Jump to content

frenchfriedfrenchmen

Honorary Members
 View Profile  See their activity

  • Posts

    31

  • Joined

  • Last visited

 Content Type 

Everything posted by frenchfriedfrenchmen

  1. frenchfriedfrenchmen
    One last thing,I have the trial version of mbam pro,so when that runs out,do you think that the windows firewall will be able to block the port scanners?
  2. frenchfriedfrenchmen
    Alright,thank you for your help through all of this!
  3. frenchfriedfrenchmen
    Well that was a little weird,I disable all of my anti virus and closed my browser expecting a scan,but all that happened was a message that said combo fix was uninstalled.So is there anything else I have to uninstall?
  4. frenchfriedfrenchmen
    Also,when I first ran combofix,some of the orphaned files it deleted were re-downloaded by windows when i restarted it the next day with a disk check(i didnt think it was important so i didnt say anything about it)will combofix delete those files again?Will that harm my computer or will they be downloaded again at the next startup?
  5. frenchfriedfrenchmen
    Should I run the uninstaller when the warning window is still open?I havent clicked OK or disabled any anti virus yet
  6. frenchfriedfrenchmen
    Thank you for helping,so can I cancel the combofix scan or whatever is happening?
  7. frenchfriedfrenchmen
    When I ran that a message came up saying that combofix detected my scanner to be turned on,and to turn them off before i click "OK",is that supposed to happen when I uninstall it?Also,if this entire thread was a waste of time,im sorry
  8. frenchfriedfrenchmen
    I also checked my IP address,it is not the one malwarebytes blocked from outgoing
  9. frenchfriedfrenchmen
    It didnt find anything
  10. frenchfriedfrenchmen
    Im not sure If i set the clock to the correct date the first time,so Im not sure. here is the latest protection log 03:28:30 (null) MESSAGE Protection started successfully 03:28:41 Owner MESSAGE IP Protection started successfully 03:29:13 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 04:05:57 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 04:23:14 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 04:30:26 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 05:06:05 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 05:23:41 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 05:26:59 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 05:30:52 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:04:52 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:21:50 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:25:06 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:29:01 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:32:42 Owner MESSAGE IP Protection stopped 06:36:35 Owner MESSAGE Database updated successfully 06:36:40 Owner MESSAGE IP Protection started successfully 09:57:27 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 10:14:09 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 10:17:21 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 10:21:10 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 12:41:40 Owner IP-BLOCK 60.173.10.27 (Type: incoming) and here is the first protection log,im not sure if that outgoing IP is mine,but I can check 03:56:34 Owner MESSAGE Protection started successfully 03:56:44 Owner MESSAGE IP Protection started successfully 03:57:54 Owner MESSAGE IP Protection stopped 03:58:00 Owner MESSAGE IP Protection started successfully 04:07:16 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 04:12:43 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 04:24:30 Owner IP-BLOCK 184.173.97.196 (Type: outgoing) 04:24:33 Owner IP-BLOCK 184.173.97.196 (Type: outgoing) 04:24:33 Owner IP-BLOCK 184.173.97.196 (Type: outgoing) 04:24:39 Owner IP-BLOCK 184.173.97.196 (Type: outgoing) 05:08:54 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 06:15:32 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 07:12:26 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 08:15:54 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 08:21:29 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 09:23:46 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 10:18:36 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 11:20:12 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 11:25:45 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 12:03:30 Owner MESSAGE Scheduled update executed successfully 12:03:30 Owner MESSAGE IP Protection stopped 12:04:08 Owner MESSAGE Database updated successfully 12:04:14 Owner MESSAGE IP Protection started successfully 12:21:13 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 13:24:22 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 13:30:00 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 14:27:27 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 14:33:38 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 15:30:37 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 15:36:08 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 16:31:54 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 16:37:26 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 17:33:14 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 17:38:49 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 18:34:48 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 18:40:20 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 19:37:11 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 19:42:39 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 20:40:21 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 20:45:19 Owner MESSAGE IP Protection stopped 20:46:58 Owner MESSAGE Database updated successfully 20:47:04 Owner MESSAGE IP Protection started successfully 21:37:24 Owner IP-BLOCK 174.139.243.50 (Type: incoming) 21:42:57 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 21:48:25 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 22:49:28 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 23:47:52 Owner IP-BLOCK 60.173.10.27 (Type: incoming) 23:53:21 Owner IP-BLOCK 60.173.10.27 (Type: incoming)
  11. frenchfriedfrenchmen
    here is the attach . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-06-23.01) . Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume1 Install Date: 9/29/2004 2:47:28 AM System Uptime: 7/1/2011 3:02:26 AM (9 hours ago) . Motherboard: Dell Computer Corp. | | 0CG566 Processor: Intel® Pentium® 4 CPU 2.66GHz | Microprocessor | 2659/533mhz . ==== Disk Partitions ========================= . A: is Removable C: is FIXED (NTFS) - 37 GiB total, 23.752 GiB free. D: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP549: 4/29/2011 9:41:58 PM - Software Distribution Service 3.0 RP550: 4/30/2011 10:04:38 PM - Software Distribution Service 3.0 RP551: 5/1/2011 1:45:21 AM - Software Distribution Service 3.0 RP552: 5/1/2011 10:04:02 PM - Software Distribution Service 3.0 RP553: 5/2/2011 10:03:59 PM - Software Distribution Service 3.0 RP554: 5/3/2011 10:58:31 PM - System Checkpoint RP555: 5/4/2011 3:23:22 AM - Software Distribution Service 3.0 RP556: 5/5/2011 3:18:21 AM - Software Distribution Service 3.0 RP557: 5/6/2011 3:59:50 AM - System Checkpoint RP558: 5/6/2011 3:28:19 PM - Software Distribution Service 3.0 RP559: 5/7/2011 3:27:52 PM - Software Distribution Service 3.0 RP560: 5/8/2011 1:46:14 AM - Software Distribution Service 3.0 RP561: 5/9/2011 2:20:40 AM - System Checkpoint RP562: 5/10/2011 3:33:38 AM - System Checkpoint RP563: 5/11/2011 2:11:39 AM - Software Distribution Service 3.0 RP564: 5/11/2011 2:53:51 AM - Software Distribution Service 3.0 RP565: 5/12/2011 3:47:20 AM - System Checkpoint RP566: 5/12/2011 2:59:26 PM - Software Distribution Service 3.0 RP567: 5/13/2011 3:04:04 PM - System Checkpoint RP568: 5/13/2011 4:53:57 PM - Software Distribution Service 3.0 RP569: 5/14/2011 4:54:24 PM - Software Distribution Service 3.0 RP570: 5/15/2011 4:54:38 PM - Software Distribution Service 3.0 RP571: 5/16/2011 5:52:02 PM - System Checkpoint RP572: 5/17/2011 4:54:13 PM - Software Distribution Service 3.0 RP573: 5/18/2011 4:54:26 PM - Software Distribution Service 3.0 RP574: 5/19/2011 4:55:25 PM - Software Distribution Service 3.0 RP575: 5/20/2011 5:40:48 PM - System Checkpoint RP576: 5/21/2011 2:43:13 PM - Software Distribution Service 3.0 RP577: 5/22/2011 1:56:06 AM - Software Distribution Service 3.0 RP578: 5/23/2011 2:11:07 AM - System Checkpoint RP579: 5/24/2011 3:11:06 AM - System Checkpoint RP580: 5/24/2011 5:14:02 AM - Software Distribution Service 3.0 RP581: 5/25/2011 6:11:03 AM - System Checkpoint RP582: 5/26/2011 7:10:38 AM - System Checkpoint RP583: 5/26/2011 8:12:56 PM - Software Distribution Service 3.0 RP584: 5/27/2011 8:12:59 PM - Software Distribution Service 3.0 RP585: 5/28/2011 8:12:55 PM - Software Distribution Service 3.0 RP586: 5/29/2011 2:03:36 AM - Software Distribution Service 3.0 RP587: 5/29/2011 8:12:49 PM - Software Distribution Service 3.0 RP588: 5/30/2011 8:13:03 PM - Software Distribution Service 3.0 RP589: 5/31/2011 8:13:20 PM - Software Distribution Service 3.0 RP590: 5/31/2011 8:27:02 PM - Software Distribution Service 3.0 RP591: 6/1/2011 11:30:05 PM - System Checkpoint RP592: 6/2/2011 12:34:10 AM - Software Distribution Service 3.0 RP593: 6/3/2011 2:06:31 AM - Software Distribution Service 3.0 RP594: 6/4/2011 3:03:51 AM - System Checkpoint RP595: 6/5/2011 2:04:53 AM - Software Distribution Service 3.0 RP596: 6/6/2011 2:50:18 AM - System Checkpoint RP597: 6/6/2011 11:32:25 AM - Software Distribution Service 3.0 RP598: 7/4/2011 12:19:24 PM - Restore Operation RP599: 7/4/2011 12:25:18 PM - Software Distribution Service 3.0 RP600: 7/5/2011 1:25:10 PM - System Checkpoint RP601: 7/5/2011 1:37:38 PM - Software Distribution Service 3.0 RP602: 7/6/2011 2:01:42 PM - System Checkpoint RP603: 7/6/2011 2:01:51 PM - Software Distribution Service 3.0 RP604: 7/7/2011 2:01:29 PM - Software Distribution Service 3.0 RP605: 7/8/2011 3:24:21 PM - System Checkpoint RP606: 7/8/2011 7:37:57 PM - Software Distribution Service 3.0 RP607: 7/9/2011 7:32:13 PM - Software Distribution Service 3.0 RP608: 7/10/2011 2:16:30 AM - Software Distribution Service 3.0 RP609: 7/10/2011 8:07:20 PM - Software Distribution Service 3.0 RP610: 7/12/2011 5:10:45 PM - Software Distribution Service 3.0 RP611: 7/22/2011 5:23:04 PM - Software Distribution Service 3.0 RP612: 7/22/2011 5:49:10 PM - Software Distribution Service 3.0 RP613: 7/22/2011 6:00:39 PM - Software Distribution Service 3.0 RP614: 7/23/2011 2:36:17 AM - Software Distribution Service 3.0 RP615: 7/23/2011 6:33:23 PM - Software Distribution Service 3.0 RP616: 7/24/2011 1:08:44 AM - Software Distribution Service 3.0 RP617: 7/24/2011 6:34:44 PM - Software Distribution Service 3.0 RP618: 7/25/2011 9:54:49 PM - System Checkpoint RP619: 7/27/2011 11:39:50 AM - Software Distribution Service 3.0 RP620: 7/27/2011 6:00:18 PM - Software Distribution Service 3.0 RP621: 6/28/2011 12:19:13 AM - System Checkpoint RP622: 6/29/2011 4:53:12 AM - System Checkpoint RP623: 6/30/2011 7:10:24 AM - System Checkpoint RP624: 7/1/2011 3:14:11 AM - Software Distribution Service 3.0 . ==== Installed Programs ====================== . Adobe AIR Adobe Flash Player 10 ActiveX Adobe Reader 9.4.4 Apple Application Support Apple Mobile Device Support Apple Software Update Bonjour CA Pest Patrol Realtime Protection Comcast Desktop Software (v1.2.0.9) Comcast Toolbar 3.0 Comcast User Setup Desktop Doctor Google Chrome Google Toolbar for Internet Explorer Google Update Helper Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Intel® PRO Network Adapters and Drivers iTunes Malwarebytes' Anti-Malware version 1.51.0.1200 Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Antimalware Microsoft Application Error Reporting Microsoft Security Client Microsoft Security Essentials Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 MSN MSXML 6 Service Pack 2 (KB973686) QuickTime Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473) Security Update for Windows Internet Explorer 8 (KB2183461) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB978207) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player (KB979402) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB976662) Update for Windows Internet Explorer 8 (KB980182) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update for Windows XP (KB978207) WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Imaging Component Windows Internet Explorer 8 Windows Live OneCare safety scanner Windows XP Service Pack 3 Yahoo! BrowserPlus 2.9.8 . ==== Event Viewer Messages From Past Week ======== . 7/9/2011 8:00:57 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419186 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.65.165.215:123->64.4.10.44:123) is working properly. 7/9/2011 6:05:59 PM, error: Dhcp [1002] - The IP address lease 75.65.165.215 for the Network Card with network address 00188B18C406 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message). 7/8/2011 7:26:08 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419189 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.65.165.215:123->64.4.10.44:123) is working properly. 7/8/2011 11:33:39 AM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419190 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.65.165.215:123->64.4.10.44:123) is working properly. 7/5/2011 12:26:54 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1363.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1363.0&asdelta=1.105.1363.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/5/2011 12:26:54 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1363.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1363.0&asdelta=1.105.1363.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/5/2011 12:26:54 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1363.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1363.0&asdelta=1.105.1363.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/5/2011 12:26:54 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1363.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1363.0&asdelta=1.105.1363.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/5/2011 12:26:52 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1363.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/5/2011 1:55:52 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419197 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.65.165.215:123->64.4.10.44:123) is working properly. 7/4/2011 12:23:04 PM, error: System Error [1003] - Error code 000000ea, parameter1 81cfb020, parameter2 82139b28, parameter3 8211ddd8, parameter4 00000001. 7/4/2011 12:16:26 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419199 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time-a.nist.gov (ntp.m|0x1|75.65.165.215:123->129.6.15.28:123) is working properly. 7/27/2011 11:49:30 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Update Server Update Stage: Install Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/27/2011 11:49:30 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Update Server Update Stage: Install Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/27/2011 11:49:30 AM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Update Server Update Stage: Download Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80240016 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/25/2011 6:33:07 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.7000.0&avdelta=1.107.476.0&asdelta=1.107.476.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/25/2011 6:33:07 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.7000.0&avdelta=1.107.476.0&asdelta=1.107.476.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/25/2011 6:33:07 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.7000.0&avdelta=1.107.476.0&asdelta=1.107.476.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/25/2011 6:33:07 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Malware Protection Center Update Stage: Search Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.7000.0&avdelta=1.107.476.0&asdelta=1.107.476.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: NT AUTHORITY\NETWORK SERVICE Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x80072ee7 Error description: The server name or address could not be resolved 7/25/2011 6:33:04 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.476.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/22/2011 3:48:04 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419165 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.66.64.130:123->64.4.10.44:123) is working properly. 7/22/2011 3:16:17 PM, error: Dhcp [1002] - The IP address lease 75.66.64.130 for the Network Card with network address 00188B18C406 has been denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message). 7/22/2011 3:12:49 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1967.0 Update Source: Microsoft Malware Protection Center Update Stage: Install Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1967.0&asdelta=1.105.1967.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: OWNER-E4EBD2CDE\Owner Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x800b0003 Error description: The form specified for the subject is not one supported or known by the specified trust provider. 7/22/2011 3:12:49 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1967.0 Update Source: Microsoft Malware Protection Center Update Stage: Install Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1967.0&asdelta=1.105.1967.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiVirus Update Type: Full User: OWNER-E4EBD2CDE\Owner Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x800b0003 Error description: The form specified for the subject is not one supported or known by the specified trust provider. 7/22/2011 3:12:49 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1967.0 Update Source: Microsoft Malware Protection Center Update Stage: Install Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1967.0&asdelta=1.105.1967.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: OWNER-E4EBD2CDE\Owner Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x800b0003 Error description: The form specified for the subject is not one supported or known by the specified trust provider. 7/22/2011 3:12:49 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1967.0 Update Source: Microsoft Malware Protection Center Update Stage: Install Source Path: http://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.6903.0&avdelta=1.105.1967.0&asdelta=1.105.1967.0∏=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signature Type: AntiSpyware Update Type: Full User: OWNER-E4EBD2CDE\Owner Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x800b0003 Error description: The form specified for the subject is not one supported or known by the specified trust provider. 7/22/2011 3:12:34 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.105.1967.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6903.0 Error code: 0x80240038 Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 7/13/2011 1:44:05 PM, error: Dhcp [1002] - The IP address lease 174.50.6.87 for the Network Card with network address 00188B18C406 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message). 7/12/2011 5:00:47 PM, error: W32Time [34] - The time service has detected that the system time needs to be changed by -2419181 seconds. The time service will not change the system time by more than -54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|174.50.6.87:123->64.4.10.44:123) is working properly. 7/12/2011 5:00:28 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751) 6/30/2011 2:46:46 PM, error: Ntfs [55] - The file system structure on the disk is corrupt and unusable. Please run the chkdsk utility on the volume C:. 6/29/2011 9:43:43 AM, error: W32Time [34] - The time service has detected that the system time needs to be changed by +172848 seconds. The time service will not change the system time by more than +54000 seconds. Verify that your time and time zone are correct, and that the time source time.windows.com (ntp.m|0x1|75.66.64.130:123->64.4.10.44:123) is working properly. 6/29/2011 9:26:55 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec MpFilter MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning. 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning. 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning. 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning. 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning. 6/29/2011 9:26:55 AM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning. 6/28/2011 6:24:12 PM, error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.107.690.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.7000.0 Error code: 0x8024402c Error description: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 6/27/2011 11:27:49 PM, error: atapi [9] - The device, \Device\Ide\IdePort0, did not respond within the timeout period. . ==== End Of File ===========================
  12. frenchfriedfrenchmen
    here is the dds . DDS (Ver_2011-06-23.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Owner at 12:47:49 on 2011-07-01 . ============== Running Processes =============== . c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe C:\Program Files\providerComcast\bin\tgsrvc.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\alg.exe C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner\My Documents\Downloads\dds.com C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch C:\WINDOWS\system32\svchost.exe -k rpcss C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k NetworkService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k LocalService C:\WINDOWS\system32\svchost.exe -k imgsvc . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.yahoo.com/ uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s uURLSearchHooks: H - No File mURLSearchHooks: H - No File BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No File BHO: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - c:\program files\comcasttb\comcastdx.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll TB: Comcast Toolbar: {79ceea4e-c231-4614-9e3b-53b2a02f39b7} - c:\program files\comcasttb\comcastdx.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll uRun: [ComcastAntispyClient] "c:\program files\comcasttb\comcastspywarescan\ComcastAntispy.exe" /hide uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [ddoctorv2] "c:\program files\comcast\desktop doctor\bin\sprtcmd.exe" /P ddoctorv2 mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 68.87.68.166 68.87.74.166 TCP: Interfaces\{ECB9CB3C-65EC-4AA9-AE8C-0B52F1DBD048} : DhcpNameServer = 68.87.68.166 68.87.74.166 . ============= SERVICES / DRIVERS =============== . R? cpuz132;cpuz132 R? gupdate;Google Update Service (gupdate) R? gupdatem;Google Update Service (gupdatem) R? MpKsl0cdbd3f0;MpKsl0cdbd3f0 R? MpKsl0d9d48f9;MpKsl0d9d48f9 R? MpKsl19717825;MpKsl19717825 R? MpKsl1e0c596a;MpKsl1e0c596a R? MpKsl1e95f8a2;MpKsl1e95f8a2 R? MpKsl26e90733;MpKsl26e90733 R? MpKsl27d7f6c7;MpKsl27d7f6c7 R? MpKsl2b1b5c3c;MpKsl2b1b5c3c R? MpKsl31122fab;MpKsl31122fab R? MpKsl34ad9294;MpKsl34ad9294 R? MpKsl3c9efb97;MpKsl3c9efb97 R? MpKsl3d6dd765;MpKsl3d6dd765 R? MpKsl3fea5dc0;MpKsl3fea5dc0 R? MpKsl45db3c50;MpKsl45db3c50 R? MpKsl4728b123;MpKsl4728b123 R? MpKsl4ced1ad9;MpKsl4ced1ad9 R? MpKsl5459c1c3;MpKsl5459c1c3 R? MpKsl5b144cae;MpKsl5b144cae R? MpKsl79c061ed;MpKsl79c061ed R? MpKsl7e65051d;MpKsl7e65051d R? MpKsl823c76aa;MpKsl823c76aa R? MpKsl8e42c062;MpKsl8e42c062 R? MpKsl9a965189;MpKsl9a965189 R? MpKslb053b6fa;MpKslb053b6fa R? MpKslb143c0e1;MpKslb143c0e1 R? MpKslb2ce3a43;MpKslb2ce3a43 R? MpKslb6600aba;MpKslb6600aba R? MpKslbc927213;MpKslbc927213 R? MpKsld1a7a2e7;MpKsld1a7a2e7 R? MpKsld9bbc462;MpKsld9bbc462 R? MpKslea47297f;MpKslea47297f R? MpKslf0273f31;MpKslf0273f31 R? MpKslf4215a2e;MpKslf4215a2e R? MpKslf9a64c86;MpKslf9a64c86 R? MpKslfafebb50;MpKslfafebb50 R? MpKslfd300897;MpKslfd300897 S? AntiSpywareService;Comcast AntiSpyware S? MBAMProtector;MBAMProtector S? MBAMService;MBAMService S? MpFilter;Microsoft Malware Protection Driver S? MpKsl173604f7;MpKsl173604f7 S? MpKsl6343edff;MpKsl6343edff S? tgsrvc_providercomcast;SupportSoft Repair Service (providercomcast) . =============== Created Last 30 ================ . 2011-07-24 08:34:58 -------- d-----w- c:\documents and settings\owner\application data\Malwarebytes 2011-07-24 08:34:46 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-24 08:34:44 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2011-07-24 08:34:39 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-24 08:34:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-07-22 22:25:48 -------- d-----w- c:\windows\SxsCaPendDel 2011-07-22 20:49:14 105472 -c----w- c:\windows\system32\dllcache\mup.sys 2011-07-08 16:34:41 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-04 17:20:21 -------- d-----w- c:\windows\system32\wbem\repository\FS 2011-07-04 17:20:21 -------- d-----w- c:\windows\system32\wbem\Repository 2011-07-01 08:16:13 28752 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{662d9bf5-108c-48e7-a4f3-90e3df107bf4}\MpKsl173604f7.sys 2011-07-01 08:14:29 7074640 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{662d9bf5-108c-48e7-a4f3-90e3df107bf4}\mpengine.dll 2011-06-29 22:32:14 -------- d-sha-r- C:\cmdcons 2011-06-29 22:30:23 98816 ----a-w- c:\windows\sed.exe 2011-06-29 22:30:23 518144 ----a-w- c:\windows\SWREG.exe 2011-06-29 22:30:23 256000 ----a-w- c:\windows\PEV.exe 2011-06-29 22:30:23 208896 ----a-w- c:\windows\MBR.exe . ==================== Find3M ==================== . 2011-05-02 15:31:52 692736 ----a-w- c:\windows\system32\inetcomm.dll 2011-04-29 17:25:27 151552 ----a-w- c:\windows\system32\schannel.dll 2011-04-29 16:19:43 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-04-25 16:11:12 916480 ----a-w- c:\windows\system32\wininet.dll 2011-04-25 16:11:11 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-04-25 16:11:11 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2011-04-25 12:01:22 385024 ----a-w- c:\windows\system32\html.iec 2011-04-21 13:37:43 105472 ----a-w- c:\windows\system32\drivers\mup.sys . ============= FINISH: 12:49:58.35 ===============
  13. frenchfriedfrenchmen
    D I have to re-download DDS? And the IPs are blocked whenthe the browser is off aswell as on
  14. frenchfriedfrenchmen
    Sorry for all the posts in a row,but malwarebytes just blocked another IP thats different from the one that it was blocking
  15. frenchfriedfrenchmen
    Also,I looked up that virus name and it seems to come from a toolbar,then I opened IE for the firts time in about 6 months and google toolbar was installed,so I disabled that
  16. frenchfriedfrenchmen
    I dont use a router,but recently(about 1-2 weeks ago)I got a new modem from comcast because the old one broke
  17. frenchfriedfrenchmen
    Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Database version: 6953 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 7/24/2011 4:07:11 AM mbam-log-2011-07-24 (04-07-11).txt Scan type: Quick scan Objects scanned: 145735 Time elapsed: 6 minute(s), 59 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  18. frenchfriedfrenchmen
    I dont see application data,could I just see it from the logs tab of malwarebytes?
  19. frenchfriedfrenchmen
    Here is the log,and thank you for helping me so far 2011/06/30 06:06:37.0203 3120 TDSS rootkit removing tool 2.5.8.0 Jun 28 2011 19:12:16 2011/06/30 06:06:37.0609 3120 ================================================================================ 2011/06/30 06:06:37.0609 3120 SystemInfo: 2011/06/30 06:06:37.0609 3120 2011/06/30 06:06:37.0609 3120 OS Version: 5.1.2600 ServicePack: 3.0 2011/06/30 06:06:37.0609 3120 Product type: Workstation 2011/06/30 06:06:37.0609 3120 ComputerName: OWNER-E4EBD2CDE 2011/06/30 06:06:37.0609 3120 UserName: Owner 2011/06/30 06:06:37.0609 3120 Windows directory: C:\WINDOWS 2011/06/30 06:06:37.0609 3120 System windows directory: C:\WINDOWS 2011/06/30 06:06:37.0609 3120 Processor architecture: Intel x86 2011/06/30 06:06:37.0609 3120 Number of processors: 1 2011/06/30 06:06:37.0609 3120 Page size: 0x1000 2011/06/30 06:06:37.0609 3120 Boot type: Normal boot 2011/06/30 06:06:37.0609 3120 ================================================================================ 2011/06/30 06:06:43.0578 3120 Initialize success 2011/06/30 06:06:49.0281 1864 ================================================================================ 2011/06/30 06:06:49.0281 1864 Scan started 2011/06/30 06:06:49.0281 1864 Mode: Manual; 2011/06/30 06:06:49.0281 1864 ================================================================================ 2011/06/30 06:06:51.0453 1864 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2011/06/30 06:06:51.0750 1864 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys 2011/06/30 06:06:52.0218 1864 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys 2011/06/30 06:06:52.0406 1864 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2011/06/30 06:06:52.0609 1864 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys 2011/06/30 06:06:52.0718 1864 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys 2011/06/30 06:06:53.0734 1864 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2011/06/30 06:06:53.0906 1864 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 2011/06/30 06:06:54.0156 1864 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2011/06/30 06:06:54.0359 1864 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2011/06/30 06:06:54.0515 1864 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2011/06/30 06:06:54.0859 1864 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2011/06/30 06:06:55.0109 1864 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2011/06/30 06:06:55.0218 1864 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2011/06/30 06:06:55.0421 1864 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2011/06/30 06:06:55.0562 1864 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys 2011/06/30 06:06:56.0515 1864 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2011/06/30 06:06:56.0765 1864 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 2011/06/30 06:06:56.0968 1864 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 2011/06/30 06:06:57.0093 1864 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2011/06/30 06:06:57.0250 1864 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2011/06/30 06:06:57.0640 1864 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2011/06/30 06:06:57.0828 1864 E1000 (a8b3ec8ee13cbe14f067c72110155a1b) C:\WINDOWS\system32\DRIVERS\e1000325.sys 2011/06/30 06:06:58.0000 1864 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2011/06/30 06:06:58.0140 1864 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 2011/06/30 06:06:58.0296 1864 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 2011/06/30 06:06:58.0453 1864 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 2011/06/30 06:06:58.0625 1864 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2011/06/30 06:06:58.0859 1864 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2011/06/30 06:06:59.0015 1864 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2011/06/30 06:06:59.0171 1864 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 2011/06/30 06:06:59.0406 1864 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2011/06/30 06:06:59.0734 1864 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2011/06/30 06:07:00.0031 1864 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2011/06/30 06:07:00.0187 1864 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2011/06/30 06:07:00.0437 1864 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys 2011/06/30 06:07:00.0593 1864 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2011/06/30 06:07:00.0640 1864 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2011/06/30 06:07:00.0796 1864 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2011/06/30 06:07:00.0953 1864 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2011/06/30 06:07:01.0109 1864 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2011/06/30 06:07:01.0281 1864 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2011/06/30 06:07:01.0453 1864 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2011/06/30 06:07:01.0593 1864 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2011/06/30 06:07:01.0750 1864 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2011/06/30 06:07:01.0875 1864 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2011/06/30 06:07:01.0984 1864 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2011/06/30 06:07:02.0281 1864 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\WINDOWS\system32\drivers\mbam.sys 2011/06/30 06:07:02.0421 1864 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2011/06/30 06:07:02.0593 1864 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 2011/06/30 06:07:02.0718 1864 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2011/06/30 06:07:02.0875 1864 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2011/06/30 06:07:03.0062 1864 MpFilter (7e34bfa1a7b60bba1da03d677f16cd63) C:\WINDOWS\system32\DRIVERS\MpFilter.sys 2011/06/30 06:07:04.0093 1864 MpKsl6343edff (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{525085B5-0042-4363-9CAF-134ACD6CB6D6}\MpKsl6343edff.sys 2011/06/30 06:07:04.0343 1864 MpKsl88533133 (5f53edfead46fa7adb78eee9ecce8fdf) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{525085B5-0042-4363-9CAF-134ACD6CB6D6}\MpKsl88533133.sys 2011/06/30 06:07:05.0984 1864 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2011/06/30 06:07:06.0156 1864 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2011/06/30 06:07:06.0343 1864 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2011/06/30 06:07:06.0531 1864 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2011/06/30 06:07:06.0703 1864 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2011/06/30 06:07:06.0859 1864 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2011/06/30 06:07:07.0031 1864 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2011/06/30 06:07:07.0187 1864 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 2011/06/30 06:07:07.0359 1864 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2011/06/30 06:07:07.0515 1864 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2011/06/30 06:07:07.0671 1864 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2011/06/30 06:07:07.0796 1864 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2011/06/30 06:07:07.0953 1864 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 2011/06/30 06:07:08.0078 1864 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2011/06/30 06:07:08.0203 1864 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2011/06/30 06:07:08.0406 1864 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2011/06/30 06:07:08.0546 1864 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2011/06/30 06:07:08.0718 1864 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2011/06/30 06:07:08.0906 1864 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 2011/06/30 06:07:09.0125 1864 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2011/06/30 06:07:09.0281 1864 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2011/06/30 06:07:09.0484 1864 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys 2011/06/30 06:07:09.0609 1864 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2011/06/30 06:07:09.0750 1864 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 2011/06/30 06:07:09.0906 1864 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 2011/06/30 06:07:10.0281 1864 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 2011/06/30 06:07:10.0437 1864 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 2011/06/30 06:07:10.0968 1864 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2011/06/30 06:07:11.0125 1864 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2011/06/30 06:07:11.0234 1864 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2011/06/30 06:07:11.0656 1864 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2011/06/30 06:07:11.0796 1864 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2011/06/30 06:07:11.0953 1864 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2011/06/30 06:07:12.0078 1864 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2011/06/30 06:07:12.0250 1864 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2011/06/30 06:07:12.0421 1864 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2011/06/30 06:07:12.0593 1864 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2011/06/30 06:07:12.0734 1864 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 2011/06/30 06:07:12.0984 1864 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2011/06/30 06:07:13.0171 1864 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2011/06/30 06:07:13.0281 1864 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys 2011/06/30 06:07:13.0437 1864 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2011/06/30 06:07:13.0687 1864 smwdm (31fd0707c7dbe715234f2823b27214fe) C:\WINDOWS\system32\drivers\smwdm.sys 2011/06/30 06:07:14.0000 1864 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2011/06/30 06:07:14.0156 1864 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 2011/06/30 06:07:14.0343 1864 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 2011/06/30 06:07:14.0515 1864 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2011/06/30 06:07:14.0687 1864 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2011/06/30 06:07:15.0171 1864 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2011/06/30 06:07:15.0343 1864 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2011/06/30 06:07:15.0484 1864 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2011/06/30 06:07:15.0609 1864 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2011/06/30 06:07:15.0750 1864 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2011/06/30 06:07:16.0046 1864 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2011/06/30 06:07:16.0265 1864 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2011/06/30 06:07:16.0500 1864 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\WINDOWS\system32\Drivers\usbaapl.sys 2011/06/30 06:07:16.0718 1864 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2011/06/30 06:07:16.0843 1864 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2011/06/30 06:07:16.0968 1864 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2011/06/30 06:07:17.0140 1864 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2011/06/30 06:07:17.0250 1864 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2011/06/30 06:07:17.0406 1864 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2011/06/30 06:07:17.0546 1864 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 2011/06/30 06:07:17.0703 1864 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2011/06/30 06:07:17.0921 1864 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 2011/06/30 06:07:18.0078 1864 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2011/06/30 06:07:18.0265 1864 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2011/06/30 06:07:18.0531 1864 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 2011/06/30 06:07:18.0593 1864 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 2011/06/30 06:07:18.0750 1864 Boot (0x1200) (7bb9f6e77775c6da4bc718c3e1a8de04) \Device\Harddisk0\DR0\Partition0 2011/06/30 06:07:18.0765 1864 ================================================================================ 2011/06/30 06:07:18.0765 1864 Scan finished 2011/06/30 06:07:18.0765 1864 ================================================================================ 2011/06/30 06:07:18.0796 3680 Detected object count: 0 2011/06/30 06:07:18.0796 3680 Actual detected object count: 0 2011/06/30 06:07:30.0859 2932 Deinitialize success
  20. frenchfriedfrenchmen
    Nevermind,I dragged combofix from downloads to desktop and everything went fine,however,Malwarebytes is still blocking an IP,do you want to see the protection log? heres combofix AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF} AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\explorer(2).exe c:\windows\system32\linkinfo(2).dll c:\windows\system32\QTWMCI32.DLL . . ((((((((((((((((((((((((( Files Created from 2011-05-28 to 2011-06-29 ))))))))))))))))))))))))))))))) . . 2011-07-27 16:50 . 2011-06-07 15:55 7074640 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\mpengine.dll 2011-07-24 08:34 . 2011-07-24 08:34 -------- d-----w- c:\documents and settings\Owner\Application Data\Malwarebytes 2011-07-24 08:34 . 2011-05-29 14:11 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-07-24 08:34 . 2011-07-24 08:34 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2011-07-24 08:34 . 2011-05-29 14:11 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-07-24 08:34 . 2011-07-24 08:34 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-07-22 22:25 . 2011-07-22 22:39 -------- d-----w- c:\windows\SxsCaPendDel 2011-07-22 20:49 . 2011-04-21 13:37 105472 -c----w- c:\windows\system32\dllcache\mup.sys 2011-07-08 16:34 . 2011-07-08 16:34 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-07-04 17:20 . 2011-07-04 17:20 -------- d-----w- c:\windows\system32\wbem\Repository 2011-06-29 14:28 . 2011-06-29 14:28 28752 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\MpKsl78364d22.sys . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-06-07 15:55 . 2010-12-08 05:48 7074640 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2011-05-02 15:31 . 2010-02-19 10:57 692736 ----a-w- c:\windows\system32\inetcomm.dll 2011-04-29 17:25 . 2010-02-19 10:56 151552 ----a-w- c:\windows\system32\schannel.dll 2011-04-29 16:19 . 2010-02-19 10:56 456320 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-04-25 16:11 . 2010-02-19 10:56 916480 ----a-w- c:\windows\system32\wininet.dll 2011-04-25 16:11 . 2010-02-19 10:57 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2011-04-25 16:11 . 2010-02-19 10:57 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-04-25 12:01 . 2004-08-04 10:00 385024 ----a-w- c:\windows\system32\html.iec 2011-04-21 13:37 . 2010-02-19 10:56 105472 ----a-w- c:\windows\system32\drivers\mup.sys . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ComcastAntispyClient"="c:\program files\comcasttb\ComcastSpywareScan\ComcastAntispy.exe" [2009-08-19 1589208] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-01-29 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ddoctorv2"="c:\program files\Comcast\Desktop Doctor\bin\sprtcmd.exe" [2008-04-24 202560] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-03-02 421160] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\usmt\\migwiz.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 . R1 MpKsl78364d22;MpKsl78364d22;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\MpKsl78364d22.sys [6/29/2011 9:28 AM 28752] R2 AntiSpywareService;Comcast AntiSpyware;c:\program files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe [6/17/2009 12:49 PM 616408] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [7/24/2011 3:34 AM 366640] R2 tgsrvc_providercomcast;SupportSoft Repair Service (providercomcast);c:\program files\providerComcast\bin\tgsrvc.exe [5/2/2008 1:40 PM 148768] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [7/24/2011 3:34 AM 22712] S1 MpKsl0cdbd3f0;MpKsl0cdbd3f0;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2AC5936C-CD9E-42B8-BB91-38BC975B9A0A}\MpKsl0cdbd3f0.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{2AC5936C-CD9E-42B8-BB91-38BC975B9A0A}\MpKsl0cdbd3f0.sys [?] S1 MpKsl0d9d48f9;MpKsl0d9d48f9;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{18C01F4A-3556-425A-A8FE-0867E8D2A800}\MpKsl0d9d48f9.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{18C01F4A-3556-425A-A8FE-0867E8D2A800}\MpKsl0d9d48f9.sys [?] S1 MpKsl19717825;MpKsl19717825;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0F293552-B60E-425C-967F-FDA5E410AB8C}\MpKsl19717825.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0F293552-B60E-425C-967F-FDA5E410AB8C}\MpKsl19717825.sys [?] S1 MpKsl1e0c596a;MpKsl1e0c596a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{096A2692-FCAC-4A2A-B524-D3857AAADD0B}\MpKsl1e0c596a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{096A2692-FCAC-4A2A-B524-D3857AAADD0B}\MpKsl1e0c596a.sys [?] S1 MpKsl1e95f8a2;MpKsl1e95f8a2;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{51F58488-0BF9-48CD-8ABD-794AF8406F0E}\MpKsl1e95f8a2.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{51F58488-0BF9-48CD-8ABD-794AF8406F0E}\MpKsl1e95f8a2.sys [?] S1 MpKsl26e90733;MpKsl26e90733;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5490592-032B-4776-9FAB-58E13D37D0BA}\MpKsl26e90733.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5490592-032B-4776-9FAB-58E13D37D0BA}\MpKsl26e90733.sys [?] S1 MpKsl27d7f6c7;MpKsl27d7f6c7;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\MpKsl27d7f6c7.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\MpKsl27d7f6c7.sys [?] S1 MpKsl2b1b5c3c;MpKsl2b1b5c3c;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F875A5BB-88FE-4213-B9E9-3B2622A4932E}\MpKsl2b1b5c3c.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F875A5BB-88FE-4213-B9E9-3B2622A4932E}\MpKsl2b1b5c3c.sys [?] S1 MpKsl31122fab;MpKsl31122fab;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CD2B8644-5D10-4D66-85BB-C96A86CF7767}\MpKsl31122fab.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{CD2B8644-5D10-4D66-85BB-C96A86CF7767}\MpKsl31122fab.sys [?] S1 MpKsl34ad9294;MpKsl34ad9294;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7450AF8F-53A9-4E8D-B22F-0BF782146710}\MpKsl34ad9294.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7450AF8F-53A9-4E8D-B22F-0BF782146710}\MpKsl34ad9294.sys [?] S1 MpKsl3c9efb97;MpKsl3c9efb97;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3C6B013C-ABEB-45BE-8B5D-5EB65FEB5D21}\MpKsl3c9efb97.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3C6B013C-ABEB-45BE-8B5D-5EB65FEB5D21}\MpKsl3c9efb97.sys [?] S1 MpKsl3d6dd765;MpKsl3d6dd765;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5490592-032B-4776-9FAB-58E13D37D0BA}\MpKsl3d6dd765.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F5490592-032B-4776-9FAB-58E13D37D0BA}\MpKsl3d6dd765.sys [?] S1 MpKsl3fea5dc0;MpKsl3fea5dc0;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B69AED2-3582-4B5B-B76F-65CCDBAA04D8}\MpKsl3fea5dc0.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{1B69AED2-3582-4B5B-B76F-65CCDBAA04D8}\MpKsl3fea5dc0.sys [?] S1 MpKsl45db3c50;MpKsl45db3c50;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKsl45db3c50.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKsl45db3c50.sys [?] S1 MpKsl4728b123;MpKsl4728b123;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D109DAF3-DAC8-4BDE-A3A7-08C636C05D14}\MpKsl4728b123.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{D109DAF3-DAC8-4BDE-A3A7-08C636C05D14}\MpKsl4728b123.sys [?] S1 MpKsl4ced1ad9;MpKsl4ced1ad9;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7AFC82CE-D2C7-469C-8CC8-C4207118F609}\MpKsl4ced1ad9.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7AFC82CE-D2C7-469C-8CC8-C4207118F609}\MpKsl4ced1ad9.sys [?] S1 MpKsl5459c1c3;MpKsl5459c1c3;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B8BDE436-885A-4BC0-B4EA-0C24C2297759}\MpKsl5459c1c3.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{B8BDE436-885A-4BC0-B4EA-0C24C2297759}\MpKsl5459c1c3.sys [?] S1 MpKsl5b144cae;MpKsl5b144cae;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C5A705A6-2BF9-434E-A9B8-9F7F1A88710D}\MpKsl5b144cae.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C5A705A6-2BF9-434E-A9B8-9F7F1A88710D}\MpKsl5b144cae.sys [?] S1 MpKsl79c061ed;MpKsl79c061ed;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKsl79c061ed.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKsl79c061ed.sys [?] S1 MpKsl7e65051d;MpKsl7e65051d;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F576F04F-FE52-4955-B28A-8447F40800AA}\MpKsl7e65051d.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F576F04F-FE52-4955-B28A-8447F40800AA}\MpKsl7e65051d.sys [?] S1 MpKsl823c76aa;MpKsl823c76aa;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E3C66600-BEA0-4A4B-931A-39EC089DE702}\MpKsl823c76aa.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{E3C66600-BEA0-4A4B-931A-39EC089DE702}\MpKsl823c76aa.sys [?] S1 MpKsl8e42c062;MpKsl8e42c062;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4BC58242-16CE-4E20-AED5-81979963809D}\MpKsl8e42c062.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{4BC58242-16CE-4E20-AED5-81979963809D}\MpKsl8e42c062.sys [?] S1 MpKsl9a965189;MpKsl9a965189;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EE521F79-E46C-4B90-869D-1BFA62B44D5F}\MpKsl9a965189.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{EE521F79-E46C-4B90-869D-1BFA62B44D5F}\MpKsl9a965189.sys [?] S1 MpKslb053b6fa;MpKslb053b6fa;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5EF47ED4-034D-4DCD-A919-ED95AA0D162E}\MpKslb053b6fa.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5EF47ED4-034D-4DCD-A919-ED95AA0D162E}\MpKslb053b6fa.sys [?] S1 MpKslb143c0e1;MpKslb143c0e1;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5B76C8E9-2305-4D34-9B4A-BA290B98812C}\MpKslb143c0e1.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5B76C8E9-2305-4D34-9B4A-BA290B98812C}\MpKslb143c0e1.sys [?] S1 MpKslb2ce3a43;MpKslb2ce3a43;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F576F04F-FE52-4955-B28A-8447F40800AA}\MpKslb2ce3a43.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{F576F04F-FE52-4955-B28A-8447F40800AA}\MpKslb2ce3a43.sys [?] S1 MpKslb6600aba;MpKslb6600aba;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKslb6600aba.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKslb6600aba.sys [?] S1 MpKslbc927213;MpKslbc927213;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3C6B013C-ABEB-45BE-8B5D-5EB65FEB5D21}\MpKslbc927213.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{3C6B013C-ABEB-45BE-8B5D-5EB65FEB5D21}\MpKslbc927213.sys [?] S1 MpKsld1a7a2e7;MpKsld1a7a2e7;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0F293552-B60E-425C-967F-FDA5E410AB8C}\MpKsld1a7a2e7.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{0F293552-B60E-425C-967F-FDA5E410AB8C}\MpKsld1a7a2e7.sys [?] S1 MpKsld9bbc462;MpKsld9bbc462;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{67A77073-8BC3-4FF0-A4E9-31CA8364B1EB}\MpKsld9bbc462.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{67A77073-8BC3-4FF0-A4E9-31CA8364B1EB}\MpKsld9bbc462.sys [?] S1 MpKslea47297f;MpKslea47297f;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{250C5190-EE21-4CF5-9965-2C3A70772149}\MpKslea47297f.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{250C5190-EE21-4CF5-9965-2C3A70772149}\MpKslea47297f.sys [?] S1 MpKslf0273f31;MpKslf0273f31;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C5A705A6-2BF9-434E-A9B8-9F7F1A88710D}\MpKslf0273f31.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{C5A705A6-2BF9-434E-A9B8-9F7F1A88710D}\MpKslf0273f31.sys [?] S1 MpKslf4215a2e;MpKslf4215a2e;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKslf4215a2e.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{380070DF-8F33-477E-9A96-D4AEC01F45C8}\MpKslf4215a2e.sys [?] S1 MpKslf9a64c86;MpKslf9a64c86;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7AFC82CE-D2C7-469C-8CC8-C4207118F609}\MpKslf9a64c86.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7AFC82CE-D2C7-469C-8CC8-C4207118F609}\MpKslf9a64c86.sys [?] S1 MpKslfafebb50;MpKslfafebb50;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7EA0A1FF-C172-46A7-9F70-DEED59E35C14}\MpKslfafebb50.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{7EA0A1FF-C172-46A7-9F70-DEED59E35C14}\MpKslfafebb50.sys [?] S1 MpKslfd300897;MpKslfd300897;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DEB2A6D8-C293-40AD-95E5-49E924C62A25}\MpKslfd300897.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{DEB2A6D8-C293-40AD-95E5-49E924C62A25}\MpKslfd300897.sys [?] S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [1/28/2011 9:38 PM 136176] S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [1/28/2011 9:38 PM 136176] . --- Other Services/Drivers In Memory --- . *NewlyCreated* - BLACKBOX *NewlyCreated* - MPKSL78364D22 *Deregistered* - BlackBox . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] getPlusHelper REG_MULTI_SZ getPlusHelper . Contents of the 'Scheduled Tasks' folder . 2011-07-25 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34] . 2011-06-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-01-29 02:38] . 2011-06-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-01-29 02:38] . 2011-06-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-725345543-706699826-839522115-1003Core.job - c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-28 05:49] . 2011-06-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-725345543-706699826-839522115-1003UA.job - c:\documents and settings\Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-06-28 05:49] . 2011-06-29 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2010-11-11 17:26] . 2011-06-29 c:\windows\Tasks\User_Feed_Synchronization-{3BAB7B9F-570A-4054-AF17-F24C9573441D}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 09:31] . 2011-07-27 c:\windows\Tasks\User_Feed_Synchronization-{DC0C233B-EC18-4C2A-A44E-96C12D595F24}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 09:31] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.yahoo.com/ uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html TCP: DhcpNameServer = 68.87.68.166 68.87.74.166 . - - - - ORPHANS REMOVED - - - - . Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) HKCU-Run-AROReminder - c:\program files\Advanced Registry Optimizer\aro.exe AddRemove-pepakura_designer3en - c:\documents and settings\Owner\My Documents\designer\epuninst.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-06-29 17:39 Windows 5.1.2600 Service Pack 3 NTFS . scanning hidden processes ... . scanning hidden autostart entries ... . scanning hidden files ... . scan completed successfully hidden files: 0 . ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- . - - - - - - - > 'winlogon.exe'(636) c:\program files\CA\PPRT\bin\CACheck.dll c:\program files\CA\PPRT\bin\CAHook.dll c:\program files\CA\PPRT\bin\CAServer.dll . Completion time: 2011-06-29 17:43:03 ComboFix-quarantined-files.txt 2011-06-29 22:43 . Pre-Run: 24,375,410,688 bytes free Post-Run: 25,544,904,704 bytes free . WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect . - - End Of File - - 2612D4CF78D1F74003FDA357B0886640
  21. frenchfriedfrenchmen
    When I downloaded Combofix from bleeping computer,it did not give me the option to save on my desktop,it instead just saved automatically(probably because im using google chrome instead of IE),is this not a good thing?Im sorry if I just made a unneccessary problem
  22. frenchfriedfrenchmen
    Can I unplug my internet after I disable my antivirus/firewall?I dont want whatever it is blocking to get on
  23. frenchfriedfrenchmen
    Here it is RkU Version: 3.8.389.593, Type LE (SR2) ============================================== OS Name: Windows XP Version 5.1.2600 (Service Pack 3) Number of processors #1 ============================================== >Drivers ============================================== 0xBF012000 C:\WINDOWS\System32\nv4_disp.dll 4276224 bytes (NVIDIA Corporation, NVIDIA Compatible Windows 2000 Display driver, Version 56.73 ) 0x804D7000 C:\WINDOWS\system32\ntoskrnl.exe 2192768 bytes (Microsoft Corporation, NT Kernel & System) 0x804D7000 PnpManager 2192768 bytes 0x804D7000 RAW 2192768 bytes 0x804D7000 WMIxWDM 2192768 bytes 0xF8141000 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 1900544 bytes (NVIDIA Corporation, NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73 ) 0xBF800000 Win32k 1859584 bytes 0xBF800000 C:\WINDOWS\System32\win32k.sys 1859584 bytes (Microsoft Corporation, Multi-User Win32 Driver) 0xF83B1000 Ntfs.sys 577536 bytes (Microsoft Corporation, NT File System Driver) 0xF802E000 C:\WINDOWS\system32\drivers\smwdm.sys 548864 bytes (Analog Devices, Inc., SoundMAX Integrated Digital Audio ) 0xF6AAE000 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 458752 bytes (Microsoft Corporation, Windows NT SMB Minirdr) 0xF7F84000 C:\WINDOWS\system32\DRIVERS\update.sys 385024 bytes (Microsoft Corporation, Update Driver) 0xF6B93000 C:\WINDOWS\system32\DRIVERS\tcpip.sys 364544 bytes (Microsoft Corporation, TCP/IP Protocol Driver) 0xF3D6E000 C:\WINDOWS\system32\DRIVERS\srv.sys 360448 bytes (Microsoft Corporation, Server driver) 0xBF426000 C:\WINDOWS\System32\ATMFD.DLL 290816 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver) 0xF38A5000 C:\WINDOWS\System32\Drivers\HTTP.sys 266240 bytes (Microsoft Corporation, HTTP Protocol Stack) 0xF84E7000 ACPI.sys 188416 bytes (Microsoft Corporation, ACPI Driver for NT) 0xF4AB0000 C:\WINDOWS\system32\DRIVERS\mrxdav.sys 184320 bytes (Microsoft Corporation, Windows NT WebDav Minirdr) 0xF8384000 NDIS.sys 184320 bytes (Microsoft Corporation, NDIS 5.1 wrapper driver) 0xF3533000 C:\WINDOWS\system32\drivers\kmixer.sys 176128 bytes (Microsoft Corporation, Kernel Mode Audio Mixer) 0xF6B1E000 C:\WINDOWS\system32\DRIVERS\rdbss.sys 176128 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver) 0xF6B6B000 C:\WINDOWS\system32\DRIVERS\netbt.sys 163840 bytes (Microsoft Corporation, MBT Transport driver) 0xF6C47000 C:\WINDOWS\system32\DRIVERS\MpFilter.sys 159744 bytes (Microsoft Corporation, Microsoft antimalware file system filter driver) 0xF6A88000 C:\WINDOWS\system32\DRIVERS\ipnat.sys 155648 bytes (Microsoft Corporation, IP Network Address Translator) 0xF35FE000 C:\WINDOWS\System32\Drivers\Fastfat.SYS 147456 bytes (Microsoft Corporation, Fast FAT File System Driver) 0xF800A000 C:\WINDOWS\system32\drivers\portcls.sys 147456 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices)) 0xF8109000 C:\WINDOWS\system32\DRIVERS\USBPORT.SYS 147456 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver) 0xF80B4000 C:\WINDOWS\system32\DRIVERS\ks.sys 143360 bytes (Microsoft Corporation, Kernel CSA Library) 0xF6B49000 C:\WINDOWS\System32\drivers\afd.sys 139264 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock) 0x806EF000 ACPI_HAL 131840 bytes 0x806EF000 C:\WINDOWS\system32\hal.dll 131840 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL) 0xF8467000 fltmgr.sys 131072 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager) 0xF84B7000 ftdisk.sys 126976 bytes (Microsoft Corporation, FT Disk Driver) 0xF80EB000 C:\WINDOWS\system32\DRIVERS\e1000325.sys 122880 bytes (Intel Corporation, Intel® PRO/1000 Adapter NDIS 5.1 deserialized driver) 0xF836A000 Mup.sys 106496 bytes (Microsoft Corporation, Multiple UNC Provider driver) 0xF849F000 atapi.sys 98304 bytes (Microsoft Corporation, IDE/ATAPI Port Driver) 0xF6A70000 C:\WINDOWS\System32\Drivers\dump_atapi.sys 98304 bytes 0xF8487000 C:\WINDOWS\System32\Drivers\SCSIPORT.SYS 98304 bytes (Microsoft Corporation, SCSI Port Driver) 0xF843E000 KSecDD.sys 94208 bytes (Microsoft Corporation, Kernel Security Support Provider Interface) 0xF7FF3000 C:\WINDOWS\system32\DRIVERS\ndiswan.sys 94208 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption)) 0xF4DB3000 C:\WINDOWS\system32\drivers\wdmaud.sys 86016 bytes (Microsoft Corporation, MMSYSTEM Wave/Midi API mapper) 0xF80D7000 C:\WINDOWS\system32\DRIVERS\parport.sys 81920 bytes (Microsoft Corporation, Parallel Port Driver) 0xF812D000 C:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS 81920 bytes (Microsoft Corporation, Video Port Driver) 0xF6BEC000 C:\WINDOWS\system32\DRIVERS\ipsec.sys 77824 bytes (Microsoft Corporation, IPSec Driver) 0xBF000000 C:\WINDOWS\System32\drivers\dxg.sys 73728 bytes (Microsoft Corporation, DirectX Graphics Driver) 0xF8455000 sr.sys 73728 bytes (Microsoft Corporation, System Restore Filesystem Filter Driver) 0xF84D6000 pci.sys 69632 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator) 0xF7FE2000 C:\WINDOWS\system32\DRIVERS\psched.sys 69632 bytes (Microsoft Corporation, MS QoS Packet Scheduler) 0xF86A6000 C:\WINDOWS\System32\Drivers\Cdfs.SYS 65536 bytes (Microsoft Corporation, CD-ROM File System Driver) 0xF8776000 C:\WINDOWS\system32\DRIVERS\cdrom.sys 65536 bytes (Microsoft Corporation, SCSI CD-ROM Driver) 0xF8766000 C:\WINDOWS\system32\DRIVERS\serial.sys 65536 bytes (Microsoft Corporation, Serial Device Driver) 0xF8796000 C:\WINDOWS\system32\drivers\drmk.sys 61440 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter) 0xF8786000 C:\WINDOWS\system32\DRIVERS\redbook.sys 61440 bytes (Microsoft Corporation, Redbook Audio Filter Driver) 0xF4F78000 C:\WINDOWS\system32\drivers\sysaudio.sys 61440 bytes (Microsoft Corporation, System Audio WDM Filter) 0xF85F6000 C:\WINDOWS\system32\DRIVERS\usbhub.sys 61440 bytes (Microsoft Corporation, Default Hub Driver for USB) 0xF8576000 C:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS 53248 bytes (Microsoft Corporation, SCSI Class System Dll) 0xF8756000 C:\WINDOWS\system32\DRIVERS\i8042prt.sys 53248 bytes (Microsoft Corporation, i8042 Port Driver) 0xF87A6000 C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 53248 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver) 0xF8556000 VolSnap.sys 53248 bytes (Microsoft Corporation, Volume Shadow Copy Driver) 0xF85B6000 C:\WINDOWS\system32\DRIVERS\raspptp.sys 49152 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol) 0xF8586000 agp440.sys 45056 bytes (Microsoft Corporation, 440 NT AGP Filter) 0xF8666000 C:\WINDOWS\System32\Drivers\Fips.SYS 45056 bytes (Microsoft Corporation, FIPS Crypto Driver) 0xF8546000 MountMgr.sys 45056 bytes (Microsoft Corporation, Mount Manager) 0xF85A6000 C:\WINDOWS\system32\DRIVERS\raspppoe.sys 45056 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver) 0xF8536000 isapnp.sys 40960 bytes (Microsoft Corporation, PNP ISA Bus Driver) 0xF85E6000 C:\WINDOWS\System32\Drivers\NDProxy.SYS 40960 bytes (Microsoft Corporation, NDIS Proxy) 0xF85D6000 C:\WINDOWS\system32\DRIVERS\termdd.sys 40960 bytes (Microsoft Corporation, Terminal Server Driver) 0xF4B45000 C:\WINDOWS\System32\Drivers\BlackBox.SYS 36864 bytes (RKU Driver) 0xF8566000 disk.sys 36864 bytes (Microsoft Corporation, PnP Disk Driver) 0xF8746000 C:\WINDOWS\system32\DRIVERS\intelppm.sys 36864 bytes (Microsoft Corporation, Processor Device Driver) 0xF3BBE000 C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 36864 bytes (Microsoft Corporation, IP FILTER DRIVER) 0xF85C6000 C:\WINDOWS\system32\DRIVERS\msgpc.sys 36864 bytes (Microsoft Corporation, MS General Packet Classifier) 0xF8646000 C:\WINDOWS\system32\DRIVERS\netbios.sys 36864 bytes (Microsoft Corporation, NetBIOS interface driver) 0xF8676000 C:\WINDOWS\system32\DRIVERS\wanarp.sys 36864 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver) 0xF87C6000 cercsr6.sys 32768 bytes (Adaptec, Inc., DELL CERC SATA1.5/6ch Miniport Driver) 0xF88DE000 C:\WINDOWS\System32\Drivers\Npfs.SYS 32768 bytes (Microsoft Corporation, NPFS Driver) 0xF8856000 C:\WINDOWS\system32\DRIVERS\usbehci.sys 32768 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver) 0xF885E000 C:\WINDOWS\system32\DRIVERS\fdc.sys 28672 bytes (Microsoft Corporation, Floppy Disk Controller Driver) 0xF87B6000 C:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS 28672 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension) 0xF8876000 C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter) 0xF8866000 C:\WINDOWS\system32\DRIVERS\kbdclass.sys 24576 bytes (Microsoft Corporation, Keyboard Class Driver) 0xF886E000 C:\WINDOWS\system32\DRIVERS\mouclass.sys 24576 bytes (Microsoft Corporation, Mouse Class Driver) 0xF88E6000 c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{85BEBCE9-FEFB-46E3-8F59-37AB2BB33917}\MpKsl78364d22.sys 24576 bytes (Microsoft Corporation, KSLDriver) 0xF884E000 C:\WINDOWS\system32\DRIVERS\usbuhci.sys 24576 bytes (Microsoft Corporation, UHCI USB Miniport Driver) 0xF88CE000 C:\WINDOWS\System32\drivers\vga.sys 24576 bytes (Microsoft Corporation, VGA/Super VGA Video Driver) 0xF889E000 C:\WINDOWS\system32\DRIVERS\flpydisk.sys 20480 bytes (Microsoft Corporation, Floppy Driver) 0xF88D6000 C:\WINDOWS\System32\Drivers\Msfs.SYS 20480 bytes (Microsoft Corporation, Mailslot driver) 0xF87BE000 PartMgr.sys 20480 bytes (Microsoft Corporation, Partition Manager) 0xF888E000 C:\WINDOWS\system32\DRIVERS\ptilink.sys 20480 bytes (Parallel Technologies, Inc., Parallel Technologies DirectParallel IO Library) 0xF8896000 C:\WINDOWS\system32\DRIVERS\raspti.sys 20480 bytes (Microsoft Corporation, PTI DirectParallel® mini-port/call-manager driver) 0xF8886000 C:\WINDOWS\system32\DRIVERS\TDI.SYS 20480 bytes (Microsoft Corporation, TDI Wrapper) 0xF88F6000 C:\WINDOWS\System32\watchdog.sys 20480 bytes (Microsoft Corporation, Watchdog Driver) 0xF599C000 C:\WINDOWS\system32\drivers\mbam.sys 16384 bytes (Malwarebytes Corporation, Malwarebytes' Anti-Malware) 0xF89F6000 C:\WINDOWS\system32\DRIVERS\mssmbios.sys 16384 bytes (Microsoft Corporation, System Management BIOS Driver) 0xF592C000 C:\WINDOWS\system32\DRIVERS\ndisuio.sys 16384 bytes (Microsoft Corporation, NDIS User mode I/O Driver) 0xF89D6000 C:\WINDOWS\system32\DRIVERS\serenum.sys 16384 bytes (Microsoft Corporation, Serial Port Enumerator) 0xF8946000 C:\WINDOWS\system32\BOOTVID.dll 12288 bytes (Microsoft Corporation, VGA Boot Driver) 0xF8331000 C:\WINDOWS\System32\drivers\Dxapi.sys 12288 bytes (Microsoft Corporation, DirectX API Driver) 0xF89E2000 C:\WINDOWS\system32\DRIVERS\ndistapi.sys 12288 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver) 0xF7F70000 C:\WINDOWS\system32\DRIVERS\rasacd.sys 12288 bytes (Microsoft Corporation, RAS Automatic Connection Driver) 0xF8A48000 C:\WINDOWS\system32\drivers\aeaudio.sys 8192 bytes (Andrea Electronics Corporation, Andrea Audio Stub Driver) 0xF8A7C000 C:\WINDOWS\System32\Drivers\Beep.SYS 8192 bytes (Microsoft Corporation, BEEP Driver) 0xF8A82000 C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS 8192 bytes 0xF8A7A000 C:\WINDOWS\System32\Drivers\Fs_Rec.SYS 8192 bytes (Microsoft Corporation, File System Recognizer Driver) 0xF8A3A000 intelide.sys 8192 bytes (Microsoft Corporation, Intel PCI IDE Driver) 0xF8A36000 C:\WINDOWS\system32\KDCOM.DLL 8192 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL) 0xF8A7E000 C:\WINDOWS\System32\Drivers\mnmdd.SYS 8192 bytes (Microsoft Corporation, Frame buffer simulator) 0xF8AAE000 C:\WINDOWS\System32\Drivers\ParVdm.SYS 8192 bytes (Microsoft Corporation, VDM Parallel Driver) 0xF8A80000 C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 8192 bytes (Microsoft Corporation, RDP Miniport) 0xF8A4A000 C:\WINDOWS\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator) 0xF8A52000 C:\WINDOWS\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver) 0xF8A38000 C:\WINDOWS\system32\DRIVERS\WMILIB.SYS 8192 bytes (Microsoft Corporation, WMILIB WMI support library Dll) 0xF8C47000 C:\WINDOWS\system32\DRIVERS\audstub.sys 4096 bytes (Microsoft Corporation, AudStub Driver) 0xF8B2B000 C:\WINDOWS\System32\drivers\dxgthk.sys 4096 bytes (Microsoft Corporation, DirectX Graphics Driver Thunk) 0xF8C37000 C:\WINDOWS\System32\Drivers\Null.SYS 4096 bytes (Microsoft Corporation, NULL Driver) 0xF8AFE000 pciide.sys 4096 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver) ============================================== >Stealth ==============================================
  24. frenchfriedfrenchmen
    My computer is going very slow,and when I booted to safe mode it froze,is DDS a large file?Can I delete it now if it is?
  25. frenchfriedfrenchmen
    With the advice from the GMER website I changed its name from its original.exe to test,but nothing has improved
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.