Google is overrun by overlick.cn

Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

BleepingComputer.com > Security > HijackThis Logs and Virus/Trojan/Spyware/Malware Removal > Misplaced HJT Logs

Google is overrun by overlick.cn

Options

talion View Member Profile	Jul 3 2009, 01:55 AM Post #1
New Member Group: Members Posts: 3 Joined: 3-July 09 Member No.: 347,768	Any Google search and instead of going to the search I the browser goes to overclick.cn. I really would appreciate any help! Here are the logs from the DDS program: DDS (Ver_09-06-26.01) - NTFSx86 Run by Stephanie at 22:27:01.60 on Thu 07/02/2009 Internet Explorer: 7.0.5730.13 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1012.210 [GMT -7:00] AV: Norton AntiVirus 2006 On-access scanning enabled (Updated) {E10A9785-9598-4754-B552-92431C1C35F8} AV: McAfee VirusScan On-access scanning enabled (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83} FW: Norton Internet Worm Protection enabled {990F9400-4CEE-43EA-A83A-D013ADD8EA6E} FW: McAfee Personal Firewall enabled {94894B63-8C7F-4050-BDA4-813CA00DA3E8} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\LxrSII1s.exe C:\Program Files\McAfee\SiteAdvisor\McSACore.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\Program Files\McAfee\MSK\MskSrver.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe C:\QUALCOMM\QDLService\QDLService.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\svchost.exe -k netsvcs c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Documents and Settings\Stephanie\Local Settings\Application Data\Lexar Media\LxrAutorun.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\Program Files\iPod\bin\iPodService.exe C:\DOCUME~1\STEPHA~1\LOCALS~1\Temp\RtkBtMnt.exe C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\Norton AntiVirus\NAVW32.EXE C:\Program Files\Carbonite\CarbonitePreinstaller.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\LimeWire\LimeWire.exe C:\Program Files\Adobe\Reader 9.0\Reader\AcroRd32.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Stephanie\Desktop\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://www.google.com/ uSearch Page = hxxp://www.google.com uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0609&m=aoa150 uSearch Bar = hxxp://www.google.com/ie mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0609&m=aoa150 mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&s=0&o=xph&d=0609&m=aoa150 uInternet Settings,ProxyOverride = *.local uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s mSearchAssistant = BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: McAfee Phishing Filter: {27b4851a-3207-45a2-b947-be8afe6163ab} - c:\progra~1\mcafee\msk\mskapbho.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\progra~1\mcafee\viruss~1\scriptsn.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: CNavExtBho Class: {a8f38d8d-e480-4d52-b7a2-731bb6995fdd} - c:\program files\norton antivirus\NavShExt.dll BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll TB: Norton AntiVirus: {c4069e3a-68f1-403e-b40e-20066696354b} - c:\program files\norton antivirus\NavShExt.dll TB: {6226BA26-C017-4007-928C-DE9715C6FA67} - No File EB: {3E704B37-0376-83AF-26FF-4E7A41DB02E1} - No File uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [LxrAutorun] c:\documents and settings\stephanie\local settings\application data\lexar media\LxrAutorun.exe mRun: [LaunchApp] Alaunch mRun: [IgfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [Alcmtr] ALCMTR.EXE mRun: [AzMixerSel] c:\program files\realtek\audio\drivers\AzMixerSel.exe mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName mRun: [CarboniteSetupLite] "c:\program files\carbonite\CarbonitePreinstaller.exe" /preinstalled mRun: [mcagent_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey mRun: [PLFSetL] c:\windows\PLFSetL.exe mRun: [snp2uvc] c:\windows\vsnp2uvc.exe mRun: [eRecoveryService] c:\acer\empowering technology\erecovery\eRAgent.exe mRun: [AT&T Communication Manager] "c:\program files\at&t\communication manager\ATTCM.exe" -a mRun: [Whisher] "C:/Program Files/Whisher/Whisher.exe" -i mRun: [wifi] "C:/Program Files/wifi.com/wifi.exe" -i mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [cftmon] c:\windows\system32\oiuw.exe mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe mRun: [13522184] c:\documents and settings\all users\application data\13522184\13522184.exe mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe" mRun: [Symantec PIF AlertEng] "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe" /a /m "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\AlertEng.dll" StartupFolder: c:\docume~1\stepha~1\startm~1\programs\startup\runit_32.lnk - c:\program files\runit\runit_32.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\interv~1.lnk - c:\program files\intervideo\common\bin\WinCinemaMgr.exe IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1246428876453 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll Notify: igfxcui - igfxdev.dll ============= SERVICES / DRIVERS =============== R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-6-30 64160] R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2008-9-26 214024] R1 SAVRTPEL;SAVRTPEL;c:\program files\norton antivirus\Savrtpel.sys [2005-8-26 53896] R1 wifimanio;Advanced WiFi-Manager NDIS Protocol Driver;c:\windows\system32\drivers\wifimanio.sys [2009-6-11 21376] R2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\CCEVTMGR.EXE [2005-9-17 192104] R2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\CCSETMGR.EXE [2005-9-17 169576] R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-3-9 1029456] R2 LxrSII1d;Secure II Driver;c:\windows\system32\drivers\LxrSII1d.sys [2009-6-19 72672] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2008-9-18 210216] R2 McProxy;McAfee Proxy Service;c:\progra~1\common~1\mcafee\mcproxy\mcproxy.exe [2008-9-10 359952] R2 McShield;McAfee Real-time Scanner;c:\progra~1\mcafee\viruss~1\mcshield.exe [2008-9-26 144704] R2 navapsvc;Norton AntiVirus Auto-Protect Service;c:\program files\norton antivirus\NAVAPSVC.EXE [2005-9-24 139888] R2 QDLService;Qualcomm Gobi Download Service;c:\qualcomm\qdlservice\QDLService.exe [2008-11-9 345336] R2 Symantec Core LC;Symantec Core LC;c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe [2009-7-1 1251720] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-7-1 101936] R3 McSysmon;McAfee SystemGuards;c:\progra~1\mcafee\viruss~1\mcsysmon.exe [2008-9-26 606736] R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2008-9-26 79880] R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2008-9-26 35272] R3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2008-9-26 40552] R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090702.005\NAVENG.Sys [2009-7-2 89104] R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090702.005\NavEx15.Sys [2009-7-2 876144] R3 SAVRT;SAVRT;c:\program files\norton antivirus\savrt.sys [2005-8-26 334984] S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [2008-7-8 96856] S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2008-9-26 34216] S3 QCFilterGAD;Gobi AD USB Composite Device Filter Driver;c:\windows\system32\drivers\qcfilterGAD.sys [2009-6-4 5248] S3 qcusbnetGAD;Gobi AD USB-NDIS miniport;c:\windows\system32\drivers\qcusbnetGAD.sys [2009-6-4 115200] S3 qcusbserGAD;Gobi AD USB Device for Legacy Serial Communication;c:\windows\system32\drivers\qcusbserGAD.sys [2009-6-4 103680] S3 SAVScan;Symantec AVScan;c:\program files\norton antivirus\SAVScan.exe [2005-8-26 198368] =============== Created Last 30 ================ 2009-07-01 14:17 10,635 a------- c:\windows\system32\drivers\SYMEVENT.CAT 2009-07-01 14:17 806 a------- c:\windows\system32\drivers\SYMEVENT.INF 2009-07-01 11:45 <DIR> --d----- c:\docume~1\stepha~1\applic~1\Symantec 2009-07-01 11:40 <DIR> --d----- c:\program files\Norton AntiVirus 2009-07-01 11:39 10,344 a------- c:\windows\system32\drivers\symlcbrd.sys 2009-07-01 11:39 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS 2009-07-01 11:39 60,808 a------- c:\windows\system32\S32EVNT1.DLL 2009-07-01 04:10 268,648 a------- c:\windows\system32\mucltui.dll 2009-07-01 04:10 27,496 a------- c:\windows\system32\mucltui.dll.mui 2009-07-01 00:16 <DIR> --d----- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-06-30 23:33 2,560 -------- c:\windows\system32\xpsp4res.dll 2009-06-30 23:26 <DIR> --d----- c:\windows\system32\PreInstall 2009-06-30 17:57 664 a------- c:\windows\system32\d3d9caps.dat 2009-06-30 16:24 <DIR> --d----- c:\program files\Symantec 2009-06-30 16:24 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Symantec 2009-06-30 16:24 <DIR> --d----- c:\program files\common files\Symantec Shared 2009-06-30 13:52 <DIR> --d----- c:\docume~1\alluse~1\applic~1\13522184 2009-06-30 02:44 15,688 a------- c:\windows\system32\lsdelete.exe 2009-06-30 02:38 64,160 a------- c:\windows\system32\drivers\Lbd.sys 2009-06-30 02:28 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F} 2009-06-30 02:28 <DIR> --d----- c:\program files\Lavasoft 2009-06-29 01:13 218 a------- c:\windows\system32\winset.ini 2009-06-29 01:13 138,752 a------- c:\windows\vhso60375.exe 2009-06-29 01:13 <DIR> --d----- c:\program files\runit 2009-06-29 01:13 69,697 a------- c:\windows\qfho14184.exe 2009-06-29 01:13 <DIR> --d----- c:\program files\IEToolbar 2009-06-29 01:12 889,078 a------- c:\windows\hllkn1270.exe 2009-06-28 17:53 107,368 a------- c:\windows\system32\GEARAspi.dll 2009-06-28 17:53 23,400 a------- c:\windows\system32\drivers\GEARAspiWDM.sys 2009-06-28 17:52 <DIR> --d----- c:\program files\iPod 2009-06-28 17:52 <DIR> --d----- c:\program files\iTunes 2009-06-28 17:52 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2009-06-28 17:52 <DIR> --d----- c:\program files\Bonjour 2009-06-23 22:20 57,344 -------- c:\windows\system32\XButton.ocx 2009-06-23 22:20 389,120 -------- c:\windows\system32\actskn43.ocx 2009-06-23 22:20 233,472 -------- c:\windows\system32\wpcap.dll 2009-06-23 22:20 81,920 -------- c:\windows\system32\Packet.dll 2009-06-23 22:20 61,440 -------- c:\windows\system32\WanPacket.dll 2009-06-23 22:20 32,512 -------- c:\windows\system32\drivers\npf.sys 2009-06-23 22:20 <DIR> --d----- c:\program files\Makayama Interactive 2009-06-19 00:02 139,264 a------- c:\windows\system32\LxrSII1.dll 2009-06-19 00:02 72,672 a------- c:\windows\system32\drivers\LxrSII1d.sys 2009-06-19 00:02 49,152 a------- c:\windows\system32\LxrSII1s.exe 2009-06-19 00:02 23,934 a------- c:\windows\LxrEncVlt.ico 2009-06-19 00:02 3,262 a------- c:\windows\LxrSgeEnc.ico 2009-06-18 10:51 <DIR> --d----- c:\docume~1\stepha~1\applic~1\Ceedo 2009-06-16 23:33 <DIR> --d----- c:\docume~1\stepha~1\applic~1\LimeWire 2009-06-16 23:30 410,984 a------- c:\windows\system32\deploytk.dll 2009-06-16 23:30 73,728 a------- c:\windows\system32\javacpl.cpl 2009-06-16 23:22 <DIR> --d----- c:\program files\LimeWire 2009-06-16 23:20 <DIR> --d----- c:\docume~1\alluse~1\applic~1\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 2009-06-15 20:58 26,368 ac------ c:\windows\system32\dllcache\usbstor.sys 2009-06-14 22:45 5,632 a------- c:\windows\system32\ptpusb.dll 2009-06-14 22:45 159,232 a------- c:\windows\system32\ptpusd.dll 2009-06-14 22:45 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys 2009-06-14 22:45 15,104 a------- c:\windows\system32\drivers\usbscan.sys 2009-06-11 22:44 <DIR> --d----- c:\docume~1\stepha~1\applic~1\InfraRecorder 2009-06-11 22:30 <DIR> --d----- c:\documents and settings\stephanie\config 2009-06-11 20:27 <DIR> --d----- c:\program files\InfraRecorder 2009-06-11 18:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\WiFi-Manager Data 2009-06-11 18:43 <DIR> --d----- c:\docume~1\stepha~1\applic~1\wifi 2009-06-11 18:42 323,584 -------- c:\windows\system32\WiFiMan.dll 2009-06-11 18:42 21,376 a------- c:\windows\system32\drivers\wifimanio.sys 2009-06-11 18:36 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Tarma Installer 2009-06-10 11:25 <DIR> --d----- C:\Research in Motion 2009-06-10 11:05 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AT&T 2009-06-10 11:04 26,760 a----r-- c:\windows\system32\drivers\swmsflt.sys 2009-06-10 11:04 <DIR> --d----- c:\docume~1\stepha~1\applic~1\Sierra Wireless 2009-06-06 16:48 <DIR> --d----- c:\docume~1\stepha~1\applic~1\AT&T 2009-06-06 16:30 26,496 a----r-- c:\windows\system32\drivers\RimSerial.sys 2009-06-06 16:29 <DIR> --d----- c:\program files\common files\Motorola Shared 2009-06-06 16:29 <DIR> --d----- c:\program files\common files\Research in Motion 2009-06-06 16:29 <DIR> --d----- c:\program files\Sierra Wireless Inc 2009-06-06 16:29 <DIR> --d----- c:\program files\AT&T 2009-06-06 16:28 <DIR> --d----- c:\program files\Option 2009-06-04 09:54 <DIR> --d----- c:\windows\system32\SoftwareDistribution 2009-06-04 04:02 <DIR> --d----- c:\docume~1\stepha~1\applic~1\eSobi 2009-06-04 03:51 <DIR> --d----- c:\program files\Internet Chess Club 2009-06-04 03:37 32,128 ac------ c:\windows\system32\dllcache\usbccgp.sys 2009-06-04 03:37 32,128 a------- c:\windows\system32\drivers\usbccgp.sys 2009-06-04 03:27 321,024 a------- c:\windows\system32\ERUpdateHidden.EXE 2009-06-04 03:27 258,048 a------- c:\windows\system32\Uninstall_eRecovery.exe 2009-06-04 03:27 258,048 a------- c:\windows\system32\CheckD2DSystem.exe 2009-06-04 03:27 159,744 a------- c:\windows\system32\CloseProcessWindow.dll 2009-06-04 03:27 16,384 a------- c:\windows\system32\ClearEvent.exe 2009-06-04 03:27 730 a------- c:\windows\system32\setup.iss 2009-06-04 03:25 <DIR> --d----- c:\program files\common files\SNP2UVC 2009-06-04 03:25 <DIR> --d----- c:\windows\SUYIN NB Cam 2009-06-04 03:24 <DIR> --d----- c:\program files\Acer 3G Connection Manager 2009-06-04 03:24 115,200 a------- c:\windows\system32\drivers\qcusbnetGAD.sys 2009-06-04 03:24 5,248 a------- c:\windows\system32\drivers\qcfilterGAD.sys 2009-06-04 03:24 103,680 a------- c:\windows\system32\drivers\qcusbserGAD.sys 2009-06-04 03:23 <DIR> --d----- c:\docume~1\alluse~1\applic~1\QUALCOMM 2009-06-04 03:23 <DIR> --d----- C:\QUALCOMM 2009-06-04 03:22 <DIR> --d----- c:\documents and settings\Stephanie 2009-06-04 03:12 8,192 a------- c:\windows\REGLOCS.OLD ==================== Find3M ==================== 2009-06-06 23:05 76,487 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat 2009-05-07 08:32 345,600 a------- c:\windows\system32\localspl.dll 2009-04-28 21:56 827,392 a------- c:\windows\system32\wininet.dll 2009-04-28 21:55 78,336 a------- c:\windows\system32\ieencode.dll 2009-04-17 05:26 1,847,168 a------- c:\windows\system32\win32k.sys 2009-04-15 07:51 585,216 a------- c:\windows\system32\rpcrt4.dll 2009-01-20 11:25 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\application data\microsoft\feeds cache\index.dat ============= FINISH: 22:29:43.01 ===============

garmanma View Member Profile	Jul 3 2009, 10:46 AM Post #2
Computer Masochist Group: Moderator Posts: 22,937 Joined: 27-January 07 From: Cleveland, Ohio Member No.: 108,618	I'm sorry, but you need to repost you log. I have moved your Topic that included a HijackThis/DDS log here to the Misplaced HJT Logs forum. You posted your log in a forum not intended for HijackThis/DDS logs analysis. We can only allow topics with such logs in the HijackThis Logs and Malware Removal forum. This restriction is to ensure you get the best help available, from those who specialize in malware anlaysis and removal. It also should prevent you from receiving ineffective or even potentially dangerous advice, whether well meaning or not. We understand that dealing with malware issues and getting help can be frustrating but improperly posting a log usually happens if you missed the directions* we provide to those who require malware removal assistance. Prior to posting a log, we ask that you please read and follow all instructions in the pinned topic titled Preparation Guide For Use Before Posting A Hijackthis Log. Following the steps in this Guide will allow the HJT Team to quickly help you with specific fixes for what may remain on your system. Please complete all the steps in the Guide. If you can't perform a step, then skip it and continue with the next. In Step 6* there are instructions for downloading and running DDS which will create a Pseudo HJT Report as part of its log. When you have completed those steps, start a new topic in the HijackThis Logs and Malware Removal forum as directed in the Prep Guide to post a new log. Please do not post any more logs to this topic as it just a placeholder to be used to help you post the information in the proper way and in the proper forum. Going forward, HijackThis logs should only be posted in the HijackThis Logs and Virus/Trojan/Spyware/Malware Removal in order to make it easier for our helpers to respond to your topic The Misplaced HJT Logs forum is strictly a holding area where the BC Staff can assist you with preparations for and to properly post your log. If you have a question or encounter a problem in the Prep Guide, please do post back to this topic; that is what it is here for. When your new DDS/HJT log is posted in the proper forum, please reply to this topic with a link to your new topic. Once that is done, a Member of the HJT Team will analyze your log and assist you with step by step instructions to clean your computer or otherwise advise what needs to be done. Thanks for your cooperation and good luck. The BC Sta -------------------- Mark why won't my laptop work? Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits Become a BleepingComputer fan: Facebook and Twitter

« Next Oldest · Misplaced HJT Logs · Next Newest »

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Lo-Fi Version

Time is now: 8th November 2009 - 07:49 AM

Advertise \| About Us \| Terms of Use \| Privacy Policy \| Contact Us \| Site Map \| Chat \| Tutorials \| Uninstall List
Discussion Forums \| The Computer Glossary \| Resources \| RSS Feeds \| Startups \| The File Database \| Virus Removal Guides