Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Onlinenotify+no access to antivirus


  • This topic is locked This topic is locked
2 replies to this topic

#1 CJHMane

CJHMane

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:09 PM

Posted 07 March 2009 - 02:19 PM

I have been having issues with my computer, starting maybe a couple weeks ago. The main thing is that I randomly get IE windows opening up to Onlinenotify.net/something or other saying theres no space on my hard drive etc. I have attempted to use several different anti-virus and anti-malware programs, and when I try to run the program, it says there is some kind of error and it wont start. It wont allow me to run any form of anti-virus whatsoever, as well as restricting some other administrative options. Its getting pretty frustrating because my computer is running like crap, and my internet connection, which is a cable connection, has the bandwidth now of a dial up it seeems. Any help would be greatly appreciated


Heres my dds report


DDS (Ver_09-02-01.01) - NTFSx86
Run by Owner at 14:11:10.82 on Sat 03/07/2009
Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.511.277 [GMT -5:00]


============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\Userinit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = about:blank
uWindow Title = Microsoft Internet Explorer
mDefault_Page_URL =
mDefault_Search_URL =
mSearch Page =
mStart Page = about:blank
mWindow Title = Microsoft Internet Explorer
uInternet Connection Wizard,ShellNext = iexplore
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
mWinlogon: Userinit=c:\windows\system32\Userinit.exe
BHO:  - No File
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat

7.0\activex\AcroIEHelper.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program

files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
TB: {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - No File
TB: {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - No File
TB: {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - No File
uRun: [SetDefaultMIDI] MIDIDef.exe
uRun: [STYLEXP] c:\program files\tgtsoft\stylexp\StyleXP.exe -Hide
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [DAEMON Tools Lite] "c:\program files\daemon tools lite\daemon.exe" -autorun
uRun: [Steam] "c:\program files\steam\Steam.exe" -silent
uRun: [Microsoft Works Update Detection] c:\program files\microsoft works\WkDetect.exe
mRun: [<NO NAME>]
mRun: [WINDVDPatch] CTHELPER.EXE
mRun: [DevconDefaultDB] c:\windows\READREG /PSCONV={NO} /NO_DEFPS
mRun: [Jet Detection] "c:\program files\creative\sblive\program\ADGJDet.exe"
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
uPolicies-explorer: NoActiveDesktop = 00000000
uPolicies-explorer: NoFolderOptions = 00000000
uPolicies-explorer: RestrictRun = 0 (0x0)
uPolicies-explorer: NoResolveTrack = 1 (0x1)
uPolicies-explorer: NoThumbnailCache = 1 (0x1)
uPolicies-system: NoSecCPL = 0 (0x0)
uPolicies-system: NoDispAppearancePage = 0 (0x0)
uPolicies-system: NoDispSettingsPage = 0 (0x0)
uPolicies-system: NoDevMgrPage = 0 (0x0)
uPolicies-system: NoConfigPage = 0 (0x0)
uPolicies-system: NoVirtMemPage = 0 (0x0)
uPolicies-system: NoFileSysPage = 0 (0x0)
uPolicies-system: NoNetSetup = 0 (0x0)
uPolicies-system: NoNetSetupIDPage = 0 (0x0)
uPolicies-system: NoNetSetupSecurityPage = 0 (0x0)
uPolicies-system: NoWorkgroupContents = 0 (0x0)
uPolicies-system: NoEntireNetwork = 0 (0x0)
uPolicies-system: NoFileSharingControl = 0 (0x0)
mPolicies-explorer: NoFolderOptions = 00000000
mPolicies-explorer: NoResolveTrack = 1 (0x1)
LSP: c:\docume~1\owner\locals~1\temp\ntdll64.dll
Trusted Zone: hotmail.com
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} - hxxp://support.dell.com/systemprofiler/SysPro.CAB
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://www.apple.com/qtactivex/qtplugin.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} -

hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1207709397109
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {A82C3A33-5C0E-466C-B020-71585433A7E4} - hxxps://mycampus.phoenix.edu/secure/PhxStudent15.CAB
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} - hxxp://by101fd.bay101.hotmail.msn.com/activex/HMAtchmt.ocx
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: efcATNdd - efcATNdd.dll
Notify: fccCUlKA - fccCUlKA.dll
Notify: opnmJYOi - opnmJYOi.dll
Notify: winzzc32 - winzzc32.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
STS: {65bbf06c-ea06-4818-92a3-f3550d0e1004} - No File
SEH: {A8EEB996-62AA-4E48-995D-EADDCAC47476} - No File
SEH: {1DC01F38-2C8F-45EF-84A5-8C0D72FA3E3D} - No File
SEH: {20E59CA2-78B0-4431-BFD0-D8B5ADFC0056} - No File
LSA: Authentication Packages = msv1_0 c:\windows\system32\yayvVNeC

============= SERVICES / DRIVERS ===============

R1 vcdrom;Virtual CD-ROM Device Driver;c:\windows\system\VCdRom.sys [2001-12-19 8576]
S2 MsSecurity1.209.4;MsSecurity Updated; [x]
S2 Viewpoint Manager Service;Viewpoint Manager Service;"c:\program files\viewpoint\common\viewpointservice.exe" -->

c:\program files\viewpoint\common\ViewpointService.exe [?]
S3 cpuz131;cpuz131;\??\c:\docume~1\owner\locals~1\temp\cpuz131\cpuz_x32.sys -->

c:\docume~1\owner\locals~1\temp\cpuz131\cpuz_x32.sys [?]

=============== Created Last 30 ================

2009-03-07 13:59 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-03-07 13:59 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-07 13:59 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-03-07 13:59 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-03-07 12:36 25,992 a------- c:\windows\system32\pgdfgsvc.exe
2009-03-07 12:31 66,048 ac------ c:\windows\system32\dllcache\s3legacy.dll
2009-03-05 17:11 <DIR> --d----- c:\windows\system32\xlive
2009-03-05 17:11 <DIR> --d----- c:\program files\Microsoft Games for Windows - LIVE
2009-03-02 18:18 <DIR> --d----- c:\program files\Windows Media Connect 2
2009-02-24 22:34 <DIR> --d----- c:\program files\Innovative Solutions
2009-02-22 02:47 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2009-02-22 02:32 218,376 ac------ c:\windows\system32\klogon.dll
2009-02-21 23:51 55,808 a------- c:\windows\system32\gaopdxdaopbafr.dll
2009-02-21 23:51 80,896 a------- c:\windows\system32\drivers\gaopdxxrlxeppj.sys
2009-02-21 21:38 3,888 a-------

c:\windows\system32\BMXCtrlState-{00000002-00000000-00000007-00001102-00000002-80221102}.rfx
2009-02-21 21:38 3,888 a-------

c:\windows\system32\BMXBkpCtrlState-{00000002-00000000-00000007-00001102-00000002-80221102}.rfx
2009-02-21 21:08 30,720 a------- c:\windows\system32\UACvbrpdqoe.dll
2009-02-21 21:08 4,785 a------- c:\windows\system32\warning.gif
2009-02-21 21:08 56,832 a------- c:\windows\system32\drivers\UACkvdltobl.sys
2009-02-21 21:07 100,590 a------- c:\windows\system32\drivers\98b33e.sys
2009-02-21 20:55 <DIR> --d----- c:\docume~1\owner\applic~1\cogad
2009-02-21 20:54 2 ac------ C:\-938225911
2009-02-21 20:54 8,704 ac------ C:\rbvn.exe
2009-02-21 20:54 27,136 a------- c:\windows\system32\frmwrk32.exe
2009-02-21 20:54 27,136 ac------ C:\nqgasaaj.exe
2009-02-21 20:54 19,456 ac------ C:\mqohndim.exe
2009-02-21 20:54 19,456 ac------ C:\lsass.exe
2009-02-21 20:54 15,000 a------- c:\windows\system32\hs78344kjkfd.dll
2009-02-21 20:54 39,936 a------- c:\windows\Kcokupicer.dll
2009-02-21 20:54 39,936 ac------ C:\hqcjpd.exe
2009-02-21 20:54 87,552 a------- c:\windows\system32\drivers\gaopdxulqinsrs.sys
2009-02-21 20:54 4 a------- c:\windows\system32\gaopdxcounter
2009-02-21 20:54 55,808 -------- c:\windows\system32\gaopdxbpjpwbed.dll
2009-02-17 13:45 <DIR> --d----- c:\program files\Sierra
2009-02-17 13:13 <DIR> --d----- c:\program files\NCH Software
2009-02-17 13:13 <DIR> --d----- c:\program files\NCH Swift Sound
2009-02-14 22:22 90,112 -------- c:\windows\Updreg.EXE
2009-02-14 22:22 231 -------- c:\windows\AC3API.INI
2009-02-14 22:22 84,992 -------- c:\windows\system32\SFCVRT32.DLL
2009-02-14 22:22 53,552 -------- c:\windows\CTCCW.DLL
2009-02-14 22:22 24,976 -------- c:\windows\CTRES.DLL
2009-02-14 22:22 1,048,576 -------- c:\windows\system32\SFMAN.DAT
2009-02-14 22:22 82,432 -------- c:\windows\system32\CTWFLT32.DLL
2009-02-14 22:22 26,768 -------- c:\windows\system32\CTL3D.DLL
2009-02-14 22:21 57,344 a------- c:\windows\system32\CTAGENT.DLL
2009-02-14 20:51 32,768 a------- c:\windows\system32\AudioHQU.cpl
2009-02-14 20:51 12,288 a------- c:\windows\system32\AHQCpURes.dll
2009-02-14 20:44 41,984 a------- c:\windows\CTRegRun.exe
2009-02-14 20:20 34,914 a------- c:\windows\system32\Emu10kx.ini
2009-02-14 20:20 29 a------- c:\windows\system32\ctzapxx.ini
2009-02-14 20:20 20,480 a------- c:\windows\INRES.DLL
2009-02-14 20:20 4,398 a------- c:\windows\system32\SBLive.ico
2009-02-14 20:20 3,126 a------- c:\windows\system32\Live.bmp
2009-02-14 19:44 <DIR> --d----- c:\program files\CONEXANT
2009-02-13 17:23 <DIR> -cd----- C:\DirectX9
2009-02-13 17:04 43,520 a------- c:\windows\system32\CmdLineExt03.dll
2009-02-13 16:57 <DIR> --d----- c:\program files\THQ
2009-02-12 19:55 <DIR> --d----- c:\program files\Simple Net Speed
2009-02-12 19:52 <DIR> --d----- c:\program files\Cymphonix
2009-02-10 14:22 <DIR> --d----- c:\program files\RMClock
2009-02-10 14:11 <DIR> --d----- c:\program files\YourWare Solutions
2009-02-10 13:12 <DIR> --d----- c:\program files\3DAnalyze
2009-02-10 01:58 162,663 ac------ C:\Mantis.pic
2009-02-10 01:58 47,686 ac------ C:\Mantis.trn
2009-02-10 01:58 3,272 ac------ C:\tourncmp
2009-02-09 22:49 <DIR> --d----- c:\docume~1\alluse~1\applic~1\COMMON FILES
2009-02-09 22:07 <DIR> --d----- c:\program files\Defraggler
2009-02-08 21:43 <DIR> --d----- c:\program files\Earthworm Jim 2
2009-02-06 01:59 20,480 a------- c:\windows\system32\H@tKeysH@@k.DLL
2009-02-05 21:44 <DIR> --d----- c:\windows\BBSTORE
2009-02-05 21:40 <DIR> --d----- c:\program files\SSI
2009-02-05 19:35 13,312 a------- c:\windows\system32\svrapi.dll
2009-02-05 19:31 739,328 a------- c:\windows\system32\IR41_32.DLL
2009-02-05 19:31 202,240 a------- c:\windows\system32\ir32_32.sav
2009-02-05 19:31 327 a------- c:\windows\system.sav
2009-02-05 19:29 <DIR> --d----- c:\windows\UbiSoft

==================== Find3M ====================

2009-02-25 19:42 360,064 a------- c:\windows\system32\drivers\TCPIP.SYS
2009-02-21 20:55 30,720 a------- c:\windows\system32\UACjvxjbgrk.dll
2009-02-21 20:55 56,832 a------- c:\windows\system32\drivers\UACwqoxtqfq.sys
2009-02-21 20:55 0 ac------ C:\jdel.exe
2009-02-21 20:55 36,352 a------- c:\windows\xccdf16_090131a.dll
2009-02-21 20:55 251,392 a------- c:\windows\xccdf32_090131a.dll
2009-02-21 20:55 100,590 a------- c:\windows\system32\drivers\21033d82.sys
2009-02-21 20:55 104,960 a------- c:\windows\system32\userinit.exe
2009-02-21 20:55 104,960 a------- c:\windows\system32\ntdll64.exe
2009-01-19 15:09 107,888 a------- c:\windows\system32\CmdLineExt.dll
2009-01-18 18:54 138,752 a------- c:\windows\system32\sndvol32.exe
2009-01-17 16:37 360,064 a------- c:\windows\system32\drivers\TCPIP.SYS.ORIGINAL
2009-01-07 12:30 410,984 a------- c:\windows\system32\deploytk.dll
2008-12-10 19:33 86,016 a------- c:\windows\system32\dpl100.dll
2008-03-11 21:06 5,969 a------- c:\program files\install.log
2003-09-13 03:59 2,931,712 ac--h--- c:\program files\BOOTIMG.BIN
2003-09-13 03:59 2,048 ac--h--- c:\program files\BOOTCAT.BIN
2003-09-12 12:14 479,232 ac------ c:\program files\NCDSTART.EXE
2003-09-12 12:11 369 ac------ c:\program files\AUTORUN.INF
2003-09-12 12:10 12,026 ac------ c:\program files\README.TXT
2004-10-30 03:29 32 a--sh--- c:\windows\{DEF12C90-6DF7-4512-A19F-6810A90A2841}.dat
2008-07-30 03:18 874,521 a--sh--- c:\windows\system32\aGQXbcfe.ini2
2008-09-19 00:49 1,016,378 a--sh--- c:\windows\system32\AHPXwyay.ini2
2008-09-16 19:32 860,150 a--sh--- c:\windows\system32\ayFhOXyb.ini2
2008-07-03 01:36 653,085 a--sh--- c:\windows\system32\BIRuDJlm.ini2
2008-06-26 12:15 652,714 a--sh--- c:\windows\system32\BKnmmnnn.ini2
2008-06-29 01:13 683,010 a--sh--- c:\windows\system32\cdeNUvut.ini2
2008-09-29 21:08 886,590 a--sh--- c:\windows\system32\CeNVvyay.ini2
2008-09-26 20:50 877,400 a--sh--- c:\windows\system32\CMpVwyxx.ini2
2008-09-27 13:55 875,322 a--sh--- c:\windows\system32\DJmUxyxx.ini2
2008-07-04 01:41 4,122 a--sh--- c:\windows\system32\dJPsDJlm.ini2
2008-07-23 08:40 851,633 a--sh--- c:\windows\system32\DMUvxyay.ini2
2008-09-26 17:58 882,530 a--sh--- c:\windows\system32\EfPpsBeg.ini2
2008-08-03 10:19 848,454 a--sh--- c:\windows\system32\eOrrrtwa.ini2
2008-08-06 11:01 891,128 a--sh--- c:\windows\system32\FiSBacdd.ini2
2008-09-29 17:12 876,216 a--sh--- c:\windows\system32\fLkklnmp.ini2
2008-09-17 14:19 7,050 a--sh--- c:\windows\system32\fLlmlUvw.ini2
2008-07-21 09:04 345 a--sh--- c:\windows\system32\FMnUvvut.ini2
2008-09-24 15:39 880,983 a--sh--- c:\windows\system32\FMTsYJjl.ini2
2008-08-09 03:15 862,032 a--sh--- c:\windows\system32\fPAIRqss.ini2
2008-07-30 13:42 866,152 a--sh--- c:\windows\system32\gNVxyGgh.ini2
2008-06-29 20:49 685,889 a--sh--- c:\windows\system32\HNprAJlm.ini2
2008-07-12 15:27 709,804 a--sh--- c:\windows\system32\hQpsYyxx.ini2
2008-07-08 00:35 593,844 a--sh--- c:\windows\system32\iiSvCcfe.ini2
2008-08-19 21:18 345 a--sh--- c:\windows\system32\IjQrAcdd.ini2
2008-06-21 21:18 750,337 a--sh--- c:\windows\system32\jQYxyyay.ini2
2008-08-25 02:11 849,439 a--sh--- c:\windows\system32\jTAayyxx.ini2
2008-07-25 05:29 855,607 a--sh--- c:\windows\system32\KkSuDcdd.ini2
2008-07-12 02:02 734,142 a--sh--- c:\windows\system32\KlUBayxx.ini2
2008-09-07 17:22 826,195 a--sh--- c:\windows\system32\kmoYaccf.ini2
2008-09-27 16:36 878,830 a--sh--- c:\windows\system32\KRYxyccf.ini2
2008-07-18 17:10 868,272 a--sh--- c:\windows\system32\kTAGffii.ini2
2008-08-02 17:38 864,636 a--sh--- c:\windows\system32\KUtuBJjl.ini2
2008-08-23 07:44 841,913 a--sh--- c:\windows\system32\LklSuvut.ini2
2008-07-17 12:23 848,109 a--sh--- c:\windows\system32\LSuxxyay.ini2
2008-07-31 08:32 865,109 a--sh--- c:\windows\system32\MpqWHkkj.ini2
2008-09-29 00:24 875,381 a--sh--- c:\windows\system32\mSsAdccf.ini2
2008-06-28 12:55 668,797 a--sh--- c:\windows\system32\mUDcefii.ini2
2008-07-17 02:03 849,496 a--sh--- c:\windows\system32\mUDeOXyb.ini2
2008-06-30 13:52 666,865 a--sh--- c:\windows\system32\NqBIknmp.ini2
2008-08-03 18:37 877,616 a--sh--- c:\windows\system32\oXIklnmp.ini2
2008-07-15 19:52 741,766 a--sh--- c:\windows\system32\oXyxyyay.ini2
2008-07-04 00:09 683,430 a--sh--- c:\windows\system32\rAdLRqru.ini2
2008-08-30 12:32 859,120 a--sh--- c:\windows\system32\rAIkmUvw.ini2
2008-07-02 02:01 643,039 a--sh--- c:\windows\system32\ruvFgMoq.ini2
2008-09-14 19:17 860,592 a--sh--- c:\windows\system32\rXHgPXbc.ini2
2008-07-13 02:07 729,852 a--sh--- c:\windows\system32\SAJlnnpo.ini2
2008-05-04 23:10 578,502 a--sh--- c:\windows\system32\sBHhPqru.ini2
2008-07-06 00:24 648,110 a--sh--- c:\windows\system32\stwvCfhk.ini2
2008-09-28 19:28 877,288 a--sh--- c:\windows\system32\tDLmnnmp.ini2
2008-08-18 09:39 822,181 a--sh--- c:\windows\system32\ttwaayxx.ini2
2008-09-08 03:01 842,444 a--sh--- c:\windows\system32\TwvEOXbc.ini2
2008-07-27 11:47 865,580 a--sh--- c:\windows\system32\VCLloUtv.ini2
2008-07-18 19:34 850,029 a--sh--- c:\windows\system32\vFiknUtv.ini2
2008-07-16 14:16 734,404 a--sh--- c:\windows\system32\vwGjmnmp.ini2
2008-09-14 13:10 5,342 a--sh--- c:\windows\system32\vxaHkUtv.ini2
2008-07-14 01:14 710,975 a--sh--- c:\windows\system32\WELRAcfe.ini2
2008-07-01 15:24 662,285 a--sh--- c:\windows\system32\wwaHRqru.ini2
2008-06-28 00:53 653,250 a--sh--- c:\windows\system32\xaKjSvut.ini2
2008-09-26 03:07 874,884 a--sh--- c:\windows\system32\xbKTAJjl.ini2
2008-07-30 13:27 893,175 a--sh--- c:\windows\system32\XEOoYyxx.ini2
2004-10-30 03:29 32 a--sh--- c:\windows\system32\{1CDA17C3-D739-4932-8052-A72AB56CD2B7}.dat

============= FINISH: 14:11:51.78 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 SifuMike

SifuMike

    malware expert


  • Members
  • 15,385 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Vancouver (not BC) WA (Not DC) USA
  • Local time:07:09 PM

Posted 16 March 2009 - 10:52 PM

Hello CJHMane,

Sorry for the delay. We have over 600 logs backed up and only a few helpers.

Since it has been a few days, please post a fresh DDS log so I can see if anything has changed.
If I've saved you time & money,
please make a donation so I can keep helping people just like you! You can donate using a credit card and PayPal. Thank you!



Posted Image

Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.

#3 SifuMike

SifuMike

    malware expert


  • Members
  • 15,385 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Vancouver (not BC) WA (Not DC) USA
  • Local time:07:09 PM

Posted 11 April 2009 - 10:14 PM

Due to inactivity, this thread will now be closed.
If I've saved you time & money,
please make a donation so I can keep helping people just like you! You can donate using a credit card and PayPal. Thank you!



Posted Image

Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users