Jump to content

Search the Community

Showing results for tags 'attack'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Nebula
    • Malwarebytes Nebula Modules
    • Malwarebytes Endpoint Security
    • Other Malwarebytes Business Products
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 6 results

  1. Recently I suffered an attack on my PC. I ran windows defender (the default option in Windows 10) and it identified a Trojan. This attack among other things, deleted a bunch of my files. I decided to try malwarebytes and it quarantined a bunch of files. However, I am constantly receiving notifications every minute about a website that malwarebytes is blocking time and time again. I am uploading a screenshot of this notification. What should I do to fix this? An unrelated question would be, can a trojan read pictures and identify words on a picture? Thanks!
  2. When any browser is opened after upgrading to MB to 3.x, there are constant MB popups, BIG ONEs that show website blocked. The website is elasticbeanstalk.com, and each popup has a different sub-domain-name (see image attached where the red highlighted area changes with each popup from MB). I could exclude them all, but they are still pounding on the door. When it is happening, browsers have a hard time loading anything. I read sticky about running the "free" third-party scanner called Farbar(?) and read the data it sends. My response is 'really"!!! I see no logic in revealing everything. Farbar states "If an entry is included in the fixlist, the registry item will be restored to default or removed." A warning would have been nice. I had hoped Malwarebytes did the job of helping to find and fix the problem, not just announce it with constant popups. I know the popups can be disabled, but it doesn't fix the problem. Thanks in advance scan-summary.txt
  3. Hello guys, unfortunately im beeing confronted with performance issues and supposedly attacks on my computer. As you can read in the title svchost is getting blocked infrequently with alternating source ip adresses. Thank you for your help in advance. FRST.txt Addition.txt
  4. Hello. I don't know where else to put this, so I will put it here. One day I was on Google chrome and when I opened a new tab, it went to the bing search engine. I got that fixed, but then my default search engine was bing. The next day(today) it said that someone tried to open my gmail. I just changed my password.The reason i am not scanning with DDS is because this is web malware. Please use web browser/hacker detector scanners instead of normal malware scanners like MBAM, RougeKiller, or ComboFix. Thanks, and I hope you can help. P.S: the email hacker's info and date was: Wednesday, February 19, 2014 11:54:57 PM UTC IP Address: 175.0.235.15 Location: Changsha, Hunan, China
  5. Hi everyone, i'm having a chronic problem with Svchost.exe having connections with random IPs. For the past 3 days now Mbam has been blocking many incoming IP connections under the Svchost process, with all IP addresses coming from Ecatel LTD in the Netherlands (except for 1 attempt yesterday from Harbin, China). I'm seeing these blocked connections about 10 times per day, and they seem to be from different Ecatel IPs each time. The latest IP was 93.174.93.67. All ports targeted were different each time. Also, today after another IP connection block, that same IP ended up invoking my BitDef firewall to prompt for permission for Chrome having an outgoing connection to that same IP few seconds later! I blocked it. Yesterday I disconnected my internet and scanned my pc with MBAM, Bitdefender AV, Malwarebytes Anti-rootkit, TDSSkiller, Kaspersky Virus Removal tool, Microsoft Safety Scanner (msert.exe), Microsoft Malware Removal tool, and all these scans found nothing. Today i scanned using Rkill, Combofix, and Adwcleaner with results attached below. This is a very chronic problem i've had for the past year, with Mbam blocking svchost connections or my former Comodo firewall prompting for svchost connections from random IPs from Brazil, China, Russia, Iceland, and now Ecatel, and each time i run an AV, MBAM, Rkill and Combofix scan it found no malware (except once combofix deleted a worm few months ago). The majority of these were inbound, although many were outbound too. I also reformatted my pc many times in the past few months ( as recently as 4 days ago), because I didn't know what problem is going on, but i don't think the marathon of reformatting is a lasting solution because it'll reoccur again sooner or later. I also tried blocking svchost from having any incoming connections with my firewall, but it only worked for last night. For some reason, right after i made that firewall rule, i couldn't find it in the list of firewall rules... Is there any way I can make this problem stop once and for all? What is it that causes svchost to make these connections? Can i just block svchost altogether from connecting to the web? I would greatly appreciate any help to stop this madness. Thanks Rkill.txt Rkill.txt ComboFix.txt AdwCleanerR0.txt AdwCleanerS0.txt
  6. Ran Malarebytes without finding this and can't seem to navigate to these popular sites in any of my browsers, Google, Firefox, IE. just get that screen asking to complete a survey, although malwarebytes has been blocking it all I get now is a blank page... after looking at the DDS file it looks like I have a few issues... your help is greatly appreciated heres the files from DDS: DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.21.2 Run by Administrator at 11:40:52 on 2013-05-08 Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.3067.1655 [GMT -7:00] . AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508} . ============== Running Processes ================ . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\system32\atieclxx.exe C:\Windows\System32\spoolsv.exe C:\Program Files\SUPERAntiSpyware\SASCORE.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Hotspot Shield\bin\openvpnas.exe C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe C:\Program Files\Hotspot Shield\bin\hsswd.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe C:\Windows\System32\tcpsvcs.exe C:\Windows\System32\snmp.exe C:\Program Files\AOL\DataMask by AOL\epservice.exe C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWlan.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\taskhost.exe C:\Program Files\AOL\DataMask by AOL\ep.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\AOL\DataMask by AOL\dps.exe C:\Program Files\AOL\DataMask by AOL\pl.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\Common Files\AOL\1367732423\ee\aolsoftware.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Users\Administrator\AppData\Local\Akamai\netsession_win.exe C:\Users\Administrator\AppData\Local\Akamai\netsession_win.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Windows\system32\taskeng.exe C:\Program Files\SetPoint\SetPoint.exe C:\Users\Administrator\Desktop\PCMeter\PCMeterV0.3.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Hotspot Shield\bin\openvpntray.exe C:\Windows\system32\conhost.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\System32\svchost.exe -k ipripsvc C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uProxyOverride = <local> mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\programdata\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll BHO: DataMask by AOL: {3955aa73-8c60-4a9b-acdb-0c2edb1b6748} - c:\program files\aol\datamask by aol\epbho32.dll BHO: AppGraffiti: {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} - c:\program files\appgraffiti\AppGraffiti.dll BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll BHO: DefaultTab Browser Helper: {7F6AFBF1-E065-4627-A2FD-810366367D01} - BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll BHO: Hotspot Shield Class: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - c:\program files\hotspot shield\hssie\HssIE.dll BHO: DataMask by AOL: {ff507020-a257-4527-a222-b6f5732e55ee} - c:\program files\aol\datamask by aol\plbho32.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: <No Name>: {ae07101b-46d4-4a98-af68-0333ea26e113} - LocalServer32 - <no file> TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [sUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe uRun: [Akamai NetSession Interface] "c:\users\administrator\appdata\local\akamai\netsession_win.exe" mRun: [starter] c:\program files\driver-soft\drivergenius\StarterW3i.exe mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [Data Protection Suite] "c:\program files\aol\datamask by aol\dps.exe" mRun: [PhishLock] "c:\program files\aol\datamask by aol\pl.exe" mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot mRun: [HostManager] c:\program files\common files\aol\1367732423\ee\AOLSoftware.exe mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE dRun: [Exetender] "c:\program files\free ride games\GPlayer.exe" StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\setpoint.lnk - c:\program files\setpoint\SetPoint.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 TCP: NameServer = 192.168.1.1 TCP: Interfaces\{036BEE32-ADF8-4545-A30B-1F58E63E0FE2} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{036BEE32-ADF8-4545-A30B-1F58E63E0FE2}\14D616E64616 : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{036BEE32-ADF8-4545-A30B-1F58E63E0FE2}\2656C6B696E6E2332663E2765756374737 : DHCPNameServer = 192.168.169.1 TCP: Interfaces\{4CE62BF1-B672-4A6D-802E-4CB49D5343DA} : DHCPNameServer = 192.168.42.129 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\16474777966696 : DHCPNameServer = 192.168.6.1 64.134.255.2 64.134.255.10 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\2516D6164616 : DHCPNameServer = 192.168.2.1 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\34624472370264275656027596F56496 : DHCPNameServer = 208.67.222.222 208.67.220.220 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\458656026456564696E676023547164796F6E6 : DHCPNameServer = 192.168.254.254 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\4596070797D27657563747 : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.33.1 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\86F6D656027457563747 : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{4E55D295-F01F-42F6-A231-43D1498ADC24}\E4F62747865627E61557563747D456564796E676 : DHCPNameServer = 4.2.2.1 TCP: Interfaces\{8A5F0E29-CD98-4B27-B1B0-8491E9616787} : DHCPNameServer = 8.8.8.8 TCP: Interfaces\{B0A1DE32-301C-4595-BD15-84AD4E594649} : DHCPNameServer = 172.26.38.1 172.26.38.2 AppInit_DLLs= c:\progra~2\browse~1\261095~1.52\{c16c1~1\browse~1.dll SSODL: WebCheck - <orphaned> SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\26.0.1410.64\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome Hosts: 184.22.81.15 www.imeetzu.com Hosts: 184.22.81.15 imeetzu.com Hosts: 184.22.81.15 www.omegle.com Hosts: 184.22.81.15 omegle.com Hosts: 184.22.81.15 www.runescape.com . Note: multiple HOSTS entries found. Please refer to Attach.txt . ================= FIREFOX =================== . FF - ProfilePath - c:\users\administrator\appdata\roaming\mozilla\firefox\profiles\oys2u84h.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll FF - plugin: c:\program files\free ride games\npExentCtl.dll FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll FF - plugin: c:\program files\google\update\1.3.21.135\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll FF - plugin: c:\programdata\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll FF - plugin: c:\programdata\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll FF - plugin: c:\programdata\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll FF - plugin: c:\programdata\realnetworks\realdownloader\browserplugins\npdlplugin.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_2_202_235.dll FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_169.dll FF - plugin: c:\windows\system32\npDeployJava1.dll FF - plugin: c:\windows\system32\npmproxy.dll FF - ExtSQL: 2013-03-25 09:13; afurladvisor@anchorfree.com; c:\program files\mozilla firefox\extensions\afurladvisor@anchorfree.com FF - ExtSQL: 2013-04-22 13:25; sss@sentrybay.com; c:\program files\aol\datamask by aol\ffext FF - ExtSQL: 2013-04-25 10:53; {DAC3F861-B30D-40dd-9166-F4E75327FAC7}; c:\programdata\realnetworks\realdownloader\browserplugins\firefox\Ext . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-1-20 195296] R1 HssDRV6;Hotspot Shield Routing Driver 6;c:\windows\system32\drivers\hssdrv6.sys [2013-4-24 40648] R1 MpKsl92a13521;MpKsl92a13521;c:\programdata\microsoft\microsoft antimalware\definition updates\{07c6ffc2-2077-4578-a224-1bcc9923734f}\MpKsl92a13521.sys [2013-5-8 29904] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664] R1 TsLwWfF;WiFi Capture Driver;c:\windows\system32\drivers\TsLwWfF.sys [2012-10-6 23184] R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608] R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-8-18 176128] R2 EntryProtect;DataMask by AOL;c:\program files\aol\datamask by aol\epservice.exe [2012-11-13 45960] R2 hshld;Hotspot Shield Service;c:\program files\hotspot shield\bin\openvpnas.exe [2013-4-26 570664] R2 HssWd;Hotspot Shield Monitoring Service;c:\program files\hotspot shield\bin\hsswd.exe [2013-4-26 390440] R2 iprip;RIP Listener;c:\windows\system32\svchost.exe -k ipripsvc [2009-7-13 20992] R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-4-30 418376] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-4-30 701512] R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-3-6 39056] R2 Realtek87B;Realtek87B;c:\program files\realtek\rtl8187 wireless lan utility\RtlService.exe [2013-3-15 40960] R2 X6XSEx;X6XSEx;c:\program files\free ride games\X6XSEx.sys [2012-4-28 46184] R3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;c:\windows\system32\drivers\ATSwpWDF.sys [2009-12-3 625224] R3 epfilter;epfilter;c:\windows\system32\drivers\epfilter.sys [2013-4-22 18240] R3 k57nd60x;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\k57nd60x.sys [2009-6-7 273448] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-4-30 22856] R3 NETwNs32;___ Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit;c:\windows\system32\drivers\NETwNs32.sys [2011-1-27 7087616] R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\rtl8187.sys [2013-3-15 375808] R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\drivers\taphss6.sys [2013-4-24 37064] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 DefaultTabSearch;DefaultTabSearch;c:\program files\defaulttab\DefaultTabSearch.exe [2012-4-2 621568] S2 DefaultTabUpdate;DefaultTabUpdate;"c:\users\stem\appdata\roaming\defaulttab\defaulttab\dtupdate.exe" --> c:\users\stem\appdata\roaming\defaulttab\defaulttab\DTUpdate.exe [?] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888] S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2011-8-2 18432] S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168] S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2013-1-20 100328] S3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-1-27 295232] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-3-29 14848] S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [2011-5-13 121064] S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [2011-5-13 12776] S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [2011-5-13 136808] S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [2011-5-13 114280] S3 StorSvc;Storage Service;c:\windows\system32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 20992] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-3-29 49664] S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-4-22 1343400] . =============== Created Last 30 ================ . 2013-05-08 15:42:49 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{07c6ffc2-2077-4578-a224-1bcc9923734f}\MpKsl92a13521.sys 2013-05-07 19:52:28 6906960 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{07c6ffc2-2077-4578-a224-1bcc9923734f}\mpengine.dll 2013-05-07 10:42:45 53248 ----a-w- c:\windows\system32\CSVer.dll 2013-05-07 10:14:41 170512 ----a-w- c:\windows\system32\kemutb.dll 2013-05-07 10:14:40 84496 ----a-w- c:\windows\system32\KemXML.dll 2013-05-07 10:14:40 145936 ----a-w- c:\windows\system32\KemUtil.dll 2013-05-07 10:14:40 117264 ----a-w- c:\windows\system32\KemWnd.dll 2013-05-07 10:14:14 -------- d-----w- c:\program files\SetPoint 2013-05-07 10:09:51 -------- d-----w- c:\program files\Dell 2013-05-07 10:02:00 38400 ----a-w- c:\windows\system32\drivers\rixdptsk.sys 2013-05-07 10:01:59 90112 ----a-w- c:\windows\system32\snymsico.dll 2013-05-07 10:01:59 48128 ----a-w- c:\windows\system32\drivers\rimmptsk.sys 2013-05-07 10:01:59 44544 ----a-w- c:\windows\system32\drivers\rimsptsk.sys 2013-05-07 10:01:59 172032 ----a-w- c:\windows\system32\rixdicon.dll 2013-05-07 10:00:04 -------- d-----w- c:\program files\Broadcom 2013-05-07 07:17:01 -------- d-----w- c:\windows\system32\wbem\framework\root\AddGadgets 2013-05-07 07:17:01 -------- d-----w- c:\windows\system32\wbem\framework\root 2013-05-07 07:17:01 -------- d-----w- c:\windows\system32\wbem\Framework 2013-05-06 18:50:29 6906960 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2013-05-05 05:41:31 -------- d-----w- c:\users\administrator\appdata\roaming\AOL 2013-05-05 05:41:13 58696 ----a-w- c:\windows\system32\AOLParconLink.exe 2013-05-05 05:41:13 -------- d-----w- c:\programdata\Viewpoint 2013-05-05 05:41:13 -------- d-----w- c:\program files\Viewpoint 2013-05-05 05:40:41 33588 ----a-w- c:\windows\system32\drivers\wanatw4.sys 2013-05-05 05:40:32 -------- d-----w- c:\users\administrator\appdata\local\AOL 2013-05-05 05:40:08 -------- d-----w- c:\program files\common files\AOL 2013-05-05 05:40:07 -------- d-----w- c:\program files\common files\aolshare 2013-05-05 05:40:07 -------- d-----w- c:\program files\AOL Desktop 9.7 2013-05-04 01:43:48 -------- d-----w- c:\users\administrator\appdata\roaming\Hotspot Shield 2013-05-01 05:28:54 -------- d-----w- c:\users\administrator\appdata\roaming\SUPERAntiSpyware.com 2013-05-01 05:28:48 -------- d-----w- c:\programdata\SUPERAntiSpyware.com 2013-05-01 05:28:48 -------- d-----w- c:\program files\SUPERAntiSpyware 2013-05-01 04:12:49 -------- d-----w- c:\users\administrator\appdata\roaming\Malwarebytes 2013-05-01 04:12:32 -------- d-----w- c:\programdata\Malwarebytes 2013-05-01 04:12:31 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-05-01 04:12:31 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-05-01 04:10:08 -------- d-----w- c:\users\administrator\appdata\local\Programs 2013-04-25 17:54:11 -------- d-----w- c:\users\administrator\appdata\roaming\RealNetworks 2013-04-25 17:53:35 -------- d-----w- c:\program files\RealNetworks 2013-04-25 17:53:32 -------- d-----w- c:\programdata\RealNetworks 2013-04-25 17:53:22 -------- d-----w- c:\program files\common files\xing shared 2013-04-25 03:26:58 866720 ----a-w- c:\windows\system32\npDeployJava1.dll 2013-04-25 03:26:58 788896 ----a-w- c:\windows\system32\deployJava1.dll 2013-04-25 03:26:55 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2013-04-24 19:25:44 37064 ----a-w- c:\windows\system32\drivers\taphss6.sys 2013-04-24 19:12:34 40648 ----a-w- c:\windows\system32\drivers\hssdrv6.sys 2013-04-23 20:02:54 740840 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll 2013-04-23 20:02:54 706640 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{42322a06-2bea-4729-adc4-f3a9fdbf2a16}\gapaengine.dll 2013-04-23 18:09:01 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys 2013-04-23 04:43:38 -------- d-----w- c:\users\administrator\appdata\roaming\WinZip 2013-04-22 21:53:18 -------- d-----w- c:\programdata\TamoSoft 2013-04-22 21:52:32 -------- d-----w- c:\program files\CommViewWiFi 2013-04-22 21:04:37 -------- d-----w- c:\users\administrator\appdata\local\WinZip 2013-04-22 20:27:11 -------- d-----w- c:\users\administrator\appdata\roaming\SentryBay 2013-04-22 20:25:00 18240 ----a-w- c:\windows\system32\drivers\epfilter.sys 2013-04-22 20:24:30 -------- d-----w- c:\programdata\SentryBay 2013-04-22 19:01:59 -------- d-----w- c:\users\administrator\appdata\local\SentryBay 2013-04-22 19:01:59 -------- d-----w- c:\program files\SentryBay 2013-04-22 01:35:31 71168 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\CNBPP4.DLL 2013-04-18 18:04:41 348160 ----a-w- c:\windows\system32\msvcr71.dll 2013-04-18 18:04:40 499712 ----a-w- c:\windows\system32\msvcp71.dll 2013-04-12 20:39:18 2347008 ----a-w- c:\windows\system32\win32k.sys 2013-04-12 20:39:16 196328 ----a-w- c:\windows\system32\drivers\fvevol.sys 2013-04-12 20:39:14 3968856 ----a-w- c:\windows\system32\ntkrnlpa.exe 2013-04-12 20:39:14 3913560 ----a-w- c:\windows\system32\ntoskrnl.exe 2013-04-12 20:39:13 69632 ----a-w- c:\windows\system32\smss.exe 2013-04-12 20:39:13 38912 ----a-w- c:\windows\system32\csrsrv.dll . ==================== Find3M ==================== . 2013-05-05 04:46:55 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2013-05-05 04:46:55 691592 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2013-05-02 15:28:50 238872 ------w- c:\windows\system32\MpSigStub.exe 2013-03-24 13:26:08 124 ----a-w- c:\users\administrator\advanced_ip_scanner_MAC.bin 2013-03-24 13:26:07 387 ----a-w- c:\users\administrator\advanced_ip_scanner_Favorites.bin 2013-02-21 10:30:16 1766912 ----a-w- c:\windows\system32\wininet.dll 2013-02-21 10:29:39 2877440 ----a-w- c:\windows\system32\jscript9.dll 2013-02-21 10:29:37 61440 ----a-w- c:\windows\system32\iesetup.dll 2013-02-21 10:29:37 109056 ----a-w- c:\windows\system32\iesysprep.dll 2013-02-19 12:01:03 2706432 ----a-w- c:\windows\system32\mshtml.tlb 2013-02-19 11:10:53 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2013-02-12 04:48:31 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2013-02-12 04:48:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll 2013-02-12 03:32:46 15872 ----a-w- c:\windows\system32\drivers\usb8023x.sys 2013-02-12 03:32:45 15872 ----a-w- c:\windows\system32\drivers\usb8023.sys . ============= FINISH: 11:41:42.31 =============== Attach file: UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Professional Boot Device: \Device\HarddiskVolume1 Install Date: 4/21/2012 6:25:04 PM System Uptime: 5/8/2013 8:42:05 AM (3 hours ago) . Motherboard: Dell Inc. | | 0P786H Processor: Intel® Core™2 Duo CPU T6400 @ 2.00GHz | U2E1 | 2000/533mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 298 GiB total, 238.33 GiB free. D: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP69: 4/22/2013 2:53:53 PM - Device Driver Package Install: TamoSoft Network Service RP70: 4/23/2013 1:02:03 PM - Windows Update RP71: 4/24/2013 8:26:26 PM - Installed Java 7 Update 21 RP72: 4/29/2013 4:18:05 PM - Windows Update RP73: 5/3/2013 9:27:43 AM - Windows Update RP74: 5/3/2013 6:44:47 PM - Device Driver Package Install: Anchorfree Inc Network Service RP75: 5/3/2013 6:45:57 PM - Device Driver Package Install: Anchorfree HSS VPN Adapter Network adapters RP76: 5/3/2013 7:05:34 PM - Device Driver Package Install: Anchorfree HSS VPN Adapter Network adapters RP77: 5/6/2013 11:50:03 AM - Windows Update RP78: 5/6/2013 5:05:25 PM - Removed InstallIQ Updater RP79: 5/7/2013 2:59:36 AM - Installed Broadcom Gigabit NetLink Controller. RP81: 5/7/2013 3:01:49 AM - Installed RICOH Media Driver ver.2.07.01.00 RP82: 5/7/2013 3:09:39 AM - Installed QuickSet. RP84: 5/7/2013 3:17:59 AM - Installed RICOH Media Driver ver.2.07.01.00 RP85: 5/7/2013 12:51:02 PM - Windows Update . ==== Hosts File Hijack ====================== . Hosts: 184.22.81.15 www.imeetzu.com Hosts: 184.22.81.15 imeetzu.com Hosts: 184.22.81.15 www.omegle.com Hosts: 184.22.81.15 omegle.com Hosts: 184.22.81.15 www.runescape.com Hosts: 184.22.81.15 runescape.com Hosts: 184.22.81.15 google.com Hosts: 184.22.81.15 www.google.ae Hosts: 184.22.81.15 www.google.com.af Hosts: 184.22.81.15 www.google.com.ag Hosts: 184.22.81.15 www.google.off.ai Hosts: 184.22.81.15 www.google.am Hosts: 184.22.81.15 www.google.com.ar Hosts: 184.22.81.15 www.google.as Hosts: 184.22.81.15 www.google.at Hosts: 184.22.81.15 www.google.com.au Hosts: 184.22.81.15 www.google.az Hosts: 184.22.81.15 www.google.ba Hosts: 184.22.81.15 www.google.com.bd Hosts: 184.22.81.15 www.google.be Hosts: 184.22.81.15 www.google.bg Hosts: 184.22.81.15 www.google.com.bh Hosts: 184.22.81.15 www.google.bi Hosts: 184.22.81.15 www.google.com.bo Hosts: 184.22.81.15 www.google.com.br Hosts: 184.22.81.15 www.google.bs Hosts: 184.22.81.15 www.google.co.bw Hosts: 184.22.81.15 www.google.com.bz Hosts: 184.22.81.15 www.google.ca Hosts: 184.22.81.15 www.google.cd Hosts: 184.22.81.15 www.google.cg Hosts: 184.22.81.15 www.google.ch Hosts: 184.22.81.15 www.google.ci Hosts: 184.22.81.15 www.google.co.ck Hosts: 184.22.81.15 www.google.cl Hosts: 184.22.81.15 www.google.cn Hosts: 184.22.81.15 www.google.com.co Hosts: 184.22.81.15 www.google.co.cr Hosts: 184.22.81.15 www.google.com.cu Hosts: 184.22.81.15 www.google.cz Hosts: 184.22.81.15 www.google.de Hosts: 184.22.81.15 www.google.dj Hosts: 184.22.81.15 www.google.dk Hosts: 184.22.81.15 www.google.dm Hosts: 184.22.81.15 www.google.com.do Hosts: 184.22.81.15 www.google.com.ec Hosts: 184.22.81.15 www.google.ee Hosts: 184.22.81.15 www.google.com.eg Hosts: 184.22.81.15 www.google.es Hosts: 184.22.81.15 www.google.com.et Hosts: 184.22.81.15 www.google.fi Hosts: 184.22.81.15 www.google.com.fj Hosts: 184.22.81.15 www.google.fm Hosts: 184.22.81.15 www.google.fr Hosts: 184.22.81.15 www.google.ge Hosts: 184.22.81.15 www.google.gg Hosts: 184.22.81.15 www.google.com.gi Hosts: 184.22.81.15 www.google.gl Hosts: 184.22.81.15 www.google.gm Hosts: 184.22.81.15 www.google.gr Hosts: 184.22.81.15 www.google.com.gt Hosts: 184.22.81.15 www.google.gy Hosts: 184.22.81.15 www.google.com.hk Hosts: 184.22.81.15 www.google.hn Hosts: 184.22.81.15 www.google.hr Hosts: 184.22.81.15 www.google.ht Hosts: 184.22.81.15 www.google.hu Hosts: 184.22.81.15 www.google.co.id Hosts: 184.22.81.15 www.google.ie Hosts: 184.22.81.15 www.google.co.il Hosts: 184.22.81.15 www.google.co.im Hosts: 184.22.81.15 www.google.co.in Hosts: 184.22.81.15 www.google.is Hosts: 184.22.81.15 www.google.it Hosts: 184.22.81.15 www.google.co.je Hosts: 184.22.81.15 www.google.com.jm Hosts: 184.22.81.15 www.google.jo Hosts: 184.22.81.15 www.google.co.jp Hosts: 184.22.81.15 www.google.co.ke Hosts: 184.22.81.15 www.google.kg Hosts: 184.22.81.15 www.google.co.kr Hosts: 184.22.81.15 www.google.kz Hosts: 184.22.81.15 www.google.li Hosts: 184.22.81.15 www.google.lk Hosts: 184.22.81.15 www.google.co.ls Hosts: 184.22.81.15 www.google.lt Hosts: 184.22.81.15 www.google.lu Hosts: 184.22.81.15 www.google.lv Hosts: 184.22.81.15 www.google.com.ly Hosts: 184.22.81.15 www.google.co.ma Hosts: 184.22.81.15 www.google.md Hosts: 184.22.81.15 www.google.mn Hosts: 184.22.81.15 www.google.ms Hosts: 184.22.81.15 www.google.com.mt Hosts: 184.22.81.15 www.google.mu Hosts: 184.22.81.15 www.google.mw Hosts: 184.22.81.15 www.google.com.mx Hosts: 184.22.81.15 www.google.com.my Hosts: 184.22.81.15 www.google.com.na Hosts: 184.22.81.15 www.google.com.nf Hosts: 184.22.81.15 www.google.com.ng Hosts: 184.22.81.15 www.google.com.ni Hosts: 184.22.81.15 www.google.nl Hosts: 184.22.81.15 www.google.no Hosts: 184.22.81.15 www.google.com.np Hosts: 184.22.81.15 www.google.nr Hosts: 184.22.81.15 www.google.nu Hosts: 184.22.81.15 www.google.co.nz Hosts: 184.22.81.15 www.google.com.om Hosts: 184.22.81.15 www.google.com.pa Hosts: 184.22.81.15 www.google.com.pe Hosts: 184.22.81.15 www.google.com.ph Hosts: 184.22.81.15 www.google.com.pk Hosts: 184.22.81.15 www.google.pl Hosts: 184.22.81.15 www.google.pn Hosts: 184.22.81.15 www.google.com.pr Hosts: 184.22.81.15 www.google.pt Hosts: 184.22.81.15 www.google.com.py Hosts: 184.22.81.15 www.google.com.qa Hosts: 184.22.81.15 www.google.ro Hosts: 184.22.81.15 www.google.rw Hosts: 184.22.81.15 www.google.com.sa Hosts: 184.22.81.15 www.google.com.sb Hosts: 184.22.81.15 www.google.sc Hosts: 184.22.81.15 www.google.se Hosts: 184.22.81.15 www.google.com.sg Hosts: 184.22.81.15 www.google.sh Hosts: 184.22.81.15 www.google.si Hosts: 184.22.81.15 www.google.sk Hosts: 184.22.81.15 www.google.sn Hosts: 184.22.81.15 www.google.sm Hosts: 184.22.81.15 www.google.com.sv Hosts: 184.22.81.15 www.google.co.th Hosts: 184.22.81.15 www.google.com.tj Hosts: 184.22.81.15 www.google.tm Hosts: 184.22.81.15 www.google.to Hosts: 184.22.81.15 www.google.tp Hosts: 184.22.81.15 www.google.com.tr Hosts: 184.22.81.15 www.google.tt Hosts: 184.22.81.15 www.google.com.tw Hosts: 184.22.81.15 www.google.com.ua Hosts: 184.22.81.15 www.google.co.ug Hosts: 184.22.81.15 www.google.com.uy Hosts: 184.22.81.15 www.google.co.uz Hosts: 184.22.81.15 www.google.com.vc Hosts: 184.22.81.15 www.google.co.ve Hosts: 184.22.81.15 www.google.vg Hosts: 184.22.81.15 www.google.co.vi Hosts: 184.22.81.15 www.google.com.vn Hosts: 184.22.81.15 www.google.vu Hosts: 184.22.81.15 www.google.ws Hosts: 184.22.81.15 www.google.co.za Hosts: 184.22.81.15 www.google.co.zm Hosts: 184.22.81.15 google.ae Hosts: 184.22.81.15 google.com.af Hosts: 184.22.81.15 google.com.ag Hosts: 184.22.81.15 google.off.ai Hosts: 184.22.81.15 google.am Hosts: 184.22.81.15 google.com.ar Hosts: 184.22.81.15 google.as Hosts: 184.22.81.15 google.at Hosts: 184.22.81.15 google.com.au Hosts: 184.22.81.15 google.az Hosts: 184.22.81.15 google.ba Hosts: 184.22.81.15 google.com.bd Hosts: 184.22.81.15 google.be Hosts: 184.22.81.15 google.bg Hosts: 184.22.81.15 google.com.bh Hosts: 184.22.81.15 google.bi Hosts: 184.22.81.15 google.com.bo Hosts: 184.22.81.15 google.com.br Hosts: 184.22.81.15 google.bs Hosts: 184.22.81.15 google.co.bw Hosts: 184.22.81.15 google.com.bz Hosts: 184.22.81.15 google.ca Hosts: 184.22.81.15 google.cd Hosts: 184.22.81.15 google.cg Hosts: 184.22.81.15 google.ch Hosts: 184.22.81.15 google.ci Hosts: 184.22.81.15 google.co.ck Hosts: 184.22.81.15 google.cl Hosts: 184.22.81.15 google.cn Hosts: 184.22.81.15 google.com.co Hosts: 184.22.81.15 google.co.cr Hosts: 184.22.81.15 google.com.cu Hosts: 184.22.81.15 google.cz Hosts: 184.22.81.15 google.de Hosts: 184.22.81.15 google.dj Hosts: 184.22.81.15 google.dk Hosts: 184.22.81.15 google.dm Hosts: 184.22.81.15 google.com.do Hosts: 184.22.81.15 google.com.ec Hosts: 184.22.81.15 google.ee Hosts: 184.22.81.15 google.com.eg Hosts: 184.22.81.15 google.es Hosts: 184.22.81.15 google.com.et Hosts: 184.22.81.15 google.fi Hosts: 184.22.81.15 google.com.fj Hosts: 184.22.81.15 google.fm Hosts: 184.22.81.15 google.fr Hosts: 184.22.81.15 google.ge Hosts: 184.22.81.15 google.gg Hosts: 184.22.81.15 google.com.gi Hosts: 184.22.81.15 google.gl Hosts: 184.22.81.15 google.gm Hosts: 184.22.81.15 google.gr Hosts: 184.22.81.15 google.com.gt Hosts: 184.22.81.15 google.gy Hosts: 184.22.81.15 google.com.hk Hosts: 184.22.81.15 google.hn Hosts: 184.22.81.15 google.hr Hosts: 184.22.81.15 google.ht Hosts: 184.22.81.15 google.hu Hosts: 184.22.81.15 google.co.id Hosts: 184.22.81.15 google.ie Hosts: 184.22.81.15 google.co.il Hosts: 184.22.81.15 google.co.im Hosts: 184.22.81.15 google.co.in Hosts: 184.22.81.15 google.is Hosts: 184.22.81.15 google.it Hosts: 184.22.81.15 google.co.je Hosts: 184.22.81.15 google.com.jm Hosts: 184.22.81.15 google.jo Hosts: 184.22.81.15 google.co.jp Hosts: 184.22.81.15 google.co.ke Hosts: 184.22.81.15 google.kg Hosts: 184.22.81.15 google.co.kr Hosts: 184.22.81.15 google.kz Hosts: 184.22.81.15 google.li Hosts: 184.22.81.15 google.lk Hosts: 184.22.81.15 google.co.ls Hosts: 184.22.81.15 google.lt Hosts: 184.22.81.15 google.lu Hosts: 184.22.81.15 google.lv Hosts: 184.22.81.15 google.com.ly Hosts: 184.22.81.15 google.co.ma Hosts: 184.22.81.15 google.md Hosts: 184.22.81.15 google.mn Hosts: 184.22.81.15 google.ms Hosts: 184.22.81.15 google.com.mt Hosts: 184.22.81.15 google.mu Hosts: 184.22.81.15 google.mw Hosts: 184.22.81.15 google.com.mx Hosts: 184.22.81.15 google.com.my Hosts: 184.22.81.15 google.com.na Hosts: 184.22.81.15 google.com.nf Hosts: 184.22.81.15 google.com.ng Hosts: 184.22.81.15 google.com.ni Hosts: 184.22.81.15 google.nl Hosts: 184.22.81.15 google.no Hosts: 184.22.81.15 google.com.np Hosts: 184.22.81.15 google.nr Hosts: 184.22.81.15 google.nu Hosts: 184.22.81.15 google.co.nz Hosts: 184.22.81.15 google.com.om Hosts: 184.22.81.15 google.com.pa Hosts: 184.22.81.15 google.com.pe Hosts: 184.22.81.15 google.com.ph Hosts: 184.22.81.15 google.com.pk Hosts: 184.22.81.15 google.pl Hosts: 184.22.81.15 google.pn Hosts: 184.22.81.15 google.com.pr Hosts: 184.22.81.15 google.pt Hosts: 184.22.81.15 google.com.py Hosts: 184.22.81.15 google.com.qa Hosts: 184.22.81.15 google.ro Hosts: 184.22.81.15 google.ru Hosts: 184.22.81.15 google.rw Hosts: 184.22.81.15 google.com.sa Hosts: 184.22.81.15 google.com.sb Hosts: 184.22.81.15 google.sc Hosts: 184.22.81.15 google.se Hosts: 184.22.81.15 google.com.sg Hosts: 184.22.81.15 google.sh Hosts: 184.22.81.15 google.si Hosts: 184.22.81.15 google.sk Hosts: 184.22.81.15 google.sn Hosts: 184.22.81.15 google.sm Hosts: 184.22.81.15 google.com.sv Hosts: 184.22.81.15 google.co.th Hosts: 184.22.81.15 google.com.tj Hosts: 184.22.81.15 google.tm Hosts: 184.22.81.15 google.to Hosts: 184.22.81.15 google.tp Hosts: 184.22.81.15 google.com.tr Hosts: 184.22.81.15 google.tt Hosts: 184.22.81.15 google.com.tw Hosts: 184.22.81.15 google.com.ua Hosts: 184.22.81.15 google.co.ug Hosts: 184.22.81.15 google.co.uk Hosts: 184.22.81.15 google.com.uy Hosts: 184.22.81.15 google.co.uz Hosts: 184.22.81.15 google.com.vc Hosts: 184.22.81.15 google.co.ve Hosts: 184.22.81.15 google.vg Hosts: 184.22.81.15 google.co.vi Hosts: 184.22.81.15 google.com.vn Hosts: 184.22.81.15 google.vu Hosts: 184.22.81.15 google.ws Hosts: 184.22.81.15 google.co.za Hosts: 184.22.81.15 google.co.zm Hosts: 184.22.81.15 www.youtube.com Hosts: 184.22.81.15 youtube.com Hosts: 184.22.81.15 msn.com Hosts: 184.22.81.15 facebook.com Hosts: 184.22.81.15 www.yahoo.com Hosts: 184.22.81.15 yahoo.com Hosts: 184.22.81.15 www.hotmail.com Hosts: 184.22.81.15 hotmail.com Hosts: 184.22.81.15 www.bing.com Hosts: 184.22.81.15 bing.com Hosts: 184.22.81.15 www.twitter.com Hosts: 184.22.81.15 twitter.com Hosts: 184.22.81.15 myspace.com Hosts: 184.22.81.15 192.168.1.254 Hosts: 184.22.81.15 localhost Hosts: 184.22.81.15 www.wordpress.org Hosts: 184.22.81.15 wordpress.org Hosts: 184.22.81.15 wikipedia.org Hosts: 184.22.81.15 www.wikipedia.org Hosts: 184.22.81.15 blogspot.com Hosts: 184.22.81.15 wordpress.com Hosts: 184.22.81.15 live.com Hosts: 184.22.81.15 www.ebay.com Hosts: 184.22.81.15 ebay.com Hosts: 184.22.81.15 www.amazon.com Hosts: 184.22.81.15 amazon.com Hosts: 184.22.81.15 www.tumblr.com Hosts: 184.22.81.15 tumblr.com Hosts: 184.22.81.15 www.paypal.com Hosts: 184.22.81.15 paypal.com Hosts: 184.22.81.15 imdb.com Hosts: 184.22.81.15 www.imdb.com Hosts: 184.22.81.15 www.steampowered.com Hosts: 184.22.81.15 steampowered.com Hosts: 184.22.81.15 minecraft.com Hosts: 184.22.81.15 www.minecraft.net Hosts: 184.22.81.15 minecraft.net Hosts: 184.22.81.15 www.minecraft.com Hosts: 184.22.81.15 www.google.com/search ==== Installed Programs ====================== . Adobe AIR Adobe Download Assistant Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader XI (11.0.02) Akamai NetSession Interface AOL Uninstaller (Choose which Products to Remove) AppGraffiti Apple Software Update Broadcom Gigabit NetLink Controller CDDRV_Installer CommView for WiFi Cricket Broadband 1.0 DataMask by AOL DefaultTab DefaultTab Chrome Driver Genius Professional Edition Google Chrome Google Earth Google Talk Plugin Google Toolbar for Internet Explorer Google Update Helper Hotspot Shield 2.93 Java 7 Update 21 Java Auto Updater KhalInstallWrapper Living 3D Dolphin Malwarebytes Anti-Malware version 1.75.0.1300 Microsoft .NET Framework 4 Client Profile Microsoft Security Client Microsoft Security Essentials Microsoft Silverlight Microsoft VC9 runtime libraries Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Mozilla Firefox 20.0.1 (x86 en-US) Mozilla Maintenance Service QuickSet RealDownloader RealNetworks - Microsoft Visual C++ 2008 Runtime RealNetworks - Microsoft Visual C++ 2010 Runtime RealPlayer REALTEK Wireless LAN Driver and Utility RealUpgrade 1.1 RICOH Media Driver ver.2.07.01.00 Roads of Rome Security Update for CAPICOM (KB931906) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) SetPoint SUPERAntiSpyware Swarm Gold The Treasures of Montezuma U3Launcher Unlikely Suspects Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Viewpoint Media Player Windows 7 USB/DVD Download Tool WinZip 17.0 . ==== Event Viewer Messages From Past Week ======== . 5/8/2013 8:46:37 AM, Error: Service Control Manager [7000] - The WinRing0_1_2_0 service failed to start due to the following error: The system cannot find the file specified. 5/8/2013 8:42:42 AM, Error: SNMP [1500] - The SNMP Service encountered an error while accessing the registry key SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. 5/8/2013 8:42:41 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the DefaultTabSearch service to connect. 5/8/2013 8:42:41 AM, Error: Service Control Manager [7000] - The DefaultTabUpdate service failed to start due to the following error: The system cannot find the file specified. 5/8/2013 8:42:41 AM, Error: Service Control Manager [7000] - The DefaultTabSearch service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 5/8/2013 8:42:18 AM, Error: atikmdag [52236] - CPLIB :: General - Invalid Parameter 5/8/2013 8:42:18 AM, Error: atikmdag [43029] - Display is not active 5/8/2013 12:56:07 AM, Error: Service Control Manager [7038] - The WinHttpAutoProxySvc service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:56:07 AM, Error: Service Control Manager [7038] - The WerSvc service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:56:07 AM, Error: Service Control Manager [7038] - The PolicyAgent service was unable to log on as NT Authority\NetworkService with the currently configured password due to the following error: The security account manager (SAM) or local security authority (LSA) server was in the wrong state to perform the security operation. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:56:07 AM, Error: Service Control Manager [7038] - The PolicyAgent service was unable to log on as NT Authority\NetworkService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:56:07 AM, Error: Service Control Manager [7000] - The WinHTTP Web Proxy Auto-Discovery Service service failed to start due to the following error: The service did not start due to a logon failure. 5/8/2013 12:56:07 AM, Error: Service Control Manager [7000] - The IPsec Policy Agent service failed to start due to the following error: The service did not start due to a logon failure. 5/8/2013 12:11:28 AM, Error: Service Control Manager [7038] - The WdiServiceHost service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:11:28 AM, Error: Service Control Manager [7038] - The NisSrv service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:11:28 AM, Error: Service Control Manager [7038] - The netprofm service was unable to log on as NT AUTHORITY\LocalService with the currently configured password due to the following error: The request is not supported. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC). 5/8/2013 12:11:28 AM, Error: Service Control Manager [7000] - The Network List Service service failed to start due to the following error: The service did not start due to a logon failure. 5/8/2013 12:11:28 AM, Error: Service Control Manager [7000] - The Microsoft Network Inspection service failed to start due to the following error: The service did not start due to a logon failure. 5/8/2013 12:11:28 AM, Error: Service Control Manager [7000] - The Diagnostic Service Host service failed to start due to the following error: The service did not start due to a logon failure. 5/6/2013 6:14:14 PM, Error: Service Control Manager [7023] - The Windows Update service terminated with the following error: %%-2147467243 5/4/2013 9:36:59 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start. 5/4/2013 9:19:31 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service VSS with arguments "" in order to run the server: {0B5A2C52-3EB9-470A-96E2-6C6D4570E40F} 5/4/2013 9:16:21 PM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.149.1176.0 Update Source: Microsoft Update Server Update Stage: Search Source Path: Default URL Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.9402.0 Error code: 0x8007043c Error description: This service cannot be started in Safe Mode 5/4/2013 9:16:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334} 5/4/2013 9:06:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030} 5/4/2013 9:06:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} 5/4/2013 9:06:21 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF} 5/4/2013 9:06:12 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC} 5/4/2013 9:06:11 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: discache MpFilter SASDIFSV SASKUTIL spldr Wanarpv6 5/4/2013 10:40:37 PM, Error: Service Control Manager [7030] - The AOL Connectivity Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly. 5/3/2013 7:06:03 PM, Error: Service Control Manager [7034] - The Hotspot Shield Routing Service service terminated unexpectedly. It has done this 1 time(s). 5/3/2013 7:05:59 PM, Error: Service Control Manager [7030] - The Hotspot Shield Service service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.