Google Redirect Virus

[divinetiger]

QuickScan Beta 32-bit v0.9.9.96

-------------------------------

Scan date: Mon Jun 27 21:08:55 2011

Machine ID: B0344BB5

No infection found.

-------------------

Processes

---------

Adobe Reader and Acrobat Manager 4084 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

ConfigFree 3536 C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe

ConfigFree 3000 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

HD Audio Control Panel 2252 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

Intel® Common User Interface 2220 C:\Windows\System32\hkcmd.exe

Intel® Common User Interface 3460 C:\Windows\System32\igfxext.exe

Intel® Common User Interface 2228 C:\Windows\System32\igfxpers.exe

Intel® Common User Interface 2372 C:\Windows\System32\igfxsrvc.exe

Intel® Common User Interface 2212 C:\Windows\System32\igfxtray.exe

Microsoft® Windows® Operating System 1732 C:\Windows\explorer.exe

Microsoft® Windows® Operating System 2892 C:\Windows\System32\taskeng.exe

Synaptics Pointing Device Driver 2272 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

TOSHIBA Flash Cards 3488 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

TOSHIBA HDD SSD Alert 6108 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe

TOSHIBA Service Station 3504 C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe

TOSHIBA Zooming Utility 3472 C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

Windows® Internet Explorer 592 C:\Program Files\Internet Explorer\iexplore.exe

Windows® Internet Explorer 4172 C:\Program Files\Internet Explorer\iexplore.exe

(verified) GoogleToolbarNotifier 1672 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

(verified) Microsoft® Windows® Operating System 1720 C:\Windows\System32\dwm.exe

(verified) Microsoft® Windows® Operating System 1744 C:\Windows\System32\taskhost.exe

Network activity

----------------

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 69.147.86.184

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 63.110.246.9

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 63.110.246.43

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 74.125.224.162

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 69.171.224.13

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 63.110.246.9

Process iexplore.exe (4172) connected on port 80 (HTTP) --> 66.235.142.24

Autoruns and critical files

---------------------------

HWSetup C:\Program Files\TOSHIBA\Utilities\HWSetup.exe

Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

HD Audio Control Panel C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

Intel® Common User Interface C:\Windows\System32\hkcmd.exe

Intel® Common User Interface C:\windows\system32\igfxdev.dll

Intel® Common User Interface C:\Windows\System32\igfxpers.exe

Intel® Common User Interface C:\Windows\System32\igfxtray.exe

KeNotify Application C:\Program Files\TOSHIBA\Utilities\KeNotify.exe

Malwarebytes' Anti-Malware C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

MyToshiba C:\Program Files\TOSHIBA\My Toshiba\MyToshiba.exe

QuickTime C:\Program Files\QuickTime\QTTask.exe

SVPWUTIL Application C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe

Synaptics Pointing Device Driver C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

TOSHIBA Flash Cards C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

TOSHIBA HDD SSD Alert C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe

Toshiba Online Backup C:\Program Files\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe

TOSHIBA Power Saver C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE

TOSHIBA Service Station C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe

TOSHIBA Zooming Utility C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

Windows Live Messenger C:\Program Files\Windows Live\Messenger\msnmsgr.exe

Windows® Internet Explorer c:\windows\system32\webcheck.dll

(verified) GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

(verified) Microsoft® Windows® Operating System c:\windows\system32\userinit.exe

Browser plugins

---------------

AcroIEHelperShim Library C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll

BitDefender QuickScan C:\Windows\Downloaded Program Files\qsax.dll

Google Toolbar for Internet Explorer c:\program files\google\google toolbar\googletoolbar_32.dll

Google Update C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

Java Platform SE 6 U14 C:\Program Files\Java\jre6\bin\jp2ssv.dll

Microsoft® CoReXT C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

Microsoft® CoReXT C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll

QuickTime Plug-in 7.6.9 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll

Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

Symantec Intrusion Detection C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\IPS\IPSBHO.DLL

Windows Live Photo Gallery C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

Windows® Internet Explorer C:\windows\system32\IEFRAME.dll

(verified) Microsoft® Windows® Operating System C:\windows\system32\mswsock.dll

(verified) Microsoft® Windows® Operating System C:\windows\system32\napinsp.dll

(verified) Microsoft® Windows® Operating System C:\windows\system32\NLAapi.dll

(verified) Microsoft® Windows® Operating System C:\windows\system32\pnrpnsp.dll

(verified) Microsoft® Windows® Operating System C:\windows\System32\winrnr.dll

Scan

----

MD5: 12673bcf7b32087df63f0cff550ea40b C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe

MD5: c3104be7d2b689ebe47e2aac64c07530 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

MD5: 203a74767eb81f96a5166b1933db46d0 C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

MD5: bad6bea0de1f69c82bdb74378ce0c20a C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

MD5: 6bf01e200063d7274f3af06d226671f5 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

MD5: da579734b4375740efee86ffdfed57a7 C:\Program Files\Common Files\Microsoft Shared\Windows Live\wlidcli.DLL

MD5: 9d4a1690af93f233e15380398bec7431 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL

MD5: 0a70f4022ec2e14c159efc4f69aa2477 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

MD5: 5461f01b7def17dc90d90b029f874c3b C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

MD5: 17fcc372d03ba39f3aee85198c0ec594 C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

MD5: 45fd64f0c2b5fd2856e453d87d1cd2ca C:\Program Files\ESET\ESET Online Scanner\OnlineScanner.ocx

MD5: 085940dbb5db03b0c60774d193a3b48d C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

MD5: b226054bfa3d3a1920f7b95e54f3e87d C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll

MD5: bd43a986fa0dc0cbf672638a8de444db C:\Program Files\Internet Explorer\ieproxy.dll

MD5: 64efaf916c4009f1b84153d0bb491fb0 C:\Program Files\Internet Explorer\iexplore.exe

MD5: 4da979e6a3269922a16d4653aef26d7f C:\Program Files\Internet Explorer\plugins\nppdf32.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll

MD5: 6c859c6fce6d694eafd7ea3ae66d54db C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll

MD5: 192e39c717013a0bd532b33ac29d6e7d C:\Program Files\Java\jre6\bin\jp2ssv.dll

MD5: 2487c45b64790fc210547919f18fac71 C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

MD5: 545f106781b7ab23651e77c8e5e104c9 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll

MD5: ec60491a5ff57700f10fe0403f7dcad4 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

MD5: 74ca33b3daac6c4f1de9df67ff61b9ec c:\Program Files\Microsoft Silverlight\4.0.60531.0\agcore.dll

MD5: c3e42cbf8215171a524d123a54ae3233 c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll

MD5: db7951146ca1e218e1d3bcff115848a3 C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccIPC.dll

MD5: 7a03683fdec05543a5cf7aa968129a1f C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccL100U.dll

MD5: 6fee15b53d624e06d86759258e1f6a9c C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSet.dll

MD5: e78a365cc3e0fbfc018a33dce01909f8 C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccSvcHst.exe

MD5: abff5f1e970dbc68e2cae682378dc717 C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\ccVrTrst.dll

MD5: 177364f26f682529220af4906131dc2a C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\EFACli.dll

MD5: 21215b293e3af3126d313b2be33723ca C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\IPS\IPSBHO.DLL

MD5: f19b57aac14afdc17ce9385e93d0c35d C:\Program Files\Norton AntiVirus\Engine\18.6.0.29\NavShExt.dll

MD5: 0aee5668eb59912f32ff245bfa72465f C:\Program Files\QuickTime\QTTask.exe

MD5: 967dcd9f36aaea34fe859c9b82e6a4b9 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

MD5: 778b2333591e9d28063d491456da18be C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

MD5: c44d560e441f091ea3b72f778ec60de2 C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

MD5: 1f8a319d29394f9ce1b7ae020df2ebbf C:\Program Files\TOSHIBA\ConfigFree\CFIWmxSvcs.exe

MD5: 2b2c711d49e745113fa682d72a3efa8f C:\Program Files\Toshiba\ConfigFree\CFNotify.dll

MD5: cab0eeaf5295fc96ddd3e19dce27e131 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe

MD5: 8a07221789d46b2ea7dfca2bc807572a C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe

MD5: 995dfc3b647849e31942e13fa2017b11 C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll

MD5: c7f070bdd9700bd4a482401334d3488e C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll

MD5: 15936a348676d246a41a4781e6a34692 C:\Program Files\TOSHIBA\ConfigFree\NDSMUI.dll

MD5: adb67488447d0ff271355a4451ed6c73 C:\Program Files\TOSHIBA\ConfigFree\NDSParts.dll

MD5: 9d77e8a2ee92e9dafac88defcf6d777d C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

MD5: 4b0277f08085fb78113fc157dbf2d596 C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll

MD5: c6a0c54abd119b5f3c52630f08be6040 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnEsc.dll

MD5: 81ca32efcf10c09b9e8b0387f9479074 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll

MD5: 0803424c3751b2f96df8e270e7157bf1 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll

MD5: 08415dc2e0df45d52a0436587adb64ca C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll

MD5: 3010b6f95bb33f44eecf1601ab28fab6 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll

MD5: 05b9079a6663e3c6859e5515145c4951 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll

MD5: 348643bed4f3b17b7199b15392f14974 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll

MD5: 71e22e0be06a21070af772c7b499cfbe C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll

MD5: f52beec973908e99f5b9ff30c8f0800e C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll

MD5: 655dc8c88a87c587ec2f0a4f8990adc9 C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll

MD5: 31affaa5c75fdcd3e646ca571367f902 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe

MD5: 815cbbbac9f4d44081955abbc9544930 C:\Program Files\TOSHIBA\My Toshiba\MyToshiba.exe

MD5: 43804516e0a84bede6a430869f48cda5 C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll

MD5: 3d3782ac3e1260aac90139bda4b28a4b C:\Program Files\TOSHIBA\Power Saver\TFunc2.DLL

MD5: 803051e1a6f884d9842c078aa09bdff7 C:\Program Files\TOSHIBA\Power Saver\TFunctab.DLL

MD5: 451b09ba1a0d019ba0b5a27229559d55 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

MD5: db0e503edf7c9030731070db5eda0cea C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE

MD5: 970655fc35afce065761c0e49adcd69e C:\Program Files\TOSHIBA\SmoothView\NotifyTZU.dll

MD5: a11f5ee731cd48f3dc509e2d180e1af0 C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe

MD5: 5c651246cd24095952f976a754c6b110 C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll

MD5: faaaf481cc851ce9a1a35d53bd8163db C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll

MD5: 2c8b811e17b0c72a7ffd5b8cbdcc9535 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll

MD5: 19078af6c597283c207d600d0467ffa0 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe

MD5: 67c1da40d78c92622081a3e780c926b2 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

MD5: a9bc134691e76eb00f0739046d433447 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe

MD5: 8c56e9074f2586411a850738edc865b7 C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TReport.dll

MD5: d56efa2023bf17d457f9acdad5f14689 C:\Program Files\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe

MD5: a462c5624734ffd14921c8ea8c943952 C:\Program Files\TOSHIBA\TOSHIBA Service Station\FilterLib.dll

MD5: c6125209b096f69fe2051d42aa5e84af C:\Program Files\TOSHIBA\TOSHIBA Service Station\Interop.TosNcCom.dll

MD5: fbf533340c1e1928882a3808f5747732 C:\Program Files\TOSHIBA\TOSHIBA Service Station\libTMachInfo.dll

MD5: a946a10be2dd0cb1ba9dba2bf6b8bf28 C:\Program Files\TOSHIBA\TOSHIBA Service Station\PluginLib.dll

MD5: f0c64ac731a59439c76718f80bf25786 C:\Program Files\TOSHIBA\TOSHIBA Service Station\Plugins\Alerts.dll

MD5: 1ee738ec1dad2ca2e9c13a9199f1c2d7 C:\Program Files\TOSHIBA\TOSHIBA Service Station\Plugins\PCHealthInfo.dll

MD5: d3b098143e675cdc617671bc0aa2224f C:\Program Files\TOSHIBA\TOSHIBA Service Station\Plugins\SwUpdates.dll

MD5: 83e91963c4452be6899503cf9ebfd3ed C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

MD5: b810b8c3ea2658054c931b5713d7c206 C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe

MD5: 5f91764211d1517c15c9d2c4ed665a09 C:\Program Files\TOSHIBA\Utilities\HWSetup.exe

MD5: c5b2679b0ae204fdd0415199b7afef20 C:\Program Files\TOSHIBA\Utilities\KeNotify.exe

MD5: eb19e5ce71b9410fa81e3672af2f8146 C:\Program Files\TOSHIBA\Utilities\NotifyX.dll

MD5: e579644a3f6196bdd8d1b00ec12fc7e6 C:\Program Files\TOSHIBA\Utilities\SVPWUTIL.exe

MD5: 8cda1de44af2a3ac81462a02d0fc228a C:\Program Files\Windows Live\Messenger\msgsc.dll

MD5: 6f0dab13529bcb7c0f8a3082a8b1cde9 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

MD5: ac421a44de902f2627f1e63793ed89cd C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

MD5: cc9e4d197143738bd868282e76ff6731 C:\Program Files\Windows Live\Shared\WLDCore.dll

MD5: 77fbd400984cf72ba0fc4b3489d65f74 C:\Program Files\Windows Media Player\wmpnetwk.exe

MD5: ad73b4cd214de82d003fdadbaeab6410 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20110616.003\BHDrvx86.sys

MD5: c15fcea5c150314489698b2571a5190d C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20110624.050\IDSvix86.sys

MD5: c15fcea5c150314489698b2571a5190d C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20110625.050\IDSvix86.sys

MD5: e170dbbe40f08b084fe5bb308e4f1745 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20110625.050\Scxpx86.dll

MD5: 920d9701bba90dbb7ccfd3536ea4d6f9 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110627.019\NAVENG.SYS

MD5: 31b1a9b53c3319b97f7874347cd992d2 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20110627.019\NAVEX15.SYS

MD5: 1661939dfef9495751601fc1a5a946d4 C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ebdaeaeb9f66c9035b5f11431f10cda4\mscorlib.ni.dll

MD5: a176025ac7f5b4568150dc1080de1d39 C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\9d054fc9618b81d5703af1662cd11135\System.Configuration.ni.dll

MD5: 7af45d5b01250c785be964ca67c60367 C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\2a34e74599686e7383ae90670a994cdf\System.Drawing.ni.dll

MD5: e2782d5dbfc90634604e6f77df0fc496 C:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b6d66d3c48e430796c17d0497ce37972\System.ServiceProcess.ni.dll

MD5: 597da8d1596810eacc54a64d43a264ee C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\e4ea95056046fdf87f06ae807308b627\System.Windows.Forms.ni.dll

MD5: 1d44211c58d1178eb66518c18622958d C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\167c8c3817ba1f48fe7396cc56f557e3\System.Xml.ni.dll

MD5: 30ce301c8f874c45e857d0dace1e8eb8 C:\windows\assembly\NativeImages_v2.0.50727_32\System\50c67f851ae3df2d0ab7d86fd1c5c7e0\System.ni.dll

MD5: 23dc75d158d484177ffe99e23264f89f C:\Windows\Downloaded Program Files\qsax.dll

MD5: 1697c39978cd69f6fbc15302edcece1f C:\windows\ehome\ehRecvr.exe

MD5: 2af58d15edc06ec6fdacce1f19482bbf C:\Windows\explorer.exe

MD5: c12c6b2201af4e116ba10089ea5e2bd7 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll

MD5: c5b62807c0fd81ac1ed419faea666993 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll

MD5: fabfc817547eabb19b74849cef410622 C:\windows\system32\authui.dll

MD5: 53831de9162c6c2378574b59eb786bf1 C:\windows\system32\corpol.dll

MD5: b8473011f59a6aa2b35e84aa19d707cf C:\windows\system32\d3d10_1.dll

MD5: 029e2a480ce2020df097e535a2311712 C:\windows\system32\d3d10_1core.dll

MD5: 7fb5696ebcb8131ad2e2defe5f19c4b5 C:\windows\System32\davclnt.dll

MD5: 62390f4ace9e2b63e3ca26b7f7497897 C:\windows\system32\dnsapi.DLL

MD5: b15be77a2bacf9c3177d27518afe26a9 C:\windows\System32\dnsrslvr.dll

MD5: 0db7a48388d54d154ebec120461a0fcd C:\windows\system32\drivers\afd.sys

MD5: 19ce906b4cdc11fc4fef5745f33a63b6 C:\windows\system32\drivers\amdsata.sys

MD5: 869e67d66be326a5a9159fba8746fa70 C:\windows\system32\drivers\amdxata.sys

MD5: 9a5c671b7fbae4865149bb11f59b91b2 C:\windows\system32\DRIVERS\bowser.sys

MD5: 83d1ecea8faae75604c0fa49ac7ad996 C:\windows\System32\Drivers\dfsc.sys

MD5: 1679a4669326cb1a67cc95658d273234 C:\windows\System32\drivers\dxgkrnl.sys

MD5: 71f1a494fedf4b33c02c4a6a28d6d9e9 C:\windows\system32\drivers\iaStorV.sys

MD5: 8828710129b835fd59e8be6615eb3786 C:\windows\system32\DRIVERS\igdkmd32.sys

MD5: 6e3d3816749e107883eec5734ce44493 C:\windows\system32\DRIVERS\LPCFilter.sys

MD5: ca7570e42522e24324a12161db14ec02 C:\windows\system32\DRIVERS\mrxsmb.sys

MD5: c108952d3660375dcb716b222912e868 C:\windows\system32\DRIVERS\mrxsmb10.sys

MD5: 25c38264a3c72594dd21d355d70d7a5d C:\windows\system32\DRIVERS\mrxsmb20.sys

MD5: a73399804d5d4a8b20ba60fcf70c9f1f C:\windows\system32\drivers\NAV\1206000.01D\Ironx86.SYS

MD5: 83726cf02eced69138948083e06b6eac C:\windows\system32\drivers\NAV\1206000.01D\SRTSP.SYS

MD5: 4e7eab2e5615d39cf1f1df9c71e5e225 C:\windows\system32\drivers\NAV\1206000.01D\SRTSPX.SYS

MD5: 9bbeb8c6258e72d62e7560e6667aad39 C:\windows\system32\drivers\NAV\1206000.01D\SYMDS.SYS

MD5: d5c02629c02a820a7e71bca3d44294a3 C:\windows\system32\drivers\NAV\1206000.01D\SYMEFA.SYS

MD5: cc71cf163de8b62ccd077e20e909c960 C:\windows\system32\drivers\NAV\1206000.01D\SYMNETS.SYS

MD5: f1b0bed906f97e16f6d0c3629d2f21c6 C:\windows\system32\drivers\nvraid.sys

MD5: 4520b63899e867f354ee012d34e11536 C:\windows\system32\drivers\nvstor.sys

MD5: 26a9d6227d12b9d9da5a81bb9b55d810 C:\windows\system32\DRIVERS\Rt86win7.sys

MD5: e4a2e810cb2607c9c159c0dfb0bd4c88 C:\windows\system32\drivers\RTKVHDA.sys

MD5: 55a367c663e505c92c82560a99685ce2 C:\windows\system32\DRIVERS\RTL8187B.sys

MD5: 07f66ca7db9608806ca2ef1970daba58 C:\windows\System32\Drivers\RtsUStor.sys

MD5: c4a027b8c0bd3fc0699f41fa5e9e0c87 C:\windows\System32\DRIVERS\srv.sys

MD5: 414bb592cad8a79649d01f9d94318fb3 C:\windows\System32\DRIVERS\srv2.sys

MD5: ff207d67700aa18242aaf985d3e7d8f4 C:\windows\System32\DRIVERS\srvnet.sys

MD5: ab33c3b196197ca467cbdda717860dba C:\windows\system32\Drivers\SYMEVENT.SYS

MD5: 8bd10dc8809dc69a1c5a795cb10add76 C:\windows\system32\DRIVERS\SynTP.sys

MD5: 0158d5e9982e9d6a90dfc802f618e130 C:\windows\System32\drivers\tcpip.sys

MD5: 4084ea00d50c858d6f9038f86ae2e2d0 C:\windows\system32\DRIVERS\tdcmdpst.sys

MD5: 969377943fe7284609babbab4e06b93c C:\windows\system32\DRIVERS\tos_sps32.sys

MD5: fc24015b4052600c324c43e3a79c0664 C:\windows\system32\DRIVERS\TVALZ_O.SYS

MD5: c31ae588e403042632dc796cf09e30b0 C:\windows\system32\drivers\usbccgp.sys

MD5: e4c436d914768ce965d5e659ba7eebd8 C:\windows\system32\DRIVERS\usbehci.sys

MD5: bdcd7156ec37448f08633fd899823620 C:\windows\system32\DRIVERS\usbhub.sys

MD5: eb2d819a639015253c871cda09d91d58 C:\windows\system32\drivers\usbohci.sys

MD5: 1c4287739a93594e57e2a9e6a3ed7353 C:\windows\system32\drivers\USBSTOR.SYS

MD5: 22480bf4e5a09192e5e30ba4dde79fa4 C:\windows\system32\DRIVERS\usbuhci.sys

MD5: 60cc965a89e2072ebd26d63d5e1e1d18 C:\windows\system32\dwmcore.dll

MD5: 8898c95862d03d16b2a06db4db6bb6b2 C:\windows\system32\explorerframe.dll

MD5: 7fe4995528a7529a761875151ee3d512 C:\windows\system32\FntCache.dll

MD5: 9d91aca2304e034cb6b85e34feb36aae C:\Windows\System32\hccutils.DLL

MD5: eb7e08304b07899b30b80f41d88179b6 C:\Windows\System32\hkcmd.exe

MD5: 0c7b28decceb403b8853f52664f26e9b C:\windows\system32\IEFRAME.dll

MD5: 438147dae79299a5a9240219942b4439 C:\Windows\System32\iepeers.dll

MD5: 570c6b12e7bd623a85ea1f01c75c346a C:\windows\system32\iertutil.dll

MD5: f88391450bfdd2c789bd98ff54f51745 C:\windows\system32\IEUI.dll

MD5: 84c123c5e81fa3bd183f94847410c1a3 C:\windows\system32\igd10umd32.dll

MD5: bd544c2a4f4a3717a6289d5803c1de8b C:\windows\system32\igdumd32.dll

MD5: f0ed889f9c684b0763b3c8ab5ba113e1 C:\windows\system32\igdumdx32.dll

MD5: 8b05e9fd64e217c1e9f8ec89d46688b0 C:\windows\system32\igfxdev.dll

MD5: 964858b018aa96fbed2a1929dd2e27cd C:\windows\system32\igfxexps.dll

MD5: a1af9531cd6d7dac2fed6c098174debc C:\Windows\System32\igfxext.exe

MD5: 7b50f8d7db34cc25ca899a194876dae8 C:\Windows\System32\igfxpers.exe

MD5: 17a3ac366168ada4fd9091e0450846da C:\windows\system32\igfxrENU.lrc

MD5: 57a905d15e8f553400ab5c440fec78fc C:\Windows\System32\igfxress.dll

MD5: 2c78eaea857230eb475a3c6dc5f73fbd C:\windows\system32\igfxsrvc.dll

MD5: 9f570c660a1fcf7281d233905f88190d C:\Windows\System32\igfxsrvc.exe

MD5: 678f77b6e07b5dc5e1ce58ec74a8c037 C:\Windows\System32\igfxtray.exe

MD5: c6595b078842e187c6587a285b43a565 C:\windows\system32\INETCOMM.DLL

MD5: 0bd0665d8bfd321d3b5a898ed09d1df3 C:\windows\system32\jscript.dll

MD5: efbef826c183cf8edab324ce514d69b7 C:\windows\system32\Macromed\Flash\Flash10t.ocx

MD5: 3a2c4d7ffbb0101cad4fd5de0705757a C:\windows\system32\msfeeds.dll

MD5: 1816d4cf1a7cbb72298ab120059226d4 C:\Windows\System32\mshtml.dll

MD5: 4a1b9779c5d580745b63feacc3b4332f C:\windows\system32\MSRATING.dll

MD5: bd669749eaeff96773b5f8d0a43e0068 C:\windows\System32\msxml3.dll

MD5: 5f856156f709df40b42d36ae8a0f0695 C:\windows\System32\msxml6.dll

MD5: 3bbf9937cc8c58e8b418b01bddb8d43b C:\windows\SYSTEM32\ntdll.dll

MD5: e2c2d8c982316c8abf800c6ce3f28fab C:\windows\system32\ole32.dll

MD5: 06333b8d05d4f3a2af25eb14fc0a1dff C:\windows\system32\OLEAUT32.dll

MD5: 2862a3819bbc9757dd27bac41a4e0a3e C:\windows\System32\pnidui.dll

MD5: 21cf5c7d8d727dcc337a1d251b6135f4 C:\windows\system32\schannel.DLL

MD5: df1e5c82e4d09cf8105cc644980c4803 C:\windows\system32\schedsvc.dll

MD5: d1bb750eb51694de183e08b9c33be5b2 C:\windows\System32\spoolsv.exe

MD5: 4c287f9069fedbd791178876ee9de536 C:\windows\system32\sppsvc.exe

MD5: 8f6bf790d3168224c16f2af68a84438c C:\windows\System32\srvsvc.dll

MD5: 8d908f346eedd752005a32787a6dcafa C:\windows\System32\StructuredQuery.dll

MD5: 8c7fe6b9559204765849bff308764fa5 C:\windows\System32\SyncCenter.dll

MD5: bb9501ffb0223cf0c83a16a1cb7516d4 C:\windows\system32\SynCOM.dll

MD5: d7688ea8637f2e908259cbd5835b1571 C:\windows\system32\SynTPAPI.dll

MD5: 04105c8da62353589c29bdaeb8d88bd8 C:\windows\system32\sysmain.dll

MD5: f8952e80b7f778da2f7aa8393ca2d30e C:\Windows\System32\taskeng.exe

MD5: 21012407e8c74aa72bbb485b0fc197fe C:\Windows\system32\taskschd.dll

MD5: e1ef320cbb1a6623df040d5539dda8f4 C:\Windows\system32\TaskSchdPS.dll

MD5: fe65d33b7d4ff07dd1d29526a48df810 C:\Windows\system32\TODDSrv.exe

MD5: ca4d146eac05ec4ba5fc4936f3369627 C:\windows\system32\urlmon.dll

MD5: 509b666bf56d469c641df55652c76168 C:\Windows\system32\vbscript.dll

MD5: 7790b77fe1e5ee47dcc66247095bb4c9 C:\windows\system32\wbengine.exe

MD5: 6d9b75275c3e3a5f51aef81affadb2b6 C:\windows\System32\wcncsvc.dll

MD5: 177df28315bf4300ecb5cbeeee961292 c:\windows\system32\webcheck.dll

MD5: bb5ec38f8d4600119b4720bc5d4211f1 C:\windows\System32\webclnt.dll

MD5: 9a6dedbe309aa0ce2c31ee6799b38e4f C:\windows\System32\werconcpl.dll

MD5: cc9bbcfc715fbedf7ae476106fe653e9 C:\windows\System32\winhttp.dll

MD5: 27cdaf355cce3762c7f13719e814418b C:\windows\system32\WININET.dll

MD5: 374b26395852a9092bde2e4c8d4d0c8d C:\windows\System32\WSCAPI.dll

MD5: a661a76333057b383a06e65f0073222f C:\windows\system32\wscsvc.dll

MD5: 7fd5532c142db6c9cc47aa4dcf71fdec C:\windows\System32\wscui.cpl

MD5: a33408cc036f9c08142b11be5e93f0a1 C:\windows\system32\wuaueng.dll

MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCP80.dll

MD5: c9564cf4976e7e96b4052737aa2492b4 C:\windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dll

MD5: 1f5afd468eb5e09e9ed75a087529eab5 C:\windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80.DLL

MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL

MD5: 28a09777d2d952122567a8a82f1a2c7b C:\windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80ENU.DLL

MD5: 4c39358ebdd2ffcd9132a30e1ec31e16 C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCP90.dll

MD5: cdbe9690cf2b8409facad94fac9479c9 C:\windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\MSVCR90.dll

MD5: d3ead1cf16ba729a7f7c9a5d94aa7c05 C:\windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\COMCTL32.dll

MD5: 4b8dd8541c0e26602005dd0137333615 C:\windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll

No file uploaded.

Scan finished - communication took 2 sec

Total traffic - 0.02 MB sent, 0.75 KB recvd

Scanned 787 files and modules - 25 seconds

==============================================================================

[D-FRED-BROWN]

Hello again,

My sincerest apologies for the delay. Your logs appear to be clean.

Please perform the following program updates, as using outdated applications leaves you very vulnerable to getting infected again.

Java is out of date and older versions contain vulnerabilities. Please update to the newest version.

Download the newest version from here http://www.oracle.com/technetwork/java/javase/downloads/index.html.

It's important to remove older versions of Java since it does not do so automatically and old versions still leave you vulnerable.

Go to Start > Control Panel and open Add or Remove Programs.

Search in the list for all previous installed versions of Java. (J2SE Runtime Environment).

They will have this icon next to them:

Select each in turn and click Remove.

Once old versions are gone, please install the newest version.

------

You are using Internet Explorer version 8. Since you are using Windows 7, you qualify for the latest version, which is 9. Using an outdated version of a web browser leaves you extremley vulnerable to malware!

Please see this link to download the latest version: http://windows.microsoft.com/en-US/internet-explorer/products/ie/home

------

Please let me know how the updates went, as failed updates may indicate additional malware.

[D-FRED-BROWN]

(bump)

Are you still with me? If your problems still persist, let me know and we'll go about fixing them.

If not, please let me know so I can close this topic.

-DFB

[D-FRED-BROWN]

(last bump)

Are you still with me? If your problems still persist, let me know and we'll go about fixing them.

Otherwise, this topic will be closed in a few days.

-DFB

[LDTate]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!