Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Antivirus 2009 & SmitFraud-c & SmitFraud-c.gp


  • This topic is locked This topic is locked
2 replies to this topic

#1 bbiu

bbiu

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:11:22 AM

Posted 22 January 2009 - 10:39 AM

DDS (Ver_09-01-18.01) - NTFSx86
Run by Brad Bemis at 10:28:24.64 on Thu 01/22/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.245 [GMT -5:00]

AV: Lavasoft Ad-Watch Live! Anti-Virus *On-access scanning enabled* (Updated)
AV: ESET Smart Security 3.0 *On-access scanning enabled* (Updated)
FW: ESET Personal firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Logitech\Easy Synchronization\servicestub.exe
C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\Explorer.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\LClock\LClock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Styler\Styler.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\WINDOWS\system32\svchost.exe -k HPService
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Microsoft ActiveSync\WCESMgr.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\SOTI\Pocket Controller-Pro\PocketController.exe
C:\Documents and Settings\Brad Bemis\Desktop\dds.scr

============== Pseudo HJT Report ===============

mStart Page = about:blank
mWinlogon: SfcDisable=-99 (0xffffff9d)
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: FGCatchUrl: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll
BHO: XML Class: {500bca15-57a7-4eaf-8143-8c619470b13d} - c:\windows\system32\msxml71.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: FlashGet GetFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: StylerToolBar: {d2f8f919-690b-4ea2-9fa7-a203d1e04f75} - c:\program files\styler\tb\StylerTB.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: PopUpCop: {db43e4e6-ff8a-4018-8c8e-f68587a44a73} - c:\progra~1\popupcop\PopUpCop.dll
EB: MasterCook Bar: {c92041c1-6d22-4069-ba0e-66246aa752b0} - c:\windows\system32\shdocvw.dll
uRun: [LClock] "c:\program files\lclock\LClock.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [H/PC Connection Agent] "c:\program files\microsoft activesync\wcescomm.exe"
uRun: [Cognac] c:\docume~1\bradbe~1\locals~1\temp\62D.tmp.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"
mRun: [NvCplDaemon] "RUNDLL32.EXE" c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] "nwiz.exe" /install
mRun: [NvMediaCenter] "RUNDLL32.EXE" c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
mRun: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent
mRun: [hpqSRMon] "c:\program files\hp\digital imaging\bin\hpqSRMon.exe"
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [Jet Detection] "c:\program files\creative\sblive\program\ADGJDet.exe"
mRun: [Easy Synchronization] c:\program files\logitech\easy synchronization\LogitechEasySync.exe
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRunOnce: [Easy Synchronization] c:\program files\logitech\easy synchronization\LogitechEasySync.exe --ports
dRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
dRun: [LClock] c:\program files\lclock\LClock.exe
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
dRunOnce: [ShowDeskFix] regsvr32 /s /n /i:u shell32
StartupFolder: c:\docume~1\bradbe~1\startm~1\programs\startup\styler.lnk - c:\docume~1\bradbe~1\applic~1\microsoft\installer\{e9ecf354-2422-4fdb-9abf-d8adac0ef941}\_585b207a.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: &Convert and Open - c:\progra~1\camtech\conver~1\ConvertIt.htm
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: (PopUpCop) Allow images... - c:\progra~1\popupcop\PopUpCop.dll/allowimages
IE: (PopUpCop) Block images... - c:\progra~1\popupcop\PopUpCop.dll/blockimages
IE: (PopUpCop) Open In New Window - c:\progra~1\popupcop\PopUpCop.dll/imagenew
IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: MasterCook: Select Image - c:\program files\mastercook 9\web\MCIEContext.hta
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: Send to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\program files\flashget\FlashGet.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\mi3aa1~1\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\mi3aa1~1\INetRepl.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
IE: {E6EF5071-7647-4E85-9785-87B6CF5CB561} - {C92041C1-6D22-4069-BA0E-66246AA752B0} - c:\windows\system32\shdocvw.dll
Trusted Zone: ga.gov\compass
Trusted Zone: microsoft.com\update
Trusted Zone: microsoft.com\windowsupdate
Trusted Zone: nextel.com\myaccount
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll
Notify: WBSrv - c:\program files\stardock\object desktop\windowblinds\wbsrv.dll
AppInit_DLLs: acaptuser32.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: ShellExecuteHook class: {fe24cd78-7c63-465d-8787-4edf7fc79895} - c:\program files\logitech\easy synchronization\shellexecutehook.dll

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-1-17 64160]
R4 ekrn;Eset Service;c:\program files\eset\eset smart security\ekrn.exe [2008-10-24 468224]
R4 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2008-12-16 921936]
S3 Ndisprot;ArcNet NDIS Protocol Driver;c:\windows\system32\drivers\ndisprot.sys [2008-11-26 27904]

=============== Created Last 30 ================

2009-01-20 08:51 <DIR> --d----- C:\!KillBox
2009-01-20 06:21 299,008 a------- c:\windows\system32\winsystems.dll
2009-01-20 06:21 66,048 a------- c:\windows\system32\ieupdates.exe
2009-01-20 06:01 0 a------- c:\windows\system32\O5ns6K7W.exe.a_a
2009-01-20 06:01 107,012 a------- c:\windows\system32\msxml71.dll
2009-01-18 21:32 244 a---h--- C:\sqmnoopt11.sqm
2009-01-18 21:32 232 a---h--- C:\sqmdata11.sqm
2009-01-18 21:32 244 a---h--- C:\sqmnoopt10.sqm
2009-01-18 21:32 232 a---h--- C:\sqmdata10.sqm
2009-01-18 21:32 244 a---h--- C:\sqmnoopt09.sqm
2009-01-18 21:32 232 a---h--- C:\sqmdata09.sqm
2009-01-18 21:30 244 a---h--- C:\sqmnoopt08.sqm
2009-01-18 21:30 232 a---h--- C:\sqmdata08.sqm
2009-01-18 21:30 244 a---h--- C:\sqmnoopt07.sqm
2009-01-18 21:30 232 a---h--- C:\sqmdata07.sqm
2009-01-18 21:29 244 a---h--- C:\sqmnoopt06.sqm
2009-01-18 21:29 232 a---h--- C:\sqmdata06.sqm
2009-01-17 15:17 3,375,925 a------- c:\windows\{00000002-00000000-0000000A-00001102-00000002-80641102}.BAK
2009-01-17 11:07 36,864 a------- c:\windows\system32\MD5.ocx
2009-01-17 11:07 <DIR> --d----- c:\program files\Office_Key_Changer
2009-01-17 00:19 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-01-17 00:16 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{3E116893-315F-4BF1-8748-007007CF5940}
2009-01-17 00:16 <DIR> --d----- c:\program files\Lavasoft
2009-01-16 21:44 <DIR> --d----- c:\program files\jv16 PowerTools 2008
2009-01-14 05:39 244 a---h--- C:\sqmnoopt05.sqm
2009-01-14 05:39 232 a---h--- C:\sqmdata05.sqm
2009-01-14 05:02 244 a---h--- C:\sqmnoopt04.sqm
2009-01-14 05:02 232 a---h--- C:\sqmdata04.sqm
2009-01-14 04:53 244 a---h--- C:\sqmnoopt03.sqm
2009-01-14 04:53 232 a---h--- C:\sqmdata03.sqm
2009-01-14 04:53 244 a---h--- C:\sqmnoopt02.sqm
2009-01-14 04:53 232 a---h--- C:\sqmdata02.sqm
2009-01-14 04:53 244 a---h--- C:\sqmnoopt01.sqm
2009-01-14 04:53 232 a---h--- C:\sqmdata01.sqm
2009-01-14 04:52 244 a---h--- C:\sqmnoopt00.sqm
2009-01-14 04:52 232 a---h--- C:\sqmdata00.sqm
2009-01-12 10:55 <DIR> --d----- c:\program files\ESET
2009-01-11 15:48 <DIR> --d----- c:\windows\system32\appmgmt
2009-01-11 15:48 73,224 a------- c:\windows\system32\drivers\epfw.sys
2009-01-11 15:48 54,280 a------- c:\windows\system32\drivers\epfwtdi.sys
2009-01-11 15:48 39,944 a------- c:\windows\system32\drivers\eamon.sys
2009-01-11 15:48 53,256 a------- c:\windows\system32\drivers\easdrv.sys
2009-01-09 06:18 31,744 a------- c:\windows\system32\drivers\wceusbsh.sys
2009-01-08 13:48 <DIR> --d----- c:\program files\Citrix
2009-01-08 13:48 60,744 a------- c:\documents and settings\brad bemis\g2mdlhlpx.exe
2009-01-07 12:47 <DIR> --d----- c:\docume~1\bradbe~1\applic~1\ESET
2009-01-07 12:47 31,240 a------- c:\windows\system32\drivers\epfwndis.sys
2009-01-07 07:27 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FlashFXP
2009-01-07 04:20 <DIR> --d----- c:\docume~1\bradbe~1\applic~1\FlashFXP
2009-01-07 03:59 <DIR> --d----- c:\program files\FlashFXP
2009-01-06 13:48 37,392 a------- c:\windows\system32\drivers\LMouFilt.Sys
2009-01-06 13:46 35,472 a------- c:\windows\system32\drivers\LHidFilt.Sys
2009-01-06 13:29 47,104 a------- c:\windows\system32\drivers\vserial.sys
2009-01-06 13:29 18,167 a------- c:\windows\system32\drivers\vsb.sys
2009-01-06 13:27 76,304 a------- c:\windows\KHALMNPR.Exe
2009-01-01 14:41 <DIR> --d----- c:\docume~1\bradbe~1\applic~1\Windows Desktop Search
2009-01-01 14:35 <DIR> --d----- c:\program files\Windows Desktop Search
2009-01-01 14:31 192,000 -------- c:\windows\system32\dllcache\offfilt.dll
2009-01-01 14:31 98,304 -------- c:\windows\system32\dllcache\nlhtml.dll
2009-01-01 14:31 29,696 -------- c:\windows\system32\dllcache\mimefilt.dll
2008-12-31 09:35 <DIR> --d----- c:\windows\pss
2008-12-31 01:57 <DIR> --d----- c:\program files\GetData
2008-12-30 14:47 <DIR> --d----- C:\Downloads
2008-12-29 19:29 <DIR> --d----- c:\program files\Paint.NET
2008-12-29 16:56 5,245 a------- c:\windows\Instlog.lyt
2008-12-29 15:17 16,420 a------- c:\windows\system32\BMXStateBkp-{00000002-00000000-0000000A-00001102-00000002-80641102}.rfx
2008-12-29 15:17 16,420 a------- c:\windows\system32\BMXState-{00000002-00000000-0000000A-00001102-00000002-80641102}.rfx
2008-12-29 15:17 1,080 a------- c:\windows\system32\settingsbkup.sfm
2008-12-29 15:17 1,080 a------- c:\windows\system32\settings.sfm
2008-12-29 15:17 24 a------- c:\windows\system32\DVCStateBkp-{00000002-00000000-0000000A-00001102-00000002-80641102}.dat
2008-12-29 15:17 24 a------- c:\windows\system32\DVCState-{00000002-00000000-0000000A-00001102-00000002-80641102}.dat
2008-12-28 15:43 3,375,925 a------- c:\windows\{00000002-00000000-0000000A-00001102-00000002-80641102}.CDF
2008-12-28 15:37 24,888 a------- c:\windows\system32\BMXCtrlState-{00000002-00000000-0000000A-00001102-00000002-80641102}.rfx
2008-12-28 15:37 24,888 a------- c:\windows\system32\BMXBkpCtrlState-{00000002-00000000-0000000A-00001102-00000002-80641102}.rfx
2008-12-28 15:35 128 a------- c:\windows\SBWIN.INI
2008-12-28 15:35 90,112 -------- c:\windows\Updreg.EXE
2008-12-28 15:35 24,976 -------- c:\windows\CTRES.DLL
2008-12-28 15:35 231 -------- c:\windows\AC3API.INI
2008-12-28 15:35 149,504 -------- c:\windows\system32\MFCANS32.DLL
2008-12-28 15:35 108,032 -------- c:\windows\system32\MFCUIA32.DLL
2008-12-28 15:35 84,992 -------- c:\windows\system32\SFCVRT32.DLL
2008-12-28 15:35 54,784 -------- c:\windows\system32\INETWH32.DLL
2008-12-28 15:35 53,552 -------- c:\windows\CTCCW.DLL
2008-12-28 15:35 1,048,576 -------- c:\windows\system32\SFMAN.DAT
2008-12-28 15:35 82,432 -------- c:\windows\system32\CTWFLT32.DLL
2008-12-28 15:35 26,768 -------- c:\windows\system32\CTL3D.DLL
2008-12-28 15:34 <DIR> --d----- c:\windows\system32\Defaults
2008-12-28 15:31 12,288 -------- c:\windows\system32\AHQCpURes.dll
2008-12-28 15:31 32,768 a------- c:\windows\system32\AudioHQU.cpl
2008-12-28 15:26 <DIR> --d----- c:\program files\Creative
2008-12-28 15:26 6,752 -------- c:\windows\system32\PFMODNT.SYS
2008-12-26 05:52 <DIR> --d----- C:\Logitech
2008-12-24 16:14 <DIR> --d----- c:\docume~1\bradbe~1\applic~1\Ilium Software
2008-12-24 16:14 <DIR> --d----- c:\program files\Ilium Software
2008-12-24 16:14 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Ilium Software

==================== Find3M ====================

2009-01-19 00:19 15,688 a------- c:\windows\system32\lsdelete.exe
2008-12-13 05:46 2,480,620 a------- c:\docume~1\bradbe~1\applic~1\rrentturbobooster_installer.exe
2008-12-13 01:26 3,594,752 -------- c:\windows\system32\dllcache\mshtml.dll
2008-12-11 05:57 333,952 a------- c:\windows\system32\drivers\srv.sys
2008-12-11 05:57 333,952 -------- c:\windows\system32\dllcache\srv.sys
2008-11-29 20:44 164 a------- C:\install.dat
2008-11-27 09:05 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-11-26 10:24 35,888 a----r-- c:\windows\system32\drivers\SymIM.sys
2008-11-26 09:34 27,904 a------- c:\windows\system32\drivers\ndisprot.sys
2008-11-26 09:13 178,563 a------- c:\windows\hpwins20.dat
2008-11-26 07:56 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2008-11-26 07:56 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2008-11-26 07:56 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2008-11-26 04:41 21,640 a------- c:\windows\system32\emptyregdb.dat
2008-11-10 05:43 410,984 a------- c:\windows\system32\deploytk.dll
2008-11-07 16:38 84,496 a------- c:\windows\system32\KemXML.dll
2008-11-07 16:38 117,264 a------- c:\windows\system32\KemWnd.dll
2008-11-07 16:38 145,936 a------- c:\windows\system32\KemUtil.dll
2008-11-07 16:38 170,512 a------- c:\windows\system32\kemutb.dll
2008-11-07 16:37 301,656 a------- c:\windows\system32\BtCoreIf.dll

============= FINISH: 10:29:18.34 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 DocSatan

DocSatan

    Bleepin' Wanna-Be


  • Members
  • 2,156 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston, Ma.
  • Local time:11:22 AM

Posted 01 February 2009 - 11:44 AM

Hello bbiu,

I'm DocSatan and I will be helping you with your computer problem. :)

The DDS Log you have posted is about 10 days old (sorry for the long wait). A lot can happen in 10 days, so I'm sure that this log no longer represents your computers current state.

Please post a new DDS log as a reply to this topic and I will get back to you ASAP. :thumbup2:

Doc.

#3 Shaba

Shaba

    Koutsi


  • Members
  • 7,872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:05:22 PM

Posted 06 February 2009 - 01:30 PM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Microsoft MVP Consumer Security
Posted Image

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users