Jump to content

Maelware bytes blocking random Ip's read on


yuedar

Recommended Posts

So a day or so ago I started to notice that i'd get a message saying my windows firewall was off and then it would turn back on again.

I ran AVG and malwarebytes and it caught a couple things they didn't look major and then the computer started to act goofy blocking all sorta IP's that would pop up from malwarebytes. I noticed a svchost.exe was running and taking up a ton of resources. then ping.exe would start running and taking up a ton of resources.

I will bookmark this thread and check back tomorrow afternoon.

heres the log from malware:

20:18:55 MichaelWin7 MESSAGE Protection started successfully

20:18:58 MichaelWin7 MESSAGE IP Protection started successfully

20:20:59 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 49290, Process: svchost.exe)

20:28:23 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61081, Process: ping.exe)

20:28:23 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61082, Process: ping.exe)

20:28:31 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61090, Process: ping.exe)

20:28:31 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61091, Process: ping.exe)

20:28:48 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 61103, Process: ping.exe)

20:29:04 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61130, Process: ping.exe)

20:29:04 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61131, Process: ping.exe)

20:29:20 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61265, Process: ping.exe)

20:29:20 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61266, Process: ping.exe)

20:29:45 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61412, Process: ping.exe)

20:29:45 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61413, Process: ping.exe)

20:30:01 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61564, Process: ping.exe)

20:30:01 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61566, Process: ping.exe)

20:30:09 MichaelWin7 IP-BLOCK 208.73.210.125 (Type: outgoing, Port: 61627, Process: ping.exe)

20:30:09 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61652, Process: ping.exe)

20:30:09 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61655, Process: ping.exe)

20:30:09 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 61704, Process: ping.exe)

20:30:25 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61793, Process: ping.exe)

20:30:25 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61794, Process: ping.exe)

20:30:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61798, Process: ping.exe)

20:30:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61799, Process: ping.exe)

20:30:33 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61827, Process: ping.exe)

20:30:34 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61828, Process: ping.exe)

20:30:50 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61902, Process: ping.exe)

20:30:50 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61903, Process: ping.exe)

20:30:50 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61914, Process: ping.exe)

20:30:50 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61915, Process: ping.exe)

20:31:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62081, Process: ping.exe)

20:31:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62082, Process: ping.exe)

20:31:06 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62088, Process: ping.exe)

20:31:06 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62089, Process: ping.exe)

20:31:14 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62151, Process: ping.exe)

20:31:14 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62158, Process: ping.exe)

20:31:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62209, Process: ping.exe)

20:31:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62210, Process: ping.exe)

20:31:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62212, Process: ping.exe)

20:31:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62213, Process: ping.exe)

20:31:30 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62241, Process: ping.exe)

20:31:30 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62242, Process: ping.exe)

20:31:30 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62277, Process: ping.exe)

20:31:30 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62278, Process: ping.exe)

20:31:38 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 62321, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62337, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62338, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62345, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62346, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62351, Process: ping.exe)

20:31:39 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62352, Process: ping.exe)

20:31:55 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 62410, Process: ping.exe)

20:31:55 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62415, Process: ping.exe)

20:31:55 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62416, Process: ping.exe)

20:31:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62442, Process: ping.exe)

20:31:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62443, Process: ping.exe)

20:32:03 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62500, Process: ping.exe)

20:32:03 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62501, Process: ping.exe)

20:32:11 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62532, Process: ping.exe)

20:32:11 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62533, Process: ping.exe)

20:32:11 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62541, Process: ping.exe)

20:32:11 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62542, Process: ping.exe)

20:32:19 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 62554, Process: ping.exe)

20:32:36 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62640, Process: ping.exe)

20:32:36 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62641, Process: ping.exe)

20:32:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62692, Process: ping.exe)

20:32:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62693, Process: ping.exe)

20:33:00 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62809, Process: ping.exe)

20:33:00 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62811, Process: ping.exe)

20:33:08 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62887, Process: ping.exe)

20:33:08 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62888, Process: ping.exe)

20:33:16 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62897, Process: ping.exe)

20:33:16 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62898, Process: ping.exe)

20:33:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62937, Process: ping.exe)

20:33:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 62938, Process: ping.exe)

20:33:32 MichaelWin7 IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 62952, Process: firefox.exe)

20:33:32 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 62956, Process: firefox.exe)

20:33:32 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62958, Process: ping.exe)

20:33:32 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 62959, Process: ping.exe)

20:33:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62961, Process: ping.exe)

20:33:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 62962, Process: ping.exe)

20:33:32 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 62963, Process: firefox.exe)

20:33:41 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63002, Process: ping.exe)

20:33:41 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63003, Process: ping.exe)

20:33:49 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63061, Process: ping.exe)

20:33:49 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63062, Process: ping.exe)

20:33:49 MichaelWin7 IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 63072, Process: firefox.exe)

20:33:49 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 63086, Process: firefox.exe)

20:33:57 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 63130, Process: ping.exe)

20:33:57 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 63131, Process: ping.exe)

20:34:05 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 63150, Process: firefox.exe)

20:34:21 MichaelWin7 IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 63204, Process: firefox.exe)

20:36:55 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 63675, Process: svchost.exe)

20:40:16 MichaelWin7 IP-BLOCK 195.3.145.252 (Type: outgoing, Port: 63932, Process: ping.exe)

20:40:32 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63996, Process: ping.exe)

20:40:32 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 63997, Process: ping.exe)

20:41:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64290, Process: ping.exe)

20:41:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64291, Process: ping.exe)

20:42:01 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64544, Process: ping.exe)

20:42:01 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64545, Process: ping.exe)

20:42:09 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64587, Process: ping.exe)

20:42:09 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64588, Process: ping.exe)

20:42:09 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64598, Process: ping.exe)

20:42:09 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64599, Process: ping.exe)

20:42:17 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64650, Process: ping.exe)

20:42:18 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64651, Process: ping.exe)

20:42:34 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64745, Process: ping.exe)

20:42:34 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64746, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64776, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64777, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64784, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64785, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64788, Process: ping.exe)

20:42:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64789, Process: ping.exe)

20:42:50 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64864, Process: ping.exe)

20:42:50 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 64865, Process: ping.exe)

20:43:06 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64975, Process: ping.exe)

20:43:06 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 64981, Process: ping.exe)

20:43:14 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65085, Process: ping.exe)

20:43:14 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65086, Process: ping.exe)

20:43:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65170, Process: ping.exe)

20:43:22 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65171, Process: ping.exe)

20:43:30 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65231, Process: ping.exe)

20:43:30 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65232, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65320, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65321, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65351, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65352, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65353, Process: ping.exe)

20:43:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65354, Process: ping.exe)

20:43:55 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65356, Process: ping.exe)

20:43:55 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65357, Process: ping.exe)

20:43:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65377, Process: ping.exe)

20:43:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65380, Process: ping.exe)

20:44:03 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65488, Process: ping.exe)

20:44:03 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 65490, Process: ping.exe)

20:44:11 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65510, Process: ping.exe)

20:44:11 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 65511, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49201, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49202, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49204, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49208, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49211, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49213, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49232, Process: ping.exe)

20:44:19 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49233, Process: ping.exe)

20:44:27 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49250, Process: ping.exe)

20:44:27 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49251, Process: ping.exe)

20:44:35 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49355, Process: ping.exe)

20:44:36 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49356, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49410, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49411, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49421, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49422, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49428, Process: ping.exe)

20:44:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49429, Process: ping.exe)

20:45:00 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49444, Process: ping.exe)

20:45:00 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49445, Process: ping.exe)

20:45:00 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49493, Process: ping.exe)

20:45:00 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49494, Process: ping.exe)

20:45:16 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49605, Process: ping.exe)

20:45:16 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49606, Process: ping.exe)

20:45:16 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49608, Process: ping.exe)

20:45:16 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49609, Process: ping.exe)

20:45:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49611, Process: ping.exe)

20:45:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 49612, Process: ping.exe)

20:45:24 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49641, Process: ping.exe)

20:45:24 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49642, Process: ping.exe)

20:45:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49723, Process: ping.exe)

20:45:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49724, Process: ping.exe)

20:45:48 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49848, Process: ping.exe)

20:45:48 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 49849, Process: ping.exe)

20:52:40 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 50907, Process: ping.exe)

20:52:56 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 50976, Process: svchost.exe)

20:53:20 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 51145, Process: ping.exe)

20:53:21 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 51146, Process: ping.exe)

20:53:29 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51178, Process: ping.exe)

20:53:29 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51179, Process: ping.exe)

20:54:18 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51790, Process: ping.exe)

20:54:18 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51793, Process: ping.exe)

20:54:26 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51989, Process: ping.exe)

20:54:26 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51992, Process: ping.exe)

20:54:34 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52096, Process: ping.exe)

20:54:34 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52097, Process: ping.exe)

20:54:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52147, Process: ping.exe)

20:54:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52148, Process: ping.exe)

20:54:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52155, Process: ping.exe)

20:54:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52156, Process: ping.exe)

20:54:50 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52183, Process: ping.exe)

20:54:50 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52184, Process: ping.exe)

20:54:58 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52213, Process: ping.exe)

20:54:58 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52214, Process: ping.exe)

20:55:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52258, Process: ping.exe)

20:55:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52259, Process: ping.exe)

20:55:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52263, Process: ping.exe)

20:55:06 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52265, Process: ping.exe)

20:55:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52319, Process: ping.exe)

20:55:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52320, Process: ping.exe)

20:55:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52326, Process: ping.exe)

20:55:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52327, Process: ping.exe)

20:55:47 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52616, Process: ping.exe)

20:55:47 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52617, Process: ping.exe)

20:55:55 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 52694, Process: ping.exe)

20:56:03 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52717, Process: ping.exe)

20:56:03 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52718, Process: ping.exe)

20:56:03 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52722, Process: ping.exe)

20:56:03 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52723, Process: ping.exe)

20:56:04 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52725, Process: ping.exe)

20:56:04 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52726, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52752, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52753, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52764, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52765, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52774, Process: ping.exe)

20:56:12 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52775, Process: ping.exe)

20:56:20 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52778, Process: ping.exe)

20:56:20 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 52779, Process: ping.exe)

20:56:20 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52780, Process: ping.exe)

20:56:20 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52781, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52894, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52895, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52900, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52901, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52946, Process: ping.exe)

20:56:36 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52947, Process: ping.exe)

20:56:44 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52965, Process: ping.exe)

20:56:44 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 52966, Process: ping.exe)

20:56:44 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52993, Process: ping.exe)

20:56:44 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 52994, Process: ping.exe)

20:57:17 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53147, Process: ping.exe)

20:57:17 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53148, Process: ping.exe)

20:57:33 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53339, Process: ping.exe)

20:57:33 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53341, Process: ping.exe)

20:57:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53359, Process: ping.exe)

20:57:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53360, Process: ping.exe)

20:58:05 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53478, Process: ping.exe)

20:58:05 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 53479, Process: ping.exe)

20:58:05 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53489, Process: ping.exe)

20:58:05 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53490, Process: ping.exe)

20:59:34 MichaelWin7 IP-BLOCK 173.236.89.195 (Type: outgoing, Port: 54027, Process: ping.exe)

21:02:48 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 54800, Process: ping.exe)

21:03:20 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 54988, Process: ping.exe)

21:03:20 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54993, Process: ping.exe)

21:03:20 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54994, Process: ping.exe)

21:03:52 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55095, Process: ping.exe)

21:04:49 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55611, Process: ping.exe)

21:04:49 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55612, Process: ping.exe)

21:04:49 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55625, Process: ping.exe)

21:04:49 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55626, Process: ping.exe)

21:04:57 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 55646, Process: ping.exe)

21:04:57 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 55647, Process: ping.exe)

21:04:57 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55648, Process: ping.exe)

21:04:58 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55649, Process: ping.exe)

21:05:06 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55681, Process: ping.exe)

21:05:14 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55723, Process: ping.exe)

21:05:22 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55771, Process: ping.exe)

21:05:22 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55833, Process: ping.exe)

21:05:22 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55834, Process: ping.exe)

21:05:31 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55912, Process: ping.exe)

21:05:39 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55942, Process: ping.exe)

21:06:44 MichaelWin7 IP-BLOCK 195.3.145.251 (Type: outgoing, Port: 55975, Process: ping.exe)

21:06:44 MichaelWin7 IP-BLOCK 195.3.145.252 (Type: outgoing, Port: 55976, Process: ping.exe)

21:09:01 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 56034, Process: svchost.exe)

21:09:41 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56377, Process: ping.exe)

21:09:49 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56405, Process: ping.exe)

21:09:49 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56408, Process: ping.exe)

21:09:49 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56409, Process: ping.exe)

21:10:14 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56522, Process: ping.exe)

21:10:22 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 56534, Process: ping.exe)

21:10:22 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 56535, Process: ping.exe)

21:10:38 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56615, Process: ping.exe)

21:10:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 56634, Process: ping.exe)

21:10:46 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 56635, Process: ping.exe)

21:10:55 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56654, Process: ping.exe)

21:10:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56659, Process: ping.exe)

21:10:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56660, Process: ping.exe)

21:11:27 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56863, Process: ping.exe)

21:11:27 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 56864, Process: ping.exe)

21:11:51 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57011, Process: ping.exe)

21:11:51 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57012, Process: ping.exe)

21:11:59 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57093, Process: ping.exe)

21:11:59 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57097, Process: ping.exe)

21:12:07 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57163, Process: ping.exe)

21:12:07 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57165, Process: ping.exe)

21:12:15 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 57269, Process: ping.exe)

21:12:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57419, Process: ping.exe)

21:12:32 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57420, Process: ping.exe)

21:12:40 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57483, Process: ping.exe)

21:12:40 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 57484, Process: ping.exe)

21:12:56 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57566, Process: ping.exe)

21:12:56 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 57567, Process: ping.exe)

21:14:17 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58293, Process: ping.exe)

21:14:17 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58294, Process: ping.exe)

21:14:33 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 58343, Process: ping.exe)

21:14:33 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 58344, Process: ping.exe)

21:14:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58383, Process: ping.exe)

21:14:33 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58386, Process: ping.exe)

21:14:57 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 58565, Process: ping.exe)

21:14:57 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 58566, Process: ping.exe)

21:15:05 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 58615, Process: firefox.exe)

21:15:13 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 58645, Process: firefox.exe)

21:15:13 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 58653, Process: firefox.exe)

21:15:13 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 58665, Process: firefox.exe)

21:15:13 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 58684, Process: firefox.exe)

21:22:22 MichaelWin7 DETECTION C:\WINDOWS\SVCHOST.EXE Trojan.Agent QUARANTINE

21:22:26 MichaelWin7 DETECTION C:\WINDOWS\SVCHOST.EXE Trojan.Agent DENY

21:23:01 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 60116, Process: ping.exe)

21:24:54 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 60173, Process: svchost.exe)

21:28:24 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 60414, Process: ping.exe)

21:28:32 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 60421, Process: ping.exe)

21:28:49 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 60428, Process: ping.exe)

21:28:57 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 60434, Process: ping.exe)

21:29:06 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 60442, Process: ping.exe)

21:29:14 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 60445, Process: ping.exe)

21:29:14 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 60446, Process: ping.exe)

21:29:23 MichaelWin7 DETECTION C:\WINDOWS\SVCHOST.EXE Trojan.Agent DENY

21:29:38 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 60560, Process: ping.exe)

21:29:39 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 60561, Process: ping.exe)

21:29:55 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 60625, Process: ping.exe)

21:30:11 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 60719, Process: ping.exe)

21:30:11 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 60720, Process: ping.exe)

21:30:11 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 60783, Process: ping.exe)

21:30:19 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 60841, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61050, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61052, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61053, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 61059, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 61060, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61067, Process: ping.exe)

21:30:35 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61070, Process: ping.exe)

21:30:51 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61088, Process: ping.exe)

21:30:51 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61089, Process: ping.exe)

21:30:51 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61095, Process: ping.exe)

21:30:51 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 61098, Process: ping.exe)

21:30:52 MichaelWin7 IP-BLOCK 82.98.86.163 (Type: outgoing, Port: 61099, Process: ping.exe)

21:31:08 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61181, Process: ping.exe)

21:31:08 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61182, Process: ping.exe)

21:31:08 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61184, Process: ping.exe)

21:31:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61320, Process: ping.exe)

21:31:24 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61321, Process: ping.exe)

21:31:24 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61386, Process: ping.exe)

21:31:32 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 61437, Process: ping.exe)

21:31:40 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61455, Process: ping.exe)

21:31:40 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 61499, Process: ping.exe)

21:32:05 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61624, Process: ping.exe)

21:32:05 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61625, Process: ping.exe)

21:32:05 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61627, Process: ping.exe)

21:32:05 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61628, Process: ping.exe)

21:32:05 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61641, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61668, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61669, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61686, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61687, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61697, Process: ping.exe)

21:32:13 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61699, Process: ping.exe)

21:32:21 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61769, Process: ping.exe)

21:32:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61771, Process: ping.exe)

21:32:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 61772, Process: ping.exe)

21:32:29 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61785, Process: ping.exe)

21:32:29 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 61786, Process: ping.exe)

21:32:38 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61806, Process: ping.exe)

21:32:38 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61823, Process: ping.exe)

21:32:38 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61824, Process: ping.exe)

21:32:46 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61850, Process: ping.exe)

21:32:46 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61851, Process: ping.exe)

21:33:50 MichaelWin7 IP-BLOCK 195.3.145.251 (Type: outgoing, Port: 61915, Process: ping.exe)

21:33:50 MichaelWin7 IP-BLOCK 195.3.145.252 (Type: outgoing, Port: 61916, Process: ping.exe)

21:34:06 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61925, Process: ping.exe)

21:34:14 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61933, Process: ping.exe)

21:34:30 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61942, Process: ping.exe)

21:34:38 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61950, Process: ping.exe)

21:34:55 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 61960, Process: ping.exe)

21:34:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61962, Process: ping.exe)

21:34:55 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 61963, Process: ping.exe)

21:35:19 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62013, Process: ping.exe)

21:35:35 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62107, Process: ping.exe)

21:35:51 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62402, Process: ping.exe)

21:36:07 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62490, Process: ping.exe)

21:36:07 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62522, Process: ping.exe)

21:36:16 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 62573, Process: ping.exe)

21:41:06 MichaelWin7 MESSAGE Protection started successfully

21:41:10 MichaelWin7 MESSAGE IP Protection started successfully

21:41:18 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 49337, Process: svchost.exe)

21:48:41 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49520, Process: ping.exe)

21:48:49 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49526, Process: ping.exe)

21:48:57 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49535, Process: ping.exe)

21:49:05 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49543, Process: ping.exe)

21:49:29 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49592, Process: ping.exe)

21:49:37 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49612, Process: ping.exe)

21:49:45 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49636, Process: ping.exe)

21:50:02 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49726, Process: ping.exe)

21:50:02 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49785, Process: ping.exe)

21:50:02 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49789, Process: ping.exe)

21:50:02 MichaelWin7 IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 49797, Process: firefox.exe)

21:50:10 MichaelWin7 IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49863, Process: firefox.exe)

21:50:10 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 49868, Process: firefox.exe)

21:50:18 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49909, Process: ping.exe)

21:50:18 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49918, Process: ping.exe)

21:50:26 MichaelWin7 IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49934, Process: firefox.exe)

21:50:26 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 49964, Process: ping.exe)

21:50:43 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50198, Process: ping.exe)

21:50:43 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50210, Process: ping.exe)

21:50:43 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50211, Process: ping.exe)

21:50:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50232, Process: ping.exe)

21:50:52 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50233, Process: ping.exe)

21:51:00 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50239, Process: ping.exe)

21:51:16 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50333, Process: ping.exe)

21:51:16 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50334, Process: ping.exe)

21:51:40 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50478, Process: ping.exe)

21:51:40 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50479, Process: ping.exe)

21:51:40 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50480, Process: ping.exe)

21:51:48 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50510, Process: ping.exe)

21:51:48 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50511, Process: ping.exe)

21:51:48 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50544, Process: ping.exe)

21:51:48 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50545, Process: ping.exe)

21:51:56 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50580, Process: ping.exe)

21:51:56 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50581, Process: ping.exe)

21:51:56 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50604, Process: ping.exe)

21:52:05 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50617, Process: ping.exe)

21:52:05 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50618, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50641, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50642, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50643, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50658, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50664, Process: ping.exe)

21:52:13 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50667, Process: ping.exe)

21:52:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50676, Process: ping.exe)

21:52:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50677, Process: ping.exe)

21:52:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50683, Process: ping.exe)

21:52:21 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 50684, Process: ping.exe)

21:52:29 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50707, Process: ping.exe)

21:52:29 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50743, Process: ping.exe)

21:52:29 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50744, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50771, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50772, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50791, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50793, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50795, Process: ping.exe)

21:52:37 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50796, Process: ping.exe)

21:52:46 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50799, Process: ping.exe)

21:53:02 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50868, Process: ping.exe)

21:53:02 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50869, Process: ping.exe)

21:53:10 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50896, Process: ping.exe)

21:53:10 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50898, Process: ping.exe)

21:53:10 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50899, Process: ping.exe)

21:53:10 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50901, Process: ping.exe)

21:53:10 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 50902, Process: ping.exe)

21:53:26 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50923, Process: ping.exe)

21:53:34 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50960, Process: ping.exe)

21:53:34 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50961, Process: ping.exe)

21:53:42 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50975, Process: ping.exe)

21:53:42 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 50982, Process: ping.exe)

21:53:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50989, Process: ping.exe)

21:53:42 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 50990, Process: ping.exe)

21:53:50 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51007, Process: ping.exe)

21:53:59 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51019, Process: ping.exe)

21:53:59 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51020, Process: ping.exe)

21:54:15 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51034, Process: ping.exe)

21:54:15 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51035, Process: ping.exe)

21:54:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 51037, Process: ping.exe)

21:54:15 MichaelWin7 IP-BLOCK 208.87.33.151 (Type: outgoing, Port: 51038, Process: ping.exe)

21:54:31 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51061, Process: ping.exe)

21:54:31 MichaelWin7 IP-BLOCK 208.87.32.69 (Type: outgoing, Port: 51062, Process: ping.exe)

21:54:47 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51079, Process: ping.exe)

21:54:47 MichaelWin7 IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 51080, Process: ping.exe)

21:57:20 MichaelWin7 IP-BLOCK 109.236.81.172 (Type: outgoing, Port: 51360, Process: svchost.exe)

22:00:41 MichaelWin7 IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 51749, Process: ping.exe)

22:00:57 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51755, Process: ping.exe)

22:01:05 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51762, Process: ping.exe)

22:01:21 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51772, Process: ping.exe)

22:01:29 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51779, Process: ping.exe)

22:01:37 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51802, Process: ping.exe)

22:01:45 MichaelWin7 IP-BLOCK 206.161.121.126 (Type: outgoing, Port: 51810, Process: ping.exe)

So I ran the DDS and it came up with this:

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_22

Run by MichaelWin7 at 21:59:42 on 2011-09-21

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8191.5449 [GMT -5:00]

.

AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}

SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\PROGRA~2\AVG\AVG10\avgchsva.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe

C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe

C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe

C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe

C:\Program Files (x86)\AVG\AVG10\avgnsa.exe

C:\Program Files (x86)\Windows Media Player\wmplayer.exe

C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe

C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe

C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files (x86)\Creative\MediaSource\Go\CTCMSGo.exe

C:\Program Files (x86)\Creative\MediaSource\RemoteControl\RcMan.exe

C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe

C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe

C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe

C:\Program Files\Logitech\SetPoint\SetPoint.exe

C:\Windows\SysWOW64\rundll32.exe

C:\Windows\SysWOW64\CtHelper.exe

C:\Program Files (x86)\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe

C:\Program Files (x86)\AVG\AVG10\avgtray.exe

C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe

C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\PROGRA~2\AVG\AVG10\avgrsa.exe

C:\Program Files (x86)\AVG\AVG10\avgcsrva.exe

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\SysWOW64\ping.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\WUDFHost.exe

C:\Program Files\Windows Media Player\WMPSideShowGadget.exe

C:\Program Files (x86)\Steam\Steam.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Eula.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\vssvc.exe

C:\Windows\System32\svchost.exe -k swprv

C:\Windows\SysWOW64\NOTEPAD.EXE

C:\Windows\SysWOW64\DllHost.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uSearch Page = hxxp://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com

uStart Page = hxxp://www.facebook.com/

uSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html

mDefault_Search_URL = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com

mDefault_Page_URL = hxxp://www.yahoo.com/

mStart Page = hxxp://www.yahoo.com/

mSearch Page = hxxp://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com

mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html

uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com

uURLSearchHooks: H - No File

mWinlogon: Userinit=userinit.exe,

BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll

BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

TB: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File

TB: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File

uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

uRun: [Creative MediaSource Go] C:\Program Files (x86)\Creative\MediaSource\Go\CTCMSGo.exe /SCB

uRun: [RemoteCenter] C:\Program Files (x86)\Creative\MediaSource\RemoteControl\RCMan.EXE

uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe

mRun: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry

mRun: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL

mRun: [CTHelper] CTHELPER.EXE

mRun: [CTxfiHlp] CTXFIHLP.EXE

mRun: [CTSysVol] C:\Program Files (x86)\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r

mRun: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe

mRun: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\LOGITE~1.LNK - C:\Program Files\Logitech\SetPoint\SetPoint.exe

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000

IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL

LSP: C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nvLsp.dll

LSP: mswsock.dll

Trusted Zone: aol.com\free

DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab

DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - hxxp://www.worldwinner.com/games/shared/wwlaunch.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {BA35B9B8-DE9E-47C9-AFA7-3C77E3DDFD39} - hxxp://www.worldwinner.com/games/v46/monopoly/monopoly.cab

DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/15109/CTPID.cab

TCP: DhcpNameServer = 192.168.1.1

TCP: Interfaces\{D36B3720-8AB6-4B99-9886-3F71F4E470C2} : DhcpNameServer = 192.168.1.1

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll

SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 consrv:ConServerDllInitialization,2 sxssrv,4

mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"

BHO-X64: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File

BHO-X64: 0x1 - No File

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Increase performance and video formats for your HTML5 <video> - No File

BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll

BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File

BHO-X64: DivX HiQ: {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

TB-X64: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File

TB-X64: {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No File

TB-X64: {30F9B915-B755-4826-820B-08FBA6BD249D} - No File

mRun-x64: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry

mRun-x64: [AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL

mRun-x64: [CTHelper] CTHELPER.EXE

mRun-x64: [CTxfiHlp] CTXFIHLP.EXE

mRun-x64: [CTSysVol] C:\Program Files (x86)\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r

mRun-x64: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe

mRun-x64: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe

mRun-x64: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\MichaelWin7\AppData\Roaming\Mozilla\Firefox\Profiles\b8hc6bbp.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com | www.facebook.com | www.google.com/voice |

FF - component: C:\Program Files (x86)\AVG\AVG10\Firefox\components\avgssff.dll

FF - component: C:\Program Files (x86)\AVG\AVG10\Firefox4\components\avgssff4.dll

FF - component: C:\Users\MichaelWin7\AppData\Roaming\Mozilla\Firefox\Profiles\b8hc6bbp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll

FF - component: C:\Users\MichaelWin7\AppData\Roaming\Mozilla\Firefox\Profiles\b8hc6bbp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll

FF - plugin: C:\Program Files (x86)\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

FF - plugin: C:\Program Files (x86)\Viewpoint\Viewpoint Media Player\npViewpoint.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

.

---- FIREFOX POLICIES ----

FF - user.js: network.protocol-handler.warn-external.dnupdate - false);user_pref(network.protocol-handler.warn-external.dnupdate, false);user_pref(network.protocol-handler.warn-external.dnupdate, false

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]

R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]

R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]

R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]

R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]

R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2011-8-18 7390560]

R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [2011-2-8 269520]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-9-21 366152]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-4-7 378472]

R2 Viewpoint Manager Service;Viewpoint Manager Service;C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe [2009-10-29 24652]

R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]

R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]

R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\system32\drivers\LGBusEnum.sys --> C:\Windows\system32\drivers\LGBusEnum.sys [?]

R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\system32\drivers\LGVirHid.sys --> C:\Windows\system32\drivers\LGVirHid.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S2 CLKMSVC10_9EC60124;CyberLink Product - 2011/04/01 19:12:18;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-5-25 246256]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-12-11 135664]

S3 COMMONFX;COMMONFX;C:\Windows\system32\drivers\COMMONFX.SYS --> C:\Windows\system32\drivers\COMMONFX.SYS [?]

S3 CTAUDFX;CTAUDFX;C:\Windows\system32\drivers\CTAUDFX.SYS --> C:\Windows\system32\drivers\CTAUDFX.SYS [?]

S3 CTERFXFX;CTERFXFX;C:\Windows\system32\drivers\CTERFXFX.SYS --> C:\Windows\system32\drivers\CTERFXFX.SYS [?]

S3 CTSBLFX;CTSBLFX;C:\Windows\system32\drivers\CTSBLFX.SYS --> C:\Windows\system32\drivers\CTSBLFX.SYS [?]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-12-11 135664]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

.

=============== Created Last 30 ================

.

2011-09-22 01:13:15 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys

2011-09-22 01:11:36 -------- d-----w- C:\TDSSKiller_Quarantine

2011-09-22 01:04:55 -------- d-----we C:\Windows\system64

2011-08-24 14:43:35 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2011-08-24 14:43:35 2048 ----a-w- C:\Windows\System32\tzres.dll

.

==================== Find3M ====================

.

2011-08-17 00:08:25 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2011-07-22 05:42:23 2303488 ----a-w- C:\Windows\System32\jscript9.dll

2011-07-22 05:36:16 1389056 ----a-w- C:\Windows\System32\wininet.dll

2011-07-22 05:32:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2011-07-22 02:54:43 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

2011-07-22 02:48:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-07-22 02:44:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll

2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll

2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll

2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll

2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll

2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll

2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe

2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll

2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll

2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll

2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll

2011-07-09 02:46:28 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

2011-06-24 05:34:53 214528 ----a-w- C:\Windows\System32\winsrv.dll

2011-06-24 05:25:49 338432 ----a-w- C:\Windows\System32\conhost.exe

.

============= FINISH: 22:00:00.93 ===============

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

Please update MBAM, run a Quick Scan, and post its log.

Next, please visit this webpage for instructions for running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

  • When the tool is finished, it will produce a report for you.
  • Please post the contents of C:\ComboFix.txt along with a new DDS log so we may continue cleaning the system.

Link to post
Share on other sites

  • 2 weeks later...
  • Root Admin

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.