WiredWX Christian Hobby Weather Tools
Would you like to react to this message? Create an account in a few clicks or log in to continue.

WiredWX Christian Hobby Weather ToolsLog in

 


Vista Anti-Virus 2012

2 posters

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201218th December 2011, 2:53 pm

more_horiz
here

aswMBR version 0.9.8.986 Copyright(c) 2011 AVAST Software
Run date: 2011-12-18 09:02:10
-----------------------------
09:02:10.205 OS Version: Windows 6.0.6002 Service Pack 2
09:02:10.221 Number of processors: 2 586 0x301
09:02:10.221 ComputerName: NICKF-PC UserName: Nick F
09:02:13.481 Initialize success
09:02:13.668 AVAST engine defs: 11121800
09:03:52.809 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-5
09:03:52.809 Disk 0 Vendor: TOSHIBA_MK1652GSX LV011C Size: 152627MB BusType: 3
09:03:54.837 Disk 0 MBR read successfully
09:03:54.853 Disk 0 MBR scan
09:03:54.853 Disk 0 unknown MBR code
09:03:54.869 Disk 0 scanning sectors +312578048
09:03:54.993 Disk 0 scanning C:\Windows\system32\drivers
09:04:31.857 Service scanning
09:04:34.493 Modules scanning
09:04:58.907 Disk 0 trace - called modules:
09:04:58.969 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
09:04:58.985 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86f7b660]
09:04:58.985 3 CLASSPNP.SYS[807a78b3] -> nt!IofCallDriver -> [0x86934870]
09:04:59.515 5 acpi.sys[806156bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-5[0x85fe2b98]
09:05:01.512 AVAST engine scan C:\Windows
09:05:06.270 AVAST engine scan C:\Windows\system32
09:07:25.988 AVAST engine scan C:\Windows\system32\drivers
09:07:47.720 AVAST engine scan C:\Users\Nick F
09:33:46.496 AVAST engine scan C:\ProgramData
09:40:19.082 Scan finished successfully
09:51:17.786 Disk 0 MBR has been saved successfully to "C:\Users\Nick F\Desktop\MBR.dat"
09:51:17.801 The log file has been saved successfully to "C:\Users\Nick F\Desktop\aswMBR.txt"

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201218th December 2011, 8:02 pm

more_horiz
Save these instructions so you can have access to them while in Safe Mode.

Please click here to download AVP Tool by Kaspersky.

  • Save it to your desktop.
  • Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
  • Double click the setup file to run it.
  • Click Next to continue.
  • Accept the License agreement and click on next.
  • It will, by default, install it to your desktop folder. Click Next.
  • It will then open a box There will be a tab that says Automatic scan.
  • Under Automatic scan make sure these are checked.

  • Hidden Startup Objects
  • System Memory
  • Disk Boot Sectors.
  • My Computer.
  • Also any other drives (Removable that you may have)

Leave the rest of the settings as they appear as default.
•Then click on Scan at the to right hand Corner.
•It will automatically Neutralize any objects found.
•If some objects are left un-neutralized then click the button that says Neutralize all
•If it says it cannot be neutralized then choose the delete option when prompted.
•After that is done click on the reports button at the bottom and save it to file name it Kas.
•Save it somewhere convenient like your desktop and just post only the detected Virus\malware in the report it will be at the very top under Detected post those results in your next reply.

Note: This tool will self uninstall when you close it so please save the log before closing it.

While you're in Safe Mode, please update and run MBAM and post the log.

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201219th December 2011, 1:51 am

more_horiz
My computer crashed twice after trying to scan, I ran the scan twice. Crashed twice. It wouldn't boot up the whole night and now it finally boots up this morning, the Kapersky scan keeps crashing during it's run while my comp is on safe mode. Is there another alternative?

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201219th December 2011, 8:19 pm

more_horiz
Download MBRCheck to your desktop.

  • Double click MBRCheck.exe to run (Vista and Windows 7 users, right click and select Run as Administrator).
  • It will show a black screen with some data on it.
  • A report called MBRcheckxxxx.txt will be on your desktop
  • Open this report and post its content in your next reply.
.

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201219th December 2011, 9:15 pm

more_horiz
here

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: Wistron
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: Compaq Presario CQ50 Notebook PC
Logical Drives Mask: 0x0000001c

Kernel Drivers (total 198):
0x8304B000 \SystemRoot\system32\ntkrnlpa.exe
0x83018000 \SystemRoot\system32\hal.dll
0x80404000 \SystemRoot\system32\kdcom.dll
0x8040B000 \SystemRoot\system32\PSHED.dll
0x8041C000 \SystemRoot\system32\BOOTVID.dll
0x80424000 \SystemRoot\system32\CLFS.SYS
0x80465000 \SystemRoot\system32\CI.dll
0x80545000 \SystemRoot\system32\drivers\Wdf01000.sys
0x805C1000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80602000 \SystemRoot\system32\drivers\acpi.sys
0x80648000 \SystemRoot\system32\drivers\WMILIB.SYS
0x80651000 \SystemRoot\system32\drivers\msisadrv.sys
0x80659000 \SystemRoot\system32\drivers\pci.sys
0x80680000 \SystemRoot\system32\drivers\isapnp.sys
0x8068F000 \SystemRoot\system32\drivers\mpio.sys
0x806AB000 \SystemRoot\System32\drivers\partmgr.sys
0x806BA000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x806BD000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x806C7000 \SystemRoot\system32\drivers\volmgr.sys
0x806D6000 \SystemRoot\System32\drivers\volmgrx.sys
0x80720000 \SystemRoot\system32\drivers\intelide.sys
0x80727000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x80735000 \SystemRoot\system32\drivers\pciide.sys
0x8073C000 \SystemRoot\system32\drivers\aliide.sys
0x80743000 \SystemRoot\system32\drivers\amdide.sys
0x8074A000 \SystemRoot\system32\drivers\cmdide.sys
0x80752000 \SystemRoot\System32\drivers\mountmgr.sys
0x80762000 \SystemRoot\system32\drivers\msdsm.sys
0x8077C000 \SystemRoot\system32\drivers\nvraid.sys
0x80797000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x807B8000 \SystemRoot\system32\drivers\viaide.sys
0x83606000 \SystemRoot\system32\drivers\iastorv.sys
0x836A7000 \SystemRoot\system32\drivers\atapi.sys
0x836AF000 \SystemRoot\system32\drivers\ataport.SYS
0x836CD000 \SystemRoot\system32\drivers\lsi_scsi.sys
0x836E7000 \SystemRoot\system32\drivers\storport.sys
0x83728000 \SystemRoot\system32\drivers\nvstor.sys
0x83735000 \SystemRoot\system32\drivers\hpcisss.sys
0x83740000 \SystemRoot\system32\drivers\adp94xx.sys
0x837AA000 \SystemRoot\system32\drivers\adpahci.sys
0x807C0000 \SystemRoot\system32\drivers\adpu160m.sys
0x805CE000 \SystemRoot\system32\drivers\SCSIPORT.SYS
0x8AE06000 \SystemRoot\system32\drivers\adpu320.sys
0x8AE2C000 \SystemRoot\system32\drivers\djsvs.sys
0x8AE40000 \SystemRoot\system32\drivers\arc.sys
0x8AE56000 \SystemRoot\system32\drivers\arcsas.sys
0x8AE6C000 \SystemRoot\system32\drivers\elxstor.sys
0x8AF00000 \SystemRoot\system32\drivers\i2omp.sys
0x8AF0A000 \SystemRoot\system32\drivers\iirsp.sys
0x8AF1A000 \SystemRoot\system32\drivers\iteatapi.sys
0x8AF26000 \SystemRoot\system32\drivers\iteraid.sys
0x8AF32000 \SystemRoot\system32\drivers\lsi_fc.sys
0x8AF4C000 \SystemRoot\system32\drivers\lsi_sas.sys
0x8AF64000 \SystemRoot\system32\drivers\megasas.sys
0x8B009000 \SystemRoot\system32\drivers\megasr.sys
0x8B0C0000 \SystemRoot\system32\drivers\mraid35x.sys
0x8B0CB000 \SystemRoot\system32\drivers\msahci.sys
0x8B0D5000 \SystemRoot\system32\drivers\nfrd960.sys
0x8B207000 \SystemRoot\system32\drivers\ql2300.sys
0x8B33F000 \SystemRoot\system32\drivers\ql40xx.sys
0x8B394000 \SystemRoot\system32\drivers\sisraid2.sys
0x8B3A1000 \SystemRoot\system32\drivers\sisraid4.sys
0x8B3B6000 \SystemRoot\system32\drivers\symc8xx.sys
0x8B3C2000 \SystemRoot\system32\drivers\sym_hi.sys
0x8B3CD000 \SystemRoot\system32\drivers\sym_u3.sys
0x8B0E3000 \SystemRoot\system32\drivers\uliahci.sys
0x8B3D8000 \SystemRoot\system32\drivers\ulsata.sys
0x8B11F000 \SystemRoot\system32\drivers\ulsata2.sys
0x8B14B000 \SystemRoot\system32\drivers\vsmraid.sys
0x8B16C000 \SystemRoot\system32\drivers\fltmgr.sys
0x8B19E000 \SystemRoot\system32\drivers\fileinfo.sys
0x8AF6E000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8B40B000 \SystemRoot\system32\drivers\ndis.sys
0x8B516000 \SystemRoot\system32\drivers\msrpc.sys
0x8B541000 \SystemRoot\system32\drivers\NETIO.SYS
0x8B606000 \SystemRoot\System32\drivers\tcpip.sys
0x8B6F3000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8B806000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8B916000 \SystemRoot\system32\drivers\wd.sys
0x8B91E000 \SystemRoot\system32\drivers\volsnap.sys
0x8B957000 \SystemRoot\System32\Drivers\spldr.sys
0x8B95F000 \SystemRoot\system32\drivers\sbp2port.sys
0x8B974000 \SystemRoot\System32\Drivers\mup.sys
0x8B983000 \SystemRoot\System32\drivers\ecache.sys
0x8B9AA000 \SystemRoot\system32\drivers\disk.sys
0x8B9BB000 \SystemRoot\system32\drivers\crcdisk.sys
0x8B9E4000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8B9EF000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8B70E000 \SystemRoot\system32\DRIVERS\processr.sys
0x8B71D000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8B726000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8B9F8000 \SystemRoot\system32\DRIVERS\HpqKbFiltr.sys
0x8B739000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8B744000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8B9FD000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8B774000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8B800000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8B77F000 \SystemRoot\system32\DRIVERS\nvsmu.sys
0x8B787000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x8B791000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8B7CF000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8F404000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8F491000 \SystemRoot\system32\drivers\Afc.sys
0x8F499000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8F4B1000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8F4B7000 \SystemRoot\system32\DRIVERS\nvmfdx32.sys
0x8F803000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
0x9015A000 \SystemRoot\system32\DRIVERS\nvBridge.kmd
0x9015C000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8F4FD000 \SystemRoot\System32\drivers\watchdog.sys
0x8F509000 \SystemRoot\system32\DRIVERS\athr.sys
0x8F5ED000 \SystemRoot\system32\DRIVERS\serscan.sys
0x8B57C000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8F5F5000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8B7DE000 \SystemRoot\system32\DRIVERS\vcsvad.sys
0x8B5AB000 \SystemRoot\system32\DRIVERS\portcls.sys
0x8B5D8000 \SystemRoot\system32\DRIVERS\drmk.sys
0x8B1AE000 \SystemRoot\system32\DRIVERS\ks.sys
0x8B7E3000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8B400000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8B1D8000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8AFDF000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x807DB000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x9020B000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90220000 \SystemRoot\system32\DRIVERS\termdd.sys
0x90230000 \SystemRoot\system32\DRIVERS\swenum.sys
0x90232000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x9023C000 \SystemRoot\system32\DRIVERS\umbus.sys
0x90249000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x9027E000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x9028F000 \SystemRoot\system32\drivers\CHDRT32.sys
0x902CA000 \SystemRoot\system32\DRIVERS\HSXHWAZL.sys
0x9080C000 \SystemRoot\system32\DRIVERS\HSX_DPV.sys
0x9090F000 \SystemRoot\system32\DRIVERS\HSX_CNXT.sys
0x909C4000 \SystemRoot\system32\drivers\modem.sys
0x909D1000 \SystemRoot\system32\drivers\nvhda32v.sys
0x90308000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x909DF000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x909E8000 \SystemRoot\System32\Drivers\Null.SYS
0x909EF000 \SystemRoot\System32\Drivers\Beep.SYS
0x90800000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x90375000 \SystemRoot\System32\drivers\vga.sys
0x90381000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x909F6000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x903A2000 \SystemRoot\system32\drivers\rdpencdd.sys
0x903AA000 \SystemRoot\System32\Drivers\Msfs.SYS
0x903B5000 \SystemRoot\System32\Drivers\Npfs.SYS
0x903C3000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x903CC000 \SystemRoot\system32\DRIVERS\tdx.sys
0x903E2000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x90E0C000 \SystemRoot\System32\DRIVERS\netbt.sys
0x90E3E000 \SystemRoot\system32\DRIVERS\smb.sys
0x90E52000 \SystemRoot\system32\drivers\afd.sys
0x90E9A000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x90EA1000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90EB7000 \SystemRoot\system32\DRIVERS\netbios.sys
0x90EC5000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x90ED8000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
0x90EFA000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
0x90F00000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x90F3C000 \SystemRoot\system32\drivers\nsiproxy.sys
0x90F46000 \SystemRoot\System32\Drivers\dfsc.sys
0x90F5D000 \SystemRoot\System32\Drivers\aswSP.SYS
0x90FA8000 \SystemRoot\System32\Drivers\crashdmp.sys
0x90FB5000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x90FC0000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x9A480000 \SystemRoot\System32\win32k.sys
0x90FC8000 \SystemRoot\System32\drivers\Dxapi.sys
0x90FD2000 \SystemRoot\system32\DRIVERS\monitor.sys
0x9A6A0000 \SystemRoot\System32\TSDDD.dll
0x9A6C0000 \SystemRoot\System32\cdd.dll
0x9A6D0000 \SystemRoot\System32\ATMFD.DLL
0x90FE1000 \SystemRoot\system32\drivers\luafv.sys
0x81A03000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x81A3B000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x81A3E000 \SystemRoot\system32\drivers\spsys.sys
0x81AEE000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x81AFE000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x81B28000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x81B32000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x81B45000 \SystemRoot\system32\drivers\HTTP.sys
0x81BB2000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x81BCF000 \SystemRoot\system32\DRIVERS\bowser.sys
0x81BE8000 \SystemRoot\System32\drivers\mpsdrv.sys
0xA5A00000 \SystemRoot\system32\drivers\mrxdav.sys
0xA5A21000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xA5A40000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xA5A79000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xA5A91000 \SystemRoot\System32\DRIVERS\srv2.sys
0xA5AB9000 \SystemRoot\System32\DRIVERS\srv.sys
0xA5B20000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xA6A0F000 \SystemRoot\system32\drivers\peauth.sys
0xA6AED000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA6AF7000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA6B03000 \SystemRoot\system32\DRIVERS\xaudio.sys
0xA6B0B000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA6B44000 \SystemRoot\System32\Drivers\fastfat.SYS
0x77150000 \WINDOWS\System32\ntdll.dll

Processes (total 71):
0 System Idle Process
4 System
1148 C:\WINDOWS\System32\smss.exe
2184 csrss.exe
2392 C:\WINDOWS\System32\wininit.exe
2424 csrss.exe
1564 C:\WINDOWS\System32\services.exe
1612 C:\WINDOWS\System32\lsass.exe
1644 C:\WINDOWS\System32\lsm.exe
612 C:\WINDOWS\System32\svchost.exe
1188 C:\WINDOWS\System32\winlogon.exe
1252 C:\WINDOWS\System32\nvvsvc.exe
2132 C:\WINDOWS\System32\svchost.exe
2644 C:\WINDOWS\System32\svchost.exe
2788 C:\WINDOWS\System32\svchost.exe
2836 C:\WINDOWS\System32\svchost.exe
3268 C:\WINDOWS\System32\audiodg.exe
3348 C:\WINDOWS\System32\SLsvc.exe
3572 C:\WINDOWS\System32\svchost.exe
3748 C:\WINDOWS\System32\nvvsvc.exe
736 C:\WINDOWS\System32\svchost.exe
1632 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1792 C:\WINDOWS\System32\wlanext.exe
3232 C:\WINDOWS\System32\spoolsv.exe
3288 C:\WINDOWS\System32\svchost.exe
912 C:\Program Files\SUPERAntiSpyware\SASCore.exe
1008 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
1136 C:\WINDOWS\System32\svchost.exe
3584 C:\Program Files\Bonjour\mDNSResponder.exe
3872 C:\WINDOWS\System32\lxdmcoms.exe
3936 C:\Program Files\Cisco\Cisco NAC Agent\NACAgent.exe
4056 C:\WINDOWS\System32\svchost.exe
4088 C:\WINDOWS\SMINST\BLService.exe
472 C:\WINDOWS\System32\svchost.exe
1096 C:\Program Files\Viewpoint\Common\ViewpointService.exe
1192 C:\WINDOWS\System32\svchost.exe
1368 C:\WINDOWS\System32\SearchIndexer.exe
1464 C:\WINDOWS\System32\drivers\XAudio.exe
1688 C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
2844 C:\WINDOWS\System32\taskeng.exe
2884 C:\WINDOWS\System32\taskeng.exe
4008 C:\WINDOWS\System32\dwm.exe
1176 C:\WINDOWS\explorer.exe
380 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
372 C:\WINDOWS\System32\svchost.exe
2576 C:\Program Files\HP\QuickPlay\QPService.exe
2412 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
724 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
2572 C:\WINDOWS\Philips\SPC230NC\Monitor.exe
1620 C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
2716 C:\Program Files\Lexmark 5000 Series\lxdmmon.exe
1300 C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
3308 C:\Program Files\Lexmark 5000 Series\lxdmamon.exe
2236 WmiPrvSE.exe
1680 C:\Program Files\HP\HP Software Update\hpwuschd2.exe
3500 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
2372 C:\Program Files\Cisco\Cisco NAC Agent\NACAgentUI.exe
2228 C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
1888 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
2968 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
2156 C:\Users\Nick F\AppData\Local\Akamai\netsession_win.exe
2416 C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
688 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
1748 C:\Users\Nick F\AppData\Local\Akamai\netsession_win.exe
4320 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4556 C:\WINDOWS\System32\wuauclt.exe
5660 C:\Program Files\iPod\bin\iPodService.exe
4244 C:\Program Files\iTunes\iTunesHelper.exe
5836 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
5248 C:\WINDOWS\System32\mobsync.exe
1248 C:\Users\Nick F\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x00000022`cf100000 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1652GSX, Rev: LV011C

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 08F21ADD893776C287CC68A3558F8D095B50ED3C


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Done!

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201219th December 2011, 11:18 pm

more_horiz
Please update and run SuperAntiSpyware and post the log.

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201220th December 2011, 12:18 am

more_horiz
here

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/19/2011 at 07:09 PM

Application Version : 5.0.1142

Core Rules Database Version : 8068
Trace Rules Database Version: 5880

Scan type : Quick Scan
Total Scan Time : 00:14:39

Operating System Information
Windows Vista Home Premium 32-bit, Service Pack 2 (Build 6.00.6002)
UAC On - Limited User (Administrator User)

Memory items scanned : 747
Memory threats detected : 0
Registry items scanned : 30214
Registry threats detected : 0
File items scanned : 17923
File threats detected : 121

Adware.Tracking Cookie
C:\Users\Nick F\AppData\Roaming\Microsoft\Windows\Cookies\VIAWPW37.txt [ /atdmt.combing.com ]
C:\Users\Nick F\AppData\Roaming\Microsoft\Windows\Cookies\B3AY3AOK.txt [ /adxpose.com ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.yieldmanager.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.eyewonder.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.amazon-adsystem.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.technoratimedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
pfa.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
pfa.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
pfa.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.casalemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.adserver.adtechus.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.purebluemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.artcitymedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
fidelity.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
fidelity.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
fidelity.rotator.hadj7.adjuggler.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.kontera.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.yadro.ru [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.pro-market.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.network.realmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.serving-sys.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.solvemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.solvemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.realmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
network.realmedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.insightexpressai.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.apmebf.com [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\USERS\NICK F\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\L4FJKKX4.DEFAULT\COOKIES.SQLITE ]

Trojan.Agent/Gen-RogueAV
C:\WINDOWS\TEMP\XNMWVIYNZQ

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201222nd December 2011, 4:39 am

more_horiz
Bumped

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201222nd December 2011, 8:29 pm

more_horiz
Sorry for the delay.

Download Security Check by screen317 from one of the following links and save it to your desktop.

Link 1
Link 2

* Double-click Security Check.bat
* Follow the on-screen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt
* Post the contents of that document in your next reply.

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.
***************************************************
Please download Stealth MBR Rootkit Detector by GMER from GMER.net, and save to your Desktop.

  • Double-click mbr.exe to start the program.
  • When done scanning, it will save a log on the Desktop called mbr.log.
  • Please post the contents of that log in your next reply.

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201223rd December 2011, 3:48 pm

more_horiz
Here is the first set of logs, the mbr log is next:

Results of screen317's Security Check version 0.99.30
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 7 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
avast! Free Antivirus
ESET Online Scanner v3
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
Java(TM) 6 Update 26
Java version out of date!
Adobe Flash Player 11.1.102.55
Adobe Reader X (10.1.1)
Mozilla Firefox 8.0. Firefox out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent
Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 AvastUI.exe
``````````End of Log````````````

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201223rd December 2011, 3:50 pm

more_horiz
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.0.6002 Disk: TOSHIBA_MK1652GSX rev.LV011C -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-5

device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201223rd December 2011, 7:16 pm

more_horiz
Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.
**********************************************
I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the Vista Anti-Virus 2012 - Page 1 EsetOnline button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

  • Click on Vista Anti-Virus 2012 - Page 1 EsetSmartInstall to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the Vista Anti-Virus 2012 - Page 1 EsetSmartInstallDesktopIcon-1 icon on your desktop.

•Check Vista Anti-Virus 2012 - Page 1 EsetAcceptTerms
•Click the Vista Anti-Virus 2012 - Page 1 EsetStart button.
•Accept any security warnings from your browser.
•Check Vista Anti-Virus 2012 - Page 1 EsetScanArchives
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push Vista Anti-Virus 2012 - Page 1 EsetListThreats
•Push Vista Anti-Virus 2012 - Page 1 EsetExport, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the Vista Anti-Virus 2012 - Page 1 EsetBack button.
•Push Vista Anti-Virus 2012 - Page 1 EsetFinish
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201224th December 2011, 1:17 am

more_horiz
here

C:\Users\Nick F\AppData\Local\lyj.exe a variant of Win32/Kryptik.XOD trojan cleaned by deleting - quarantined
C:\Users\Nick F\AppData\Local\uwg.exe a variant of Win32/Kryptik.XNX trojan cleaned by deleting - quarantined
C:\Users\Nick F\AppData\Local\temp\slp2218294091415020101.tmp a variant of Win32/Kryptik.XTY trojan deleted - quarantined
C:\Users\Nick F\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\30\9d5c39e-1cfc5bad a variant of Win32/Kryptik.XNX trojan cleaned by deleting - quarantined

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201224th December 2011, 7:43 pm

more_horiz
That looks good. How's the computer running now?

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201224th December 2011, 11:30 pm

more_horiz
It's running fine, no attacks, no signs of it returning.

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 201225th December 2011, 12:08 am

more_horiz
It's running fine, no attacks, no signs of it returning..

Good. We can do some cleanup.

To uninstall ComboFix


  • Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
  • In the field, type in ComboFix /uninstall


Vista Anti-Virus 2012 - Page 1 Combofix_uninstall_image

(Note: Make sure there's a space between the word ComboFix and the forward-slash.)


  • Then, press Enter, or click OK.
  • This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.

***********************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
*************************************************
Looking over your log it seems you don't have any evidence of a third party firewall.

Firewalls protect against hackers and malicious intruders. You need to download a free firewall from one of these reliable vendors.

Remember only install ONE firewall

1) Comodo Personal Firewall (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" and uncheck any HopSurf and/or Ask.com options if you choose this one)
2) Online Armor
3) Agnitum Outpost
4) PC Tools Firewall Plus

If you are using the built-in Windows XP firewall, it is not recommended as it does not block outgoing connections. This means that any malware on your computer is free to "phone home" for more instructions. Simply put, Windows XP contains a mediocre firewall. This firewall is NO replacement for a dedicated software solution. Remember to use only one firewall at the same time.
**************************************************
Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing and Happy Holidays !

descriptionVista Anti-Virus 2012 - Page 1 EmptyRe: Vista Anti-Virus 2012

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum