers\wd.sys\SystemRoot\system32\drivers\volsnap.sys\SystemRoot\System32\Drivers\spldr.sys\SystemRoot\System32\drivers\rdyboost.sys\SystemRoot\System32\Drivers\mup.sys\SystemRoot\System32\drivers\hwpolicy.sys\SystemRoot\System32\DRIVERS\fvevol.sys\SystemRoot\system32\drivers\disk.sys\SystemRoot\system32\drivers\CLASSPNP.SYS\SystemRoot\system32\DRIVERS\klif.sys\SystemRoot\System32\Drivers\Null.SYS\SystemRoot\System32\Drivers\Beep.SYS\SystemRoot\System32\drivers\vga.sys\SystemRoot\System32\drivers\VIDEOPRT.SYS\SystemRoot\System32\drivers\watchdog.sys\SystemRoot\System32\DRIVERS\RDPCDD.sys\SystemRoot\system32\drivers\rdpencdd.sys\SystemRoot\system32\drivers\rdprefmp.sys\SystemRoot\System32\Drivers\Msfs.SYS\SystemRoot\System32\Drivers\Npfs.SYS\SystemRoot\system32\DRIVERS\tdx.sys\SystemRoot\system32\DRIVERS\TDI.SYS\SystemRoot\system32\DRIVERS\kl2.sys\SystemRoot\system32\drivers\afd.sys\SystemRoot\System32\DRIVERS\netbt.sys\SystemRoot\system32\drivers\ws2ifsl.sys\SystemRoot\system32\DRIVERS\wfplwf.sys\SystemRoot\system32\DRIVERS\pacer.sys\SystemRoot\system32\DRIVERS\vwififlt.sys\SystemRoot\system32\DRIVERS\klim6.sys\SystemRoot\system32\DRIVERS\netbios.sys\SystemRoot\system32\DRIVERS\wanarp.sys\SystemRoot\system32\drivers\termdd.sys\SystemRoot\system32\DRIVERS\rdbss.sys\SystemRoot\system32\drivers\nsiproxy.sys\SystemRoot\system32\drivers\mssmbios.sys\SystemRoot\System32\drivers\discache.sys\SystemRoot\System32\Drivers\dfsc.sys\SystemRoot\system32\drivers\blbdrive.sys\SystemRoot\system32\DRIVERS\tunnel.sys\SystemRoot\system32\DRIVERS\igdkmd64.sys\SystemRoot\System32\drivers\dxgkrnl.sys\SystemRoot\System32\drivers\dxgmms1.sys\SystemRoot\system32\drivers\iusb3xhc.sys\SystemRoot\system32\drivers\USBD.SYS\SystemRoot\system32\drivers\HECIx64.sys\SystemRoot\system32\drivers\usbehci.sys\SystemRoot\system32\drivers\USBPORT.SYS\SystemRoot\system32\drivers\HDAudBus.sys\SystemRoot\system32\DRIVERS\athrx.sys\SystemRoot\system32\DRIVERS\vwifibus.sys\SystemRoot\system32\DRIVERS\RtsPStor.sys\SystemRoot\system32\DRIVERS\Rt64win7.sys\SystemRoot\system32\drivers\SFEP.sys\SystemRoot\system32\drivers\i8042prt.sys\SystemRoot\system32\DRIVERS\kbdclass.sys\SystemRoot\system32\drivers\SynTP.sys\SystemRoot\system32\DRIVERS\klmouflt.sys\SystemRoot\system32\DRIVERS\mouclass.sys\SystemRoot\system32\drivers\CmBatt.sys\SystemRoot\system32\drivers\intelppm.sys\SystemRoot\system32\drivers\CompositeBus.sys\SystemRoot\system32\DRIVERS\AgileVpn.sys\SystemRoot\system32\DRIVERS\rasl2tp.sys\SystemRoot\system32\DRIVERS\ndistapi.sys\SystemRoot\system32\DRIVERS\ndiswan.sys\SystemRoot\system32\DRIVERS\raspppoe.sys\SystemRoot\system32\DRIVERS\raspptp.sys\SystemRoot\system32\DRIVERS\rassstp.sys\SystemRoot\system32\drivers\swenum.sys\SystemRoot\system32\drivers\ks.sys\SystemRoot\system32\drivers\btath_bus.sys\SystemRoot\system32\DRIVERS\umbus.sys\SystemRoot\system32\drivers\usbhub.sys\SystemRoot\System32\Drivers\NDProxy.SYS\SystemRoot\system32\drivers\iusb3hub.sys\SystemRoot\system32\drivers\RTKVHD64.sys\SystemRoot\system32\drivers\portcls.sys\SystemRoot\system32\drivers\drmk.sys\SystemRoot\system32\drivers\ksthunk.sys\SystemRoot\system32\DRIVERS\IntcDAud.sys\SystemRoot\system32\DRIVERS\btfilter.sys\SystemRoot\System32\Drivers\BTHUSB.sys\SystemRoot\System32\Drivers\bthport.sys\SystemRoot\system32\DRIVERS\usbccgp.sys\SystemRoot\System32\Drivers\usbvideo.sys\SystemRoot\system32\DRIVERS\ArcSoftKsUFilter.sys\SystemRoot\System32\Drivers\crashdmp.sys\SystemRoot\System32\Drivers\dump_iaStor.sys\SystemRoot\System32\win32k.sys\SystemRoot\System32\drivers\Dxapi.sys\SystemRoot\System32\Drivers\dump_dumpfve.sys\SystemRoot\system32\DRIVERS\rfcomm.sys\SystemRoot\system32\drivers\BthEnum.sys\SystemRoot\system32\DRIVERS\bthpan.sys\SystemRoot\system32\drivers\btath_avdt.sys\SystemRoot\system32\drivers\btath_vdp.sys\SystemRoot\system32\drivers\btath_rcp.sys\SystemRoot\system32\drivers\HIDCLASS.SYS\SystemRoot\system32\drivers\HIDPARSE.SYS\SystemRoot\system32\drivers\btath_a2dp.sys\SystemRoot\system32\drivers\btath_hcrp.sys\SystemRoot\system32\DRIVERS\btath_flt.sys\SystemRoot\system32\DRIVERS\btath_lwflt.sys\SystemRoot\system32\DRIVERS\monitor.sys\SystemRoot\System32\TSDDD.dll\SystemRoot\System32\cdd.dll\SystemRoot\system32\drivers\luafv.sys\??\C:\Windows\system32\drivers\mbam.sys\SystemRoot\system32\DRIVERS\Sftvollh.sys\SystemRoot\system32\DRIVERS\lltdio.sys\SystemRoot\system32\DRIVERS\nwifi.sys\SystemRoot\system32\DRIVERS\ndisuio.sys\SystemRoot\system32\DRIVERS\rspndr.sys\SystemRoot\system32\drivers\HTTP.sys\SystemRoot\system32\DRIVERS\bowser.sys\SystemRoot\System32\drivers\mpsdrv.sys\SystemRoot\system32\DRIVERS\mrxsmb.sys\SystemRoot\system32\DRIVERS\mrxsmb10.sys\SystemRoot\system32\DRIVERS\mrxsmb20.sys\SystemRoot\system32\drivers\peauth.sys\SystemRoot\System32\Drivers\secdrv.SYS\SystemRoot\system32\DRIVERS\Sftfslh.sys\SystemRoot\system32\DRIVERS\Sftplaylh.sys\SystemRoot\System32\DRIVERS\srvnet.sys\SystemRoot\System32\drivers\tcpipreg.sys\SystemRoot\System32\DRIVERS\srv2.sys\SystemRoot\System32\DRIVERS\srv.sys\SystemRoot\system32\DRIVERS\Sftredirlh.sys\??\C:\Windows\system32\drivers\semav6thermal64ro.sys\??\C:\Windows\system32\drivers\mbamchameleon.sys\??\C:\Windows\system32\drivers\mbamswissarmy.sys\Windows\System32\ntdll.dll\Windows\System32\smss.exe\Windows\System32\apisetschema.dll\Windows\System32\autochk.exe----------- End -----------Done!<<<1>>>Upper Device Name: \Device\Harddisk0\DR0Upper Device Object: 0xfffffa8008b13060Upper Device Driver Name: \Driver\Disk\Lower Device Name: \Device\Ide\IAAStorageDevice-0\Lower Device Object: 0xfffffa8006606050Lower Device Driver Name: \Driver\iaStor\<<<2>>>Device number: 0, partition: 3Physical Sector Size: 512Drive: 0, DevicePointer: 0xfffffa8008b13060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\--------- Disk Stack ------DevicePointer: 0xfffffa8008b13b90, DeviceName: Unknown, DriverName: \Driver\partmgr\DevicePointer: 0xfffffa8008b13060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\DevicePointer: 0xfffffa8006606050, DeviceName: \Device\Ide\IAAStorageDevice-0\, DriverName: \Driver\iaStor\------------ End ----------Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\Upper DeviceData: 0x0, 0x0, 0x0Lower DeviceData: 0x0, 0x0, 0x0<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesScanning drivers directory: C:\Windows\system32\drivers...<<<2>>>Device number: 0, partition: 3<<<3>>>Volume: C:File system type: NTFSSectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytesDone!Drive 0Scanning MBR on drive 0...Inspecting partition table:MBR Signature: 55AADisk Signature: CAD94FFPartition information:Partition 0 type is Other (0x27)Partition is NOT ACTIVE.Partition starts at LBA: 2048 Numsec = 38789120Partition 1 type is Primary (0x7)Partition is ACTIVE.Partition starts at LBA: 38791168 Numsec = 716800Partition file system is NTFSPartition is bootablePartition 2 type is Primary (0x7)Partition is NOT ACTIVE.Partition starts at LBA: 39507968 Numsec = 1425639152Partition 3 type is Empty (0x0)Partition is NOT ACTIVE.Partition starts at LBA: 0 Numsec = 0Disk Size: 750156374016 bytesSector size: 512 bytesScanning physical sectors of unpartitioned space on drive 0 (1-2047-1465129168-1465149168)...Done!Scan finished=======================================Removal queue found; removal startedRemoving c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\bootstrap_0_1_38791168_i.mbam...Removing c:\programdata\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...Removal finished -
1st scan:
Malwarebytes Anti-Rootkit BETA 1.06.1.1005www.malwarebytes.orgDatabase version: v2013.08.09.04Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16635Olivia :: OLIVIA-VAIO [administrator]8/9/2013 10:22:09 AMmbar-log-2013-08-09 (10-22-09).txtScan type: Quick scanScan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2PScan options disabled: PUPKernel memory modifications detected. Deep Anti-Rootkit Scan engaged.Objects scanned: 248833Time elapsed: 46 minute(s), 1 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 1HKCU\SOFTWARE\teeveewatchSA (Adware.HotBar.TVW) -> Delete on reboot.Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 0(No malicious items detected)Physical Sectors Detected: 2Master Boot Record on Drive #0 (Rootkit.Harbinger.MBR) -> Replace on reboot.Physical Sector #1465148901 on Drive #0 (Forged physical sector) -> Replace on reboot.2nd scan:Malwarebytes Anti-Rootkit BETA 1.06.1.1005www.malwarebytes.orgDatabase version: v2013.08.09.04Windows 7 Service Pack 1 x64 NTFSInternet Explorer 10.0.9200.16635Olivia :: OLIVIA-VAIO [administrator]8/9/2013 11:19:32 AMmbar-log-2013-08-09 (11-19-32).txtScan type: Quick scanScan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2PScan options disabled: PUPObjects scanned: 248125Time elapsed: 30 minute(s), 3 second(s)Memory Processes Detected: 0(No malicious items detected)Memory Modules Detected: 0(No malicious items detected)Registry Keys Detected: 0(No malicious items detected)Registry Values Detected: 0(No malicious items detected)Registry Data Items Detected: 0(No malicious items detected)Folders Detected: 0(No malicious items detected)Files Detected: 0(No malicious items detected)Physical Sectors Detected: 0(No malicious items detected)(end)(end) -
Before I forget.... I'm running the program right now and mbam keeps blocking access to a potentially malicious website: 46.249.42.193. Type: outgoing and process: svchost.exe
I'll post the logs when it's done.. I just didn't want to forget that info.
-
Before I do that, I ended an application called audiodg.exe and the ad's stopped.
-
Still hasn't crashed and gone to blue screen but the non stop ad's are still playing in the background. I took video of it and a picture of task manager at the time, if that would help for you to see it.
-
A rule to go by...
Never lend your underwear and never lend your computer.
winky1.gifWelcome and enjoy Olivia.
I like that!
-
Yes he has been awesome. Thankfully, it's just my laptop that is messed up. My PC is working great, but that may be because I don't let anyone borrow it!
-
Hey, I'm Olivia. I joined because I was having trouble with my laptop and viewing this site as an unregistered user seemed so helpful that I decided to join and ask for help myself.
I'm in the medical field, but do graphic's design on the side, I design skins, websites, signatures, avatars, backgrounds etc., however I've never been able to understand code and all this awesome stuff that you guys/gals do.
-
I was able to disable kaspersky
C:\Program Files\Uninstaller\Uninstall.exe MSIL/DomaIQ.A application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\call-of-duty-black-ops-2.exe a variant of Win32/InstallCore.BH application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\downloadmanager_Setup.exe a variant of Win32/Adware.iBryte.D application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\Firefox_Setup_16.0.1.exe a variant of Win32/InstallCore.AY application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\FlashPlayer_V.140892939b.exe multiple threats cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\FlashPlayer__2114_i14610575_il42840.exe a variant of Win32/Amonetize.D application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\FlashPlayer__2114_i15946062_il42840.exe a variant of Win32/Amonetize.D application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\mplayer_Setup.exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\Player_Setup.exe Win32/DomaIQ.T application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\slender_setup(1).exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\Slender_Setup(2).exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantinedC:\Users\Olivia\Downloads\Slender_Setup.exe a variant of Win32/Adware.iBryte.G application cleaned by deleting - quarantined -
I'm to the point of pressing start on ESET online scanner, but below it says, "another antivirus software was detected (Kaspersky)". Should I click start? I've tried opening kaspersky to disable it but it just wants an activation key.
One child, one teacher, one book and one pen can change the world...
in General Chat
Posted
I have read about this amazing young woman. She truly is inspirational.
So compassionate, forgiving, and courageous!