Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet Explorer Hijacking Attempt from Panda


  • This topic is locked This topic is locked
2 replies to this topic

#1 Wildcat75

Wildcat75

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 15 August 2009 - 05:02 PM

I receive this message every time I run IE7. I have run Adaware, Malwarebytes, Panda and SuperAntiSpware (the last one in safe mode). Each application has found numerous viruses (trojans mainly). I was sent here from the forum for computer infections and received good attention and a lot of sound advice. I have low-to moderate computer skills and greatly appreciate all the help I have received to date from Bleeping Computer. This all started when I could not regain internet sharing throughout my little home network. It proved to be a very big problem.

Thanks again in advance for your help.


DDS (Ver_09-07-30.01) - NTFSx86
Run by Nancy at 16:43:14.46 on Sat 08/15/2009
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.959.150 [GMT -5:00]

AV: Panda Antivirus Pro 2009 *On-access scanning enabled* (Updated) {EEE2D94A-D4C1-421A-AB2C-2CE8FE51747A}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\TPSrv.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\PROGRAM FILES\PANDA SECURITY\PANDA ANTIVIRUS PRO 2009\WebProxy.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost -k Panda
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\PsCtrls.exe
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\PavFnSvr.exe
C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\PsImSvc.exe
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\PskSvc.exe
C:\PROGRA~1\RETROS~1\RETROS~1.0\retrorun.exe
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\pavsrv51.exe
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\AVENGINE.EXE
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Panda Security\Panda Antivirus Pro 2009\ApvxdWin.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\RETROS~1\RETROS~1.0\RetroExpress.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files\RitzPix E-Z Print & Share\OurPictures.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Compaq Connections\6750491\Program\Compaq Connections.exe
C:\Documents and Settings\Nancy\Application Data\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\AOL\1103997806\EE\aim6.exe
C:\Program Files\Common Files\AOL\1103997806\EE\aolsoftware.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\RETROS~1\RETROS~1.0\retrospect.exe
C:\Documents and Settings\Nancy\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.msn.com
uSearch Page = hxxp://www.google.com
uWindow Title = Windows Internet Explorer provided by Comcast
uSearch Bar = hxxp://www.comcast.net/toolbar2.0/search/
mStart Page = hxxp://www.msn.com
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.html
mWindow Title = Windows Internet Explorer provided by Comcast
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://www.comcast.net/toolbar2.0/search/
mWinlogon: SFCDisable=-99 (0xffffff9d)
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~1\COMCAS~1.DLL
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.15642\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {BA52B914-B692-46c4-B683-905236F6F655} - No File
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
TB: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~1\COMCAS~1.DLL
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
EB: &Yahoo! Messenger: {4528bbe0-4e08-11d5-ad55-00010333d0ad} - c:\progra~1\yahoo!\common\yhexbmesus.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
uRun: [Aim6] "c:\program files\common files\aol\launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp
uRun: [OurPictures] "c:\program files\ritzpix e-z print & share\OurPictures.exe" /AutoStart
uRun: [updateMgr] "c:\program files\adobe\acrobat 7.0\reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [VTTimer] VTTimer.exe
mRun: [HostManager] c:\program files\common files\aol\1103997806\ee\AOLSoftware.exe
mRun: [DVDTray] c:\program files\ahead\odd toolkit\DVDTray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [RetroExpress] c:\progra~1\retros~1\retros~1.0\RetroExpress.exe /h
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [APVXDWIN] "c:\program files\panda security\panda antivirus pro 2009\APVXDWIN.EXE" /s
mRun: [SCANINICIO] "c:\program files\panda security\panda antivirus pro 2009\Inicio.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [nmctxth] "c:\program files\common files\pure networks shared\platform\nmctxth.exe"
StartupFolder: c:\docume~1\nancy\startm~1\programs\startup\pictur~1.lnk - c:\documents and settings\nancy\application data\sony corporation\picture package\picture package menu\SonyTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compaq~1.lnk - c:\program files\compaq connections\6750491\program\Compaq Connections.exe
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} -
DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} -
DPF: {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} -
DPF: {37DF41B2-61DB-4cac-A755-CFB3C7EE7F40} -
DPF: {4A3CF76B-EC7A-405d-A67D-8DC6B52AB35B} -
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - hxxp://acs.pandasoftware.com/activescan/as5free/asinst.cab
DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} - hxxp://www.sibelius.com/download/software/win/ActiveXPlugin.cab
DPF: {AE6C4705-0F11-4ACB-BDD4-37F138BEF289} - hxxp://www.ritzpix.com/net/Uploader/LPUploader45.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} -
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} - hxxps://itasca01.webmail.gallagheronline.com/dwa7W.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
Filter: text/html - {571abd53-1b09-4036-8f70-611c728e8311} -
Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - c:\program files\google\google toolbar\component\fastsearch_A8904FB862BD9564.dll
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\platform\puresp4.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: avldr - avldr.dll
AppInit_DLLs:
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

============= SERVICES / DRIVERS ===============

R0 BsStor;InCD Storage Helper Driver;c:\windows\system32\drivers\bsstor.sys [2005-3-27 9344]
R0 pavboot;Panda boot driver;c:\windows\system32\drivers\pavboot.sys [2009-8-10 28544]
R0 sonypvl3;sonypvl3;c:\windows\system32\drivers\sonypvl3.sys [2006-5-14 18110]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-8-5 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-8-5 74480]
R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [2009-8-10 41144]
R1 sonypvf3;sonypvf3;c:\windows\system32\drivers\sonypvf3.sys [2006-5-14 619390]
R1 sonypvt3;sonypvt3;c:\windows\system32\drivers\sonypvt3.sys [2006-5-14 423454]
R2 BsUDF;InCD UDF Driver;c:\windows\system32\drivers\bsudf.sys [2005-3-27 448640]
R2 Gwmsrv;Panda Goodware Cache Manager;c:\windows\system32\svchost -k panda --> c:\windows\system32\svchost -k Panda [?]
R2 NProtectService;Norton Unerase Protection;c:\program files\norton systemworks\norton utilities\NPROTECT.EXE [2005-3-18 135168]
R2 Panda Software Controller;Panda Software Controller;c:\program files\panda security\panda antivirus pro 2009\PsCtrlS.exe [2009-8-10 181504]
R2 PAVDRV;pavdrv;c:\windows\system32\drivers\pavdrv51.sys [2009-8-10 84024]
R2 PAVFNSVR;Panda Function Service;c:\program files\panda security\panda antivirus pro 2009\PavFnSvr.exe [2009-8-10 169216]
R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [2009-8-10 179640]
R2 PavPrSrv;Panda Process Protection Service;c:\program files\common files\panda security\pavshld\PavPrSrv.exe [2009-8-10 62768]
R2 PAVSRV;Panda On-Access Anti-Malware Service;c:\program files\panda security\panda antivirus pro 2009\PAVSRV51.EXE [2009-8-10 288512]
R2 PskSvcRetail;Panda PSK service;c:\program files\panda security\panda antivirus pro 2009\psksvc.exe [2009-8-10 28928]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2007-2-15 24652]
R3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
R3 ComFiltr;Panda Anti-Dialer;c:\windows\system32\drivers\COMFiltr.sys [2009-8-10 13880]
R3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\pavsrk.sys --> c:\windows\system32\PavSRK.sys [?]
R3 PavTPK.sys;PavTPK.sys;\??\c:\windows\system32\pavtpk.sys --> c:\windows\system32\PavTPK.sys [?]
R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-8-5 7408]
S0 sdbo;sdbo;c:\windows\system32\drivers\ldfhwg.sys --> c:\windows\system32\drivers\ldfhwg.sys [?]
S1 sonypvd3;Sony DVD Handycam;c:\windows\system32\drivers\sonypvd3.sys [2006-5-14 64964]
S3 APL531;OVT Scanner;c:\windows\system32\drivers\ov550i.sys [2006-7-31 580992]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\9f.tmp --> c:\windows\system32\9F.tmp [?]

============== File Associations ===============

JSEFile=c:\progra~1\pandas~2\pandaa~1\PavScrip.exe "%1" %*
VBEFile=c:\progra~1\pandas~2\pandaa~1\PavScrip.exe "%1" %*
VBSFile=c:\progra~1\pandas~2\pandaa~1\PavScrip.exe "%1" %*

=============== Created Last 30 ================

2009-08-15 14:03 <DIR> --d----- c:\windows\system32\XPSViewer
2009-08-15 14:02 597,504 -c------ c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-08-15 14:02 89,088 -c------ c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-08-15 14:02 117,760 -------- c:\windows\system32\prntvpt.dll
2009-08-15 14:02 1,676,288 -c------ c:\windows\system32\dllcache\xpssvcs.dll
2009-08-15 14:02 575,488 -c------ c:\windows\system32\dllcache\xpsshhdr.dll
2009-08-15 14:02 1,676,288 -------- c:\windows\system32\xpssvcs.dll
2009-08-15 14:02 575,488 -------- c:\windows\system32\xpsshhdr.dll
2009-08-15 14:02 <DIR> --d----- C:\9d6554908e1680bbd7c6c904c51e
2009-08-15 13:59 <DIR> --d----- c:\program files\MSXML 6.0
2009-08-15 13:45 <DIR> --d----- c:\program files\WebEx
2009-08-15 13:44 25,392 a------- c:\windows\system32\drivers\pnarp.sys
2009-08-15 13:44 26,672 a------- c:\windows\system32\drivers\purendis.sys
2009-08-15 13:44 <DIR> --d----- c:\program files\common files\Pure Networks Shared
2009-08-15 10:27 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-08-15 10:27 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-08-15 10:27 <DIR> --d----- c:\docume~1\nancy\applic~1\SUPERAntiSpyware.com
2009-08-15 10:26 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-08-12 21:04 <DIR> --d----- c:\program files\Sophos
2009-08-11 20:15 <DIR> --d----- c:\windows\ServicePackFiles
2009-08-10 23:05 410,984 a------- c:\windows\system32\deploytk.dll
2009-08-10 21:34 13,880 a------- c:\windows\system32\drivers\COMFiltr.sys
2009-08-10 21:31 84,024 a------- c:\windows\system32\drivers\pavdrv51.sys
2009-08-10 21:31 54,832 a------- c:\windows\system32\pavcpl.cpl
2009-08-10 21:30 446,464 a------- c:\windows\system32\HHActiveX.dll
2009-08-10 21:30 193,280 a------- c:\windows\system32\TpUtil.dll
2009-08-10 21:30 107,568 a------- c:\windows\system32\SYSTOOLS.DLL
2009-08-10 21:30 87,296 a------- c:\windows\system32\PavLspHook.dll
2009-08-10 21:30 55,552 a------- c:\windows\system32\pavipc.dll
2009-08-10 21:30 520,448 a------- c:\windows\system32\PavSHook.dll
2009-08-10 21:30 58,672 a------- c:\windows\system32\avldr.dll
2009-08-10 21:30 <DIR> --d----- c:\windows\system32\PAV
2009-08-10 21:30 <DIR> --d----- c:\docume~1\nancy\applic~1\Panda Security
2009-08-10 21:27 28,544 a------- c:\windows\system32\drivers\pavboot.sys
2009-08-10 21:26 179,640 a----r-- c:\windows\system32\drivers\PavProc.sys
2009-08-10 21:26 41,144 a----r-- c:\windows\system32\drivers\ShlDrv51.sys
2009-08-10 21:21 <DIR> --d----- c:\windows\system32\wbem\Repository
2009-08-10 21:21 <DIR> --d----- c:\docume~1\alluse~1\applic~1\McAfee.com
2009-08-10 21:21 <DIR> --d----- c:\program files\common files\Panda Software
2009-08-09 21:25 8,627 a------- c:\windows\system32\PAV_FOG.OPC
2009-08-09 21:16 249 a------- c:\windows\system32\PavCPL.dat
2009-08-09 21:16 <DIR> --d----- c:\program files\Panda Security
2009-08-09 21:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Panda Security
2009-08-09 21:09 <DIR> --d----- c:\program files\common files\Panda Security
2009-08-07 08:55 <DIR> --d----- C:\Retrospect Catalog Files
2009-08-07 08:02 2,713 ---sh--- c:\windows\system32\duzileru.dll
2009-08-04 16:07 2 a------- C:\1820569801
2009-07-21 19:03 <DIR> --d----- c:\program files\Shared

==================== Find3M ====================

2009-08-05 04:11 204,800 a------- c:\windows\system32\mswebdvd.dll
2009-08-03 13:36 38,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-08-03 13:36 19,096 a------- c:\windows\system32\drivers\mbam.sys
2009-07-17 13:55 58,880 a------- c:\windows\system32\atl.dll
2009-07-13 10:08 286,720 a------- c:\windows\system32\wmpdxm.dll
2009-06-29 11:12 827,392 a------- c:\windows\system32\wininet.dll
2009-06-29 11:12 78,336 a------- c:\windows\system32\ieencode.dll
2009-06-29 11:12 17,408 a------- c:\windows\system32\corpol.dll
2009-06-16 09:55 119,808 a------- c:\windows\system32\t2embed.dll
2009-06-16 09:55 82,432 a------- c:\windows\system32\fontsub.dll
2009-06-12 06:50 76,288 a------- c:\windows\system32\telnet.exe
2009-06-10 09:21 84,992 a------- c:\windows\system32\avifil32.dll
2009-06-10 01:32 132,096 a------- c:\windows\system32\wkssvc.dll
2009-06-09 17:53 284 a------- c:\docume~1\nancy\applic~1\ViewerApp.dat
2009-06-05 02:42 655,872 a------- c:\windows\system32\mstscax.dll
2009-06-03 14:27 1,290,752 a------- c:\windows\system32\quartz.dll
2002-05-28 09:19 61,440 a------- c:\windows\inf\i386\onetUSD.dll
2002-05-20 09:22 36,864 a------- c:\windows\inf\i386\Vizmicro.dll
2002-05-20 09:20 172,032 a------- c:\windows\inf\i386\viceo.dll
2002-05-20 09:02 225,280 a------- c:\windows\inf\i386\rtscan.dll
2001-08-03 19:29 13,824 a------- c:\windows\inf\i386\Usbscan.sys
2005-03-18 20:39 32 a--sh--- c:\windows\{24809169-05F5-4BC6-8D6E-85CD0BF9C4E8}.dat
2005-03-18 20:40 32 a--sh--- c:\windows\{4EC134DB-1AC9-4C55-8577-715944C6CBD1}.dat
2005-03-18 20:39 32 a--sh--- c:\windows\{64BEB3A4-4399-43B3-AEFA-4827D4ACA096}.dat
2005-03-18 20:38 32 a--sh--- c:\windows\{737F0BD4-ECBE-4F63-8701-4F16683BF527}.dat
2005-03-18 20:38 32 a--sh--- c:\windows\{8AB06852-C8AF-4275-989C-DABC7C73A203}.dat
2005-03-18 20:38 32 a--sh--- c:\windows\{904FCA70-E200-470F-BB82-9F598452C1E0}.dat

============= FINISH: 16:44:23.32 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 Wildcat75

Wildcat75
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:11:50 AM

Posted 18 August 2009 - 09:33 PM

My problem is fixed!!!

Panda Tech Support finally responded and figured it out to be an add-on to my IE Toolbar.

I have disabled all add ons and that stopped the error messages.

I am now going to reinstall them one by one till I find the offender and will then uninstll it through Control Panel.

Thanks to everyone who read my posts and tried to help. I appreciate it.

#3 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,942 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:12:50 PM

Posted 18 August 2009 - 09:36 PM

Hello

Thank you for letting us know. I'm glad that your computer problems have been fixed. Since this issue seems to be resolved, this thread will now be closed.

In case you experience any problems with the computer, please start a new topic.

Happy computing,

Orange Blossom :thumbup2:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users