 Msn/Windows live virus, unremovable?! |
Welcome Guest ( Log In | Click here to Register a free account now! )
Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Forum Guidelines
Read this topic before posting a log. DO NOT post a ComboFix log unless requested to. Only members of the HijackThis Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log. When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc. Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.
  |
 Dec 17 2008, 01:57 PM
Post
#1
|
|
|
New Member  Group: Members Posts: 3 Joined: 8-August 07 Member No.: 148,829  |
I've recently reformatted and scanned with avg pro/ super anti spyware but it doesn't resolve a thing. Any help would be greatly appreciated! -Zack Log--> CODE Logfile of random's system information tool 1.05 (written by random/random)
Run by Supa at 2008-12-17 14:19:55 Microsoft® Windows Vista™ Ultimate Service Pack 1 System drive C: has 192 GB (63%) free of 305 GB Total RAM: 8190 MB (83% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 2:21:08 PM, on 12/17/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Steam\Steam.exe C:\Program Files (x86)\AVG\AVG8\avgtray.exe C:\Program Files (x86)\Digsby\lib\digsby-app.exe C:\Program Files (x86)\Digsby\lib\aspell\bin\aspell.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Supa\Desktop\RSIT.exe C:\Program Files (x86)\trend micro\Supa.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG8\avgssie.dll O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~2\AVG\AVG8\AVGTOO~1.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files (x86)\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\google\googletoolbar1.dll O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~2\AVG\AVG8\AVGTOO~1.DLL O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~2\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [EVGAPrecision] "C:\Program Files (x86)\EVGA Precision\EVGAPrecisionWrapper.exe" /s O4 - HKCU\..\Run: [Active Desktop Calendar] C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe O4 - HKCU\..\Run: [Steam] "c:\steam\steam.exe" -silent O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: digsby.lnk = C:\Program Files (x86)\Digsby\digsby.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG8\avgpp.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~2\AVG\AVG8\avgemc.exe O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~2\AVG\AVG8\avgwdsvc.exe O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSer64.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 6722 bytes ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] AVG Safe Search - C:\Program Files (x86)\AVG\AVG8\avgssie.dll [2008-12-07 455960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}] AVG Security Toolbar - C:\PROGRA~2\AVG\AVG8\AVGTOO~1.DLL [2008-12-07 2055960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files (x86)\google\googletoolbar1.dll [2008-12-04 2403392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files (x86)\google\googletoolbar1.dll [2008-12-04 2403392] {A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~2\AVG\AVG8\AVGTOO~1.DLL [2008-12-07 2055960] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "AVG8_TRAY"=C:\PROGRA~2\AVG\AVG8\avgtray.exe [2008-12-07 1261336] "EVGAPrecision"=C:\Program Files (x86)\EVGA Precision\EVGAPrecisionWrapper.exe [2008-10-27 44048] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Active Desktop Calendar"=C:\Program Files\XemiComputers\Active Desktop Calendar\ADC.exe [2008-11-21 5599744] "Steam"=c:\steam\steam.exe [2008-12-14 1410296] "msnmsgr"=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background [] C:\Users\Supa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup digsby.lnk - C:\Program Files (x86)\Digsby\digsby.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon] C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "EnableLUA"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "EnableUIADesktopToggle"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"= "NoActiveDesktopChanges"= "ForceActiveDesktopOn"= [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files (x86)\BitTorrent\bittorrent.exe"="C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{debfdfc5-c1de-11dd-b257-806e6f6e6963}] shell\AutoRun\command - E:\autoplay.exe ======List of files/folders created in the last 1 months====== 2008-12-17 14:19:55 ----D---- C:\rsit 2008-12-17 14:19:55 ----D---- C:\Program Files (x86)\trend micro 2008-12-17 11:49:11 ----D---- C:\Windows\Minidump 2008-12-16 01:05:15 ----D---- C:\Windows\A7E07C2B2220441587E3784D5814BC93.TMP 2008-12-16 00:31:58 ----D---- C:\Program Files (x86)\EVGA Precision 2008-12-13 01:47:24 ----A---- C:\Windows\system32\HIDESRHI.EXE 2008-12-12 00:50:52 ----A---- C:\Windows\NeroDigital.ini 2008-12-10 22:00:57 ----N---- C:\Windows\system32\ImagXRA7.dll 2008-12-10 22:00:57 ----N---- C:\Windows\system32\ImagXR7.dll 2008-12-10 22:00:57 ----N---- C:\Windows\system32\ImagXpr7.dll 2008-12-10 22:00:57 ----N---- C:\Windows\system32\ImagX7.dll 2008-12-10 22:00:57 ----D---- C:\Program Files (x86)\Common Files\Ahead 2008-12-10 22:00:57 ----A---- C:\Windows\system32\TwnLib20.dll 2008-12-10 22:00:57 ----A---- C:\Windows\system32\NeroCheck.exe 2008-12-10 22:00:53 ----D---- C:\Program Files (x86)\Nero 2008-12-10 20:30:07 ----D---- C:\Temp 2008-12-10 19:46:35 ----D---- C:\Users\Supa\AppData\Roaming\PeerNetworking 2008-12-10 09:55:59 ----A---- C:\Windows\system32\ssubtmr6.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\wvc1dmod.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\vp7vfw.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\sipr3260.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\drv43260.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\drv33260.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\drv23260.dll 2008-12-10 09:52:22 ----A---- C:\Windows\system32\cook3260.dll 2008-12-10 09:30:29 ----D---- C:\ProgramData\vsosdk 2008-12-09 22:00:18 ----D---- C:\Users\Supa\AppData\Roaming\Vso 2008-12-09 22:00:18 ----A---- C:\Users\Supa\AppData\Roaming\inst.exe 2008-12-09 22:00:13 ----D---- C:\Program Files (x86)\VSO 2008-12-09 20:07:55 ----A---- C:\Windows\system32\tzres.dll 2008-12-09 12:59:02 ----A---- C:\Windows\system32\mf.dll 2008-12-09 12:59:01 ----A---- C:\Windows\system32\WMVCORE.DLL 2008-12-09 12:59:00 ----A---- C:\Windows\system32\WMNetMgr.dll 2008-12-09 12:59:00 ----A---- C:\Windows\system32\logagent.exe 2008-12-09 12:58:37 ----A---- C:\Windows\system32\gdi32.dll 2008-12-09 12:58:35 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll 2008-12-09 12:58:35 ----A---- C:\Windows\system32\Apphlpdm.dll 2008-12-09 12:58:13 ----A---- C:\Windows\system32\explorer.exe 2008-12-09 12:58:13 ----A---- C:\Windows\explorer.exe 2008-12-09 12:57:59 ----A---- C:\Windows\system32\urlmon.dll 2008-12-09 12:57:59 ----A---- C:\Windows\system32\mshtml.dll 2008-12-09 12:57:59 ----A---- C:\Windows\system32\ieframe.dll 2008-12-09 12:57:58 ----A---- C:\Windows\system32\wininet.dll 2008-12-09 12:57:58 ----A---- C:\Windows\system32\mstime.dll 2008-12-09 12:57:58 ----A---- C:\Windows\system32\jsproxy.dll 2008-12-09 12:57:58 ----A---- C:\Windows\system32\iertutil.dll 2008-12-09 12:57:48 ----A---- C:\Windows\system32\shell32.dll 2008-12-08 01:45:32 ----D---- C:\ProgramData\Apple Computer 2008-12-08 01:45:27 ----D---- C:\Program Files (x86)\illiminable 2008-12-08 01:43:36 ----D---- C:\Program Files (x86)\VistaCodecPack 2008-12-08 01:43:36 ----A---- C:\Windows\AviSplitter.INI 2008-12-07 19:33:05 ----D---- C:\Users\Supa\AppData\Roaming\vlc 2008-12-07 19:32:30 ----D---- C:\Program Files (x86)\VideoLAN 2008-12-07 19:17:40 ----D---- C:\Users\Supa\AppData\Roaming\Publish Providers 2008-12-07 19:17:34 ----AD---- C:\ProgramData\TEMP 2008-12-07 19:17:33 ----D---- C:\Users\Supa\AppData\Roaming\Sony 2008-12-07 19:15:55 ----D---- C:\Program Files (x86)\Vstplugins 2008-12-07 19:15:54 ----D---- C:\ProgramData\Sony 2008-12-07 18:56:17 ----D---- C:\Program Files (x86)\Sony 2008-12-07 18:55:44 ----D---- C:\Program Files (x86)\Sony Setup 2008-12-07 17:41:43 ----D---- C:\Users\Supa\AppData\Roaming\mIRC 2008-12-07 17:41:43 ----D---- C:\Program Files (x86)\mIRC 2008-12-07 13:13:32 ----D---- C:\ProgramData\SUPERAntiSpyware.com 2008-12-07 13:12:06 ----HD---- C:\$AVG8.VAULT$ 2008-12-07 13:11:58 ----D---- C:\Users\Supa\AppData\Roaming\SUPERAntiSpyware.com 2008-12-07 13:11:58 ----D---- C:\Program Files (x86)\SUPERAntiSpyware 2008-12-07 12:55:19 ----A---- C:\MSNCleaner.txt 2008-12-07 12:55:17 ----D---- C:\BackUpMSNCleaner 2008-12-07 12:31:04 ----A---- C:\Windows\msnfix.txt 2008-12-06 22:06:40 ----D---- C:\ProgramData\Digsby 2008-12-06 22:01:28 ----D---- C:\Users\Supa\AppData\Roaming\Digsby 2008-12-06 22:01:15 ----D---- C:\Program Files (x86)\Digsby 2008-12-06 15:21:54 ----D---- C:\Program Files (x86)\MediaMonkey 2008-12-06 13:06:21 ----D---- C:\Users\Supa\AppData\Roaming\Notepad++ 2008-12-06 13:06:21 ----D---- C:\Program Files (x86)\Notepad++ 2008-12-06 09:58:05 ----D---- C:\Program Files (x86)\Hamachi 2008-12-06 01:52:54 ----D---- C:\Users\Supa\AppData\Roaming\Wippien 2008-12-06 00:55:49 ----D---- C:\Users\Supa\AppData\Roaming\WinRAR 2008-12-06 00:55:40 ----D---- C:\Program Files (x86)\WinRAR 2008-12-06 00:41:41 ----D---- C:\ProgramData\Avg8 2008-12-06 00:34:09 ----D---- C:\Users\Supa\AppData\Roaming\aAvgApi 2008-12-05 22:24:37 ----A---- C:\Windows\War3Unin.exe 2008-12-05 22:22:13 ----D---- C:\Warcraft III 2008-12-05 22:18:45 ----D---- C:\Users\Supa\AppData\Roaming\Hamachi 2008-12-05 01:06:08 ----D---- C:\Program Files (x86)\Microsoft Works 2008-12-05 01:05:31 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 2008-12-05 01:05:30 ----D---- C:\Program Files (x86)\Common Files\DESIGNER 2008-12-05 01:04:57 ----D---- C:\Program Files (x86)\Microsoft.NET 2008-12-05 01:02:28 ----D---- C:\Program Files (x86)\Microsoft Office 2008-12-05 01:02:25 ----D---- C:\ProgramData\Microsoft Help 2008-12-05 01:02:06 ----RHD---- C:\MSOCache 2008-12-05 00:50:11 ----D---- C:\Users\Supa\AppData\Roaming\Yahoo! 2008-12-05 00:49:04 ----D---- C:\ProgramData\Yahoo! 2008-12-04 21:09:53 ----D---- C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 2008-12-04 20:50:39 ----D---- C:\Windows\PCHEALTH 2008-12-04 20:41:55 ----D---- C:\ProgramData\Viewpoint 2008-12-04 20:41:51 ----D---- C:\Program Files (x86)\Viewpoint 2008-12-04 20:41:21 ----D---- C:\ProgramData\AOL OCP 2008-12-04 20:41:21 ----D---- C:\ProgramData\AOL 2008-12-04 20:40:45 ----D---- C:\Program Files (x86)\Common Files\AOL 2008-12-04 20:37:39 ----SHDC---- C:\Program Files (x86)\Common Files\WindowsLiveInstaller 2008-12-04 20:35:29 ----D---- C:\Program Files (x86)\Windows Live 2008-12-04 20:34:25 ----A---- C:\Windows\system32\pv_c3.exe 2008-12-04 20:34:24 ----A---- C:\Windows\system32\reg_c3.exe 2008-12-04 20:34:23 ----A---- C:\Windows\system32\cpuz.exe 2008-12-04 20:34:22 ----D---- C:\ProgramData\WLInstaller 2008-12-04 20:33:59 ----D---- C:\Program Files (x86)\CEVO 2008-12-04 20:31:30 ----D---- C:\Program Files (x86)\MSXML 4.0 2008-12-04 20:22:45 ----D---- C:\Steam 2008-12-04 20:22:45 ----D---- C:\Program Files (x86)\Common Files\Steam 2008-12-04 20:02:00 ----D---- C:\Users\Supa\AppData\Roaming\Ventrilo 2008-12-04 09:14:08 ----D---- C:\Program Files (x86)\AVG 2008-12-04 02:40:08 ----D---- C:\Windows\pss 2008-12-04 02:33:22 ----D---- C:\Program Files (x86)\Yahoo! 2008-12-04 02:33:17 ----D---- C:\Program Files (x86)\CCleaner 2008-12-04 02:32:06 ----D---- C:\Users\Supa\AppData\Roaming\BitTorrent 2008-12-04 02:28:02 ----D---- C:\Users\Supa\AppData\Roaming\DNA 2008-12-04 02:28:02 ----D---- C:\Program Files (x86)\DNA 2008-12-04 02:28:01 ----D---- C:\Program Files (x86)\BitTorrent 2008-12-04 02:15:32 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR 2008-12-04 02:14:53 ----D---- C:\ProgramData\Adobe 2008-12-04 02:14:03 ----D---- C:\Program Files (x86)\Common Files\Adobe 2008-12-04 02:14:01 ----D---- C:\Program Files (x86)\Adobe 2008-12-04 01:56:38 ----D---- C:\ProgramData\WEBREG 2008-12-04 01:54:16 ----D---- C:\ProgramData\HP Product Assistant 2008-12-04 01:54:04 ----D---- C:\Program Files (x86)\Common Files\HP 2008-12-04 01:53:56 ----D---- C:\Program Files (x86)\Hewlett-Packard 2008-12-04 01:53:52 ----D---- C:\Program Files (x86)\Common Files\Hewlett-Packard 2008-12-04 01:53:26 ----D---- C:\ProgramData\Hewlett-Packard 2008-12-04 01:51:53 ----D---- C:\Users\Supa\AppData\Roaming\XemiComputers 2008-12-04 01:51:40 ----A---- C:\Windows\system32\hpzc35ha.dll 2008-12-04 01:51:37 ----A---- C:\Windows\system32\hpcdmc32.dll 2008-12-04 01:51:07 ----D---- C:\Program Files (x86)\HP 2008-12-04 01:51:06 ----HD---- C:\Config.Msi 2008-12-04 01:49:55 ----D---- C:\ProgramData\HP 2008-12-04 01:45:16 ----D---- C:\Windows\Debug 2008-12-04 01:43:38 ----D---- C:\Program Files (x86)\Common Files\InstallShield 2008-12-04 01:41:09 ----D---- C:\Windows\SoftwareDistribution 2008-12-04 01:39:38 ----D---- C:\Windows\CSC 2008-12-04 01:36:49 ----D---- C:\Users\Supa\AppData\Roaming\Leadertech 2008-12-04 01:36:46 ----D---- C:\ProgramData\Logishrd 2008-12-04 01:36:45 ----D---- C:\ProgramData\Logitech 2008-12-04 01:36:45 ----D---- C:\Program Files (x86)\Logitech 2008-12-04 01:36:45 ----D---- C:\Program Files (x86)\Common Files\LogiShrd 2008-12-04 01:31:03 ----D---- C:\ProgramData\NVIDIA 2008-12-04 01:30:49 ----SHD---- C:\System Volume Information 2008-12-04 01:30:06 ----D---- C:\Windows\Panther 2008-12-04 01:30:02 ----RAS---- C:\BOOTSECT.BAK 2008-12-04 01:30:00 ----SHD---- C:\Boot 2008-12-04 01:27:39 ----D---- C:\Windows\system32\AGEIA 2008-12-04 01:27:39 ----D---- C:\Program Files (x86)\AGEIA Technologies 2008-12-04 01:27:26 ----D---- C:\Program Files (x86)\Common Files\Wise Installation Wizard 2008-12-04 01:25:26 ----D---- C:\NVIDIA 2008-12-04 01:01:15 ----D---- C:\Users\Supa\AppData\Roaming\Mozilla 2008-12-04 01:01:02 ----D---- C:\Users\Supa\AppData\Roaming\Google 2008-12-04 01:00:47 ----D---- C:\Program Files (x86)\Mozilla Firefox 2008-12-04 00:59:35 ----D---- C:\Users\Supa\AppData\Roaming\Macromedia 2008-12-04 00:59:35 ----D---- C:\Users\Supa\AppData\Roaming\Adobe 2008-12-04 00:59:34 ----D---- C:\ProgramData\Google 2008-12-04 00:59:31 ----SHD---- C:\Windows\Installer 2008-12-04 00:59:31 ----D---- C:\Program Files (x86)\Google 2008-12-04 00:59:00 ----D---- C:\Windows\system32\Macromed 2008-12-04 00:57:08 ----A---- C:\Windows\system32\msxml3.dll 2008-12-04 00:57:07 ----A---- C:\Windows\system32\win32spl.dll 2008-12-04 00:57:07 ----A---- C:\Windows\system32\PortableDeviceApi.dll 2008-12-04 00:57:06 ----A---- C:\Windows\system32\Faultrep.dll 2008-12-04 00:56:57 ----A---- C:\Windows\system32\msxml6.dll 2008-12-04 00:56:57 ----A---- C:\Windows\system32\connect.dll 2008-12-04 00:56:55 ----A---- C:\Windows\system32\WindowsCodecsExt.dll 2008-12-04 00:56:55 ----A---- C:\Windows\system32\WindowsCodecs.dll 2008-12-04 00:56:55 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll 2008-12-04 00:56:46 ----A---- C:\Windows\system32\netapi32.dll 2008-12-04 00:53:29 ----A---- C:\Windows\system32\wups.dll 2008-12-04 00:53:29 ----A---- C:\Windows\system32\wudriver.dll 2008-12-04 00:53:29 ----A---- C:\Windows\system32\wuapi.dll 2008-12-04 00:53:23 ----A---- C:\Windows\system32\wuwebv.dll 2008-12-04 00:53:23 ----A---- C:\Windows\system32\wuapp.exe 2008-12-04 00:47:49 ----D---- C:\Users\Supa\AppData\Roaming\Identities 2008-12-04 00:47:42 ----SD---- C:\Users\Supa\AppData\Roaming\Microsoft 2008-12-04 00:47:42 ----D---- C:\Users\Supa\AppData\Roaming\Media Center Programs ======List of files/folders modified in the last 1 months====== 2008-12-17 14:21:08 ----D---- C:\Windows\Temp 2008-12-17 14:20:22 ----D---- C:\Windows\Prefetch 2008-12-17 14:19:55 ----RD---- C:\Program Files (x86) 2008-12-17 14:19:39 ----D---- C:\Windows\System32 2008-12-17 14:19:39 ----D---- C:\Windows\inf 2008-12-17 11:49:36 ----D---- C:\Windows 2008-12-17 03:15:53 ----D---- C:\Windows\Microsoft.NET 2008-12-17 03:15:51 ----RSD---- C:\Windows\assembly 2008-12-17 01:26:27 ----D---- C:\Windows\winsxs 2008-12-16 01:05:01 ----D---- C:\Windows\SysWOW64 2008-12-15 20:40:15 ----D---- C:\Windows\LiveKernelReports 2008-12-10 22:00:57 ----D---- C:\Program Files (x86)\Common Files 2008-12-10 09:30:29 ----HD---- C:\ProgramData 2008-12-10 00:31:10 ----D---- C:\Windows\rescache 2008-12-10 00:14:12 ----D---- C:\Program Files (x86)\Windows Mail 2008-12-10 00:14:11 ----D---- C:\Windows\AppPatch 2008-12-10 00:14:10 ----D---- C:\Windows\system32\en-US 2008-12-08 01:43:36 ----RD---- C:\Program Files 2008-12-07 13:52:17 ----D---- C:\PerfLogs 2008-12-07 13:38:27 ----SD---- C:\ProgramData\Microsoft 2008-12-07 13:05:44 ----D---- C:\Windows\system32\drivers 2008-12-06 15:49:55 ----SD---- C:\Windows\Downloaded Program Files 2008-12-05 03:03:24 ----D---- C:\Program Files (x86)\Common Files\microsoft shared 2008-12-05 01:05:09 ----RSD---- C:\Windows\Fonts 2008-12-05 01:03:32 ----D---- C:\Windows\ShellNew 2008-12-04 03:16:46 ----D---- C:\Windows\Logs 2008-12-04 01:55:26 ----A---- C:\Windows\win.ini 2008-12-04 01:53:59 ----D---- C:\Windows\twain_32 2008-12-04 01:05:49 ----D---- C:\Windows\Help 2008-12-04 00:54:01 ----D---- C:\Windows\PolicyDefinitions 2008-12-04 00:48:01 ----SHD---- C:\$Recycle.Bin 2008-12-04 00:47:42 ----RD---- C:\Users ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AvgLdx64;AVG AVI Loader Driver x64; C:\Windows\System32\Drivers\avgldx64.sys [] R1 AvgMfx64;AVG On-access Scanner Minifilter Driver x64; C:\Windows\System32\Drivers\avgmfx64.sys [] R1 AvgTdiA;AVG8 Network Redirector x64; C:\Windows\System32\Drivers\avgtdia.sys [] R1 CSC;Offline Files Driver; C:\Windows\system32\drivers\csc.sys [] R3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [] R3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [] R3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [] R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [] R3 ksthunk;Kernel Streaming Thunks; C:\Windows\system32\drivers\ksthunk.sys [] R3 LVPr2M64;Logitech LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [] R3 LVUSBS64;Logitech USB Monitor Filter; C:\Windows\system32\drivers\LVUSBS64.sys [] R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet; C:\Windows\system32\DRIVERS\nvmfdx64.sys [] R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [] R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [] R3 PID_PEPI;Logitech QuickCam IM(PID_PEPI); C:\Windows\system32\DRIVERS\LV302V64.SYS [] R3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [] R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [] R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [] S1 SASDIFSV;SASDIFSV; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS [2008-11-17 8944] S1 SASKUTIL;SASKUTIL; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys [2008-11-17 55024] S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [] S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [] S3 LVPr2Mon;LVPr2M64 Driver; C:\Windows\system32\DRIVERS\LVPr2M64.sys [] S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [] S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [] S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [] S3 SASENUM;SASENUM; \??\C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS [2008-11-17 7408] S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [] S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [] S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 avg8emc;AVG8 E-mail Scanner; C:\PROGRA~2\AVG\AVG8\avgemc.exe [2008-12-07 874776] R2 avg8wd;AVG8 WatchDog; C:\PROGRA~2\AVG\AVG8\avgwdsvc.exe [2008-12-07 231704] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2008-01-20 21504] R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-20 21504] R2 LVCOMSer;LVCOMSer; C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSer64.exe [2008-07-26 255000] R2 LVPrcS64;Process Monitor; C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe [2008-07-26 187928] R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-20 21504] R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-20 21504] R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-20 21504] R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2008-12-14 104944] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2008-01-20 21504] S3 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2008-01-20 93696] S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [] S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-04 138168] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PerfHost;@%systemroot%\sysWow64\perfhost.exe,-2; C:\Windows\SysWow64\perfhost.exe [2008-01-20 19968] S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2008-01-20 21504] S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files (x86)\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] -----------------EOF----------------- This post has been edited by supa: Dec 17 2008, 04:22 PM |
 |
 
|
|
Dec 26 2008, 05:06 PM
Post
#2
|
|
 Bleepin' Conundrum Group: Global Moderator Posts: 19,461 Joined: 26-April 04 From: 65 miles due East of the "Logic Free Zone", in Md, USA Member No.: 235 |
Hello and welcome to Bleeping Computer
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far. Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware. Thanks and again sorry for the delay. We need to see some information about what is happening in your machine. Please perform the following scan:
Information on A/V control HERE R, K -------------------- The only easy day was yesterday.
...some do, some don't; some will, some won't (WR) |
|
|
|
|
Jan 3 2009, 11:52 AM
Post
#3
|
|
|
Bleepin' Conundrum Group: Global Moderator Posts: 19,461 Joined: 26-April 04 From: 65 miles due East of the "Logic Free Zone", in Md, USA Member No.: 235 |
Due to the lack of feedback, this Topic is now closed.
If you still have problems, please Start a new topic. R, K -------------------- The only easy day was yesterday.
...some do, some don't; some will, some won't (WR) |
|
|
|
|
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:
| Lo-Fi Version | Time is now: 4th July 2009 - 07:33 PM |
© 2003-2009 All Rights Reserved Bleeping Computer LLC.