Find content
Not Telling
This is a copy of the log of ip address blocking. I dont know what is wrong but malwarebytes is not detecting any viruses.
00:00:01 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:00:04 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:00:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:01:22 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:01:25 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:01:31 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:02:43 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:02:46 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:02:52 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:04:04 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:04:07 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:04:13 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:07 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:16 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:25 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:28 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:28 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:05:31 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:05:34 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:05:38 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:06:42 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:06:45 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:06:46 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:06:49 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:06:51 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:06:55 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:07:11 David Khaski IP-BLOCK 67.29.139.153 (Type: outgoing)
00:07:14 David Khaski IP-BLOCK 67.29.139.153 (Type: outgoing)
00:08:07 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:16 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:27 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:29 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:30 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:32 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:36 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:37 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:08:48 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:08:50 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:08:52 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:08:53 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:08:58 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:08:59 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:09:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:11 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:13 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:14 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:19 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:20 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:28 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:31 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:09:37 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:29 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:32 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:36 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:38 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:39 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:45 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:49 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:50 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:10:52 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:53 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:10:58 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:10:59 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:11:11 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:11:14 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:11:20 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:13 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:19 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:28 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:31 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:37 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:49 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:12:52 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:12:53 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:56 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:12:58 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:13:02 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:10 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:13 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:14 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:13:17 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:13:19 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:23 David Khaski IP-BLOCK 91.213.217.190 (Type: outgoing)
00:13:31 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:34 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:35 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:38 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:40 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:13:44 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:14:52 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:14:55 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:15:01 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:16:13 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:16:16 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:16:22 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:17:34 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:17:37 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:17:43 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:18:55 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:18:58 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:19:04 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:20:16 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:20:19 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:20:25 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:21:37 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:21:40 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
00:21:46 David Khaski IP-BLOCK 95.64.56.6 (Type: outgoing)
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org
Database version: 6830
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
6/10/2011 6:06:18 PM
mbam-log-2011-06-10 (18-06-18).txt
Scan type: Full scan (C:\|)
Objects scanned: 294210
Time elapsed: 2 hour(s), 53 minute(s), 6 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
This is a copy of the hijackthis log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:41:32 AM, on 6/12/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\csifcsvc.exe
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Verizon\McciTrayApp.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\Downlo~1\MyWebEx\319\raagtx.exe
C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Update\1.3.21.57\GoogleCrashHandler.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Verizon Broadband Toolbar - {A057A204-BACC-4D26-8398-26FADCF27386} - C:\PROGRA~1\VERIZO~1\VERIZO~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~4\Office14\URLREDIR.DLL
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\Program Files\GoogleAFE\GoogleAE.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Verizon Broadband Toolbar - {A057A204-BACC-4D26-8398-26FADCF27386} - C:\PROGRA~1\VERIZO~1\VERIZO~1.DLL
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [VerizonServicepoint.exe] "C:\Program Files\Verizon\VSP\VerizonServicepoint.exe" /AUTORUN
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Verizon_McciTrayApp] "C:\Program Files\Verizon\McciTrayApp.exe"
O4 - HKLM\..\Run: [Google Updater] "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -check_deprecation
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\David Khaski\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RealUpgradeHelper] "C:\Program Files\Common Files\Real\Update_OB\upgrdhlp.exe" "RealNetworks|RealPlayer|6.0" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RealUpgradeHelper] "C:\Program Files\Common Files\Real\Update_OB\upgrdhlp.exe" "RealNetworks|RealPlayer|6.0" (User 'Default user')
O4 - Startup: Microsoft SharePoint Workspace.lnk = C:\Program Files\Microsoft Office\Office14\GROOVE.EXE
O4 - Global Startup: QuickBooks Remote Access.LNK = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~4\Office14\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - https://activatemyfi...20Installer.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/...UI.cab55579.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/im...r/SysProExe.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - http://zone.msn.com/...dy.cab55579.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/...at.cab55579.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn...ro.cab56649.cab
O16 - DPF: {BCF9A64D-1440-4404-863C-F5DF2B99F798} (MSN Games - Catan Online) - http://zone.msn.com/...an.cab55579.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ent/swflash.cab
O18 - Protocol: intu-help-qb1 - {9B0F96C7-2E4B-433E-ABF3-043BA1B54AE3} - C:\Program Files\Intuit\QuickBooks Basic\HelpAsyncPluggableProtocol.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: FileCabinet CS Print Service (FCPrintService) - Creative Solutions - C:\WINDOWS\csifcsvc.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intuit Update Service (IntuitUpdateService) - Intuit Inc. - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: QBCFMonitorService - Intuit - C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc. - C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: TelevisionFanatic Service (TelevisionFanaticService) - TelevisionFanatic - C:\PROGRA~1\TELEVI~2\bar\1.bin\64barsvc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
--
End of file - 15023 bytes
Also when using IE and searching with google, the links would send me to weird sites if malwarebytes protection was not on, and chrome would start and automatically shut down, until i reinstalled it. Furthermore, I have this sinister iexplore.exe that was running under the system user (though that is not showing up as often as before).
