Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Spyware infection I think, internet explorer is slow


  • This topic is locked This topic is locked
1 reply to this topic

#1 BatGirl31

BatGirl31

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Madrid, Spain
  • Local time:04:47 PM

Posted 25 February 2009 - 11:33 PM

Referred here from: http://www.bleepingcomputer.com/forums/t/206027/can-someone-please-help-me-thank-you-very-much/ ~ OB

Hi,
well couple weeks ago, my internet explorer started to slow down, I thought it was normal, after a a week or two, it really slowed down. My internet should be able to download 1 mb per second and it downloads files at like 2 kb per second. And a friend told me it was spyware and I used so many antivirus and antispyware to get rid of it and i got tired and though booting my computer should delete my virus ( like start from fresh) sadly it didn;t work, my interent is still slow and I posted my problem where somebody tried to help me and couldn;t help me much, and he sent me here to receive help. I would appreciate if someone can help me. Thank you



DDS (Ver_09-02-01.01) - NTFSx86
Run by Dark Knight at 23:24:19.55 on 25/02/2009
Internet Explorer: 7.0.6000.16386
Microsoft® Windows Vistaâ„¢ Home Premium 6.0.6000.0.1252.2.1033.18.2038.1175 [GMT -5:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Dark Knight\Desktop\dds.scr
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} - hxxp://support.f-secure.com/ols/fscax.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

============= SERVICES / DRIVERS ===============

R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-2-17 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-2-17 55024]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-2-17 7408]

=============== Created Last 30 ================

2009-02-25 22:42 --d-h--- C:\ckis
2009-02-25 16:36 --d----- c:\programdata\Kaspersky Lab
2009-02-25 16:36 --d----- c:\progra~2\Kaspersky Lab
2009-02-24 23:31 --d----- c:\users\darkkn~1\appdata\roaming\Xfire
2009-02-24 23:31 --d----- c:\programdata\Xfire
2009-02-24 23:31 --d----- c:\progra~2\Xfire
2009-02-24 23:31 --d----- c:\program files\Xfire
2009-02-24 20:19 --d----- c:\programdata\SUPERAntiSpyware.com
2009-02-24 20:19 --d----- c:\progra~2\SUPERAntiSpyware.com
2009-02-24 20:19 --d----- c:\users\darkkn~1\appdata\roaming\SUPERAntiSpyware.com
2009-02-24 20:19 --d----- c:\program files\SUPERAntiSpyware
2009-02-24 20:18 --d----- c:\program files\common files\Wise Installation Wizard
2009-02-24 19:41 --d----- c:\users\darkkn~1\appdata\roaming\Malwarebytes
2009-02-24 19:41 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-24 19:41 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-24 19:41 --d----- c:\programdata\Malwarebytes
2009-02-24 19:41 --d----- c:\program files\Malwarebytes' Anti-Malware
2009-02-24 19:41 --d----- c:\progra~2\Malwarebytes
2009-02-24 15:09 1,524,736 a------- c:\windows\system32\wucltux.dll
2009-02-24 15:08 83,456 a------- c:\windows\system32\wudriver.dll
2009-02-24 15:08 162,064 a------- c:\windows\system32\wuwebv.dll
2009-02-24 15:08 31,232 a------- c:\windows\system32\wuapp.exe
2009-02-24 00:25 --d----- c:\windows\Panther
2009-02-24 00:25 8,192 a--s-r-- C:\BOOTSECT.BAK
2009-02-24 00:25 438,840 a--shr-- C:\bootmgr
2009-02-24 00:25 --dsh--- C:\Boot
2009-02-24 00:25 36 a---hr-- c:\windows\DELL_VERSION
2009-02-24 00:25 --d----- c:\windows\system32\OEM
2009-02-24 00:01 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-02-24 00:01 --d----- c:\program files\Synaptics
2009-02-24 00:00 1,060,424 a------- c:\windows\system32\WdfCoInstaller01000.dll
2009-02-24 00:00 196,608 a------- c:\windows\system32\SynCtrl.dll
2009-02-24 00:00 182,456 a------- c:\windows\system32\drivers\SynTP.sys
2009-02-24 00:00 163,840 a------- c:\windows\system32\SynCOM.dll
2009-02-24 00:00 143,360 a------- c:\windows\system32\SynTPAPI.dll
2009-02-24 00:00 110,592 a------- c:\windows\system32\SynTPCo4.dll
2009-02-23 23:59 --d----- C:\732f750d31c5dd795bac3b65
2009-02-23 23:42 16,056 a------- c:\windows\system32\results.xml
2009-02-23 23:37 --d----- C:\Intel
2009-02-23 23:37 --d----- C:\dell
2009-02-23 23:36 --d----- c:\windows\system32\vmm32
2009-02-23 23:36 --d----- c:\program files\Dell
2009-02-23 23:36 --dsh--- c:\windows\Installer
2009-02-23 21:34 --d----- c:\users\Dark Knight
2009-02-10 19:14 42,320 a------- c:\windows\system32\xfcodec.dll

==================== Find3M ====================

2009-02-25 22:55 86,016 a------- c:\windows\inf\infstrng.dat
2009-02-25 22:55 86,016 a------- c:\windows\inf\infstor.dat
2009-02-25 22:55 51,200 a------- c:\windows\inf\infpub.dat
2007-02-21 14:49 665,600 a------- c:\windows\inf\drvindex.dat
2006-11-02 07:50 174 a--sh--- c:\program files\desktop.ini
2006-11-02 07:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 07:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 07:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 07:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2007-02-21 14:49 8,192 a--sh--- c:\windows\users\default\NTUSER.DAT

============= FINISH: 23:25:00.59 ===============

Attached Files


Edited by Orange Blossom, 26 February 2009 - 12:51 AM.


BC AdBot (Login to Remove)

 


#2 rigel

rigel

    FD-BC


  • Members
  • 12,944 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Carolina - USA
  • Local time:04:47 PM

Posted 28 February 2009 - 07:21 PM

Closed per members request

"In a world where you can be anything, be yourself." ~ unknown

"Fall in love with someone who deserves your heart. Not someone who plays with it. Will Smith





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users