Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

infected with alpha antivirus


  • Please log in to reply
1 reply to this topic

#1 ghazini

ghazini

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:40 AM

Posted 05 November 2009 - 03:09 PM

i accidently downloaded alpha antivirus in my laptop.after it has made my life hell,keeps popping up every now and then.i tried to remove it using malware bytes but it could not be deleted fully.plz help me in overcoming this problem.


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-10-26.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 12/28/2008 2:53:26 PM
System Uptime: 11/6/2009 12:20:59 AM (0 hours ago)

Motherboard: Acer | | Biwa
Processor: Intel® Core™2 Duo CPU T5250 @ 1.50GHz | U2E1 | 987/166mhz
Processor: Intel® Core™2 Duo CPU T5250 @ 1.50GHz | U2E1 | 1496/166mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 39 GiB total, 27.153 GiB free.
D: is FIXED (NTFS) - 35 GiB total, 22.417 GiB free.
E: is CDROM (UDF)

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Video Controller (VGA Compatible)
Device ID: PCI\VEN_8086&DEV_2A02&SUBSYS_011C1025&REV_03\3&B1BFB68&0&10
Manufacturer:
Name: Video Controller (VGA Compatible)
PNP Device ID: PCI\VEN_8086&DEV_2A02&SUBSYS_011C1025&REV_03\3&B1BFB68&0&10
Service:

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Video Controller
Device ID: PCI\VEN_8086&DEV_2A03&SUBSYS_011C1025&REV_03\3&B1BFB68&0&11
Manufacturer:
Name: Video Controller
PNP Device ID: PCI\VEN_8086&DEV_2A03&SUBSYS_011C1025&REV_03\3&B1BFB68&0&11
Service:

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Intel® PRO/Wireless 3945ABG Network Connection
Device ID: PCI\VEN_8086&DEV_4222&SUBSYS_10008086&REV_02\4&29E2C51B&0&00E1
Manufacturer: Intel Corporation
Name: Intel® PRO/Wireless 3945ABG Network Connection
PNP Device ID: PCI\VEN_8086&DEV_4222&SUBSYS_10008086&REV_02\4&29E2C51B&0&00E1
Service: NETw4x32

==== System Restore Points ===================

RP160: 8/9/2009 1:22:00 PM - System Checkpoint
RP161: 8/11/2009 9:39:43 PM - System Checkpoint
RP162: 8/13/2009 12:31:09 PM - System Checkpoint
RP163: 8/17/2009 8:51:55 AM - System Checkpoint
RP164: 8/18/2009 8:36:53 AM - Avg8 Update
RP165: 8/18/2009 8:40:48 AM - Avg8 Update
RP166: 8/19/2009 10:10:20 AM - System Checkpoint
RP167: 8/20/2009 10:16:49 AM - System Checkpoint
RP168: 8/21/2009 7:56:35 PM - System Checkpoint
RP169: 8/22/2009 9:35:54 PM - System Checkpoint
RP170: 8/29/2009 1:04:49 AM - System Checkpoint
RP171: 8/30/2009 1:34:07 PM - System Checkpoint
RP172: 8/31/2009 7:37:36 PM - System Checkpoint
RP173: 9/2/2009 3:54:02 PM - System Checkpoint
RP174: 9/3/2009 8:58:50 PM - System Checkpoint
RP175: 9/6/2009 6:30:08 PM - System Checkpoint
RP176: 9/8/2009 10:23:17 AM - System Checkpoint
RP177: 9/10/2009 3:40:01 PM - System Checkpoint
RP178: 9/12/2009 5:57:51 PM - System Checkpoint
RP179: 9/15/2009 12:13:37 PM - System Checkpoint
RP180: 9/17/2009 5:50:06 PM - System Checkpoint
RP181: 9/18/2009 8:37:34 AM - Spyware Terminator - restore point
RP182: 9/19/2009 2:01:39 PM - System Checkpoint
RP183: 9/21/2009 2:59:49 PM - System Checkpoint
RP184: 9/22/2009 6:22:06 PM - System Checkpoint
RP185: 9/24/2009 3:04:56 PM - System Checkpoint
RP186: 9/25/2009 9:53:20 PM - System Checkpoint
RP187: 9/28/2009 12:18:26 PM - System Checkpoint
RP188: 9/29/2009 6:50:43 PM - System Checkpoint
RP189: 10/5/2009 8:06:31 AM - System Checkpoint
RP190: 10/7/2009 2:04:56 PM - System Checkpoint
RP191: 10/8/2009 5:28:00 PM - Avg8 Update
RP192: 10/8/2009 5:29:47 PM - Avg8 Update
RP193: 10/10/2009 12:05:25 PM - System Checkpoint
RP194: 10/13/2009 11:47:26 AM - System Checkpoint
RP195: 10/13/2009 1:33:37 PM - Spyware Terminator - restore point
RP196: 10/15/2009 10:53:02 AM - System Checkpoint
RP197: 10/16/2009 6:14:28 PM - System Checkpoint
RP198: 10/17/2009 9:15:50 AM - Avg8 Update
RP199: 10/20/2009 9:31:56 AM - System Checkpoint
RP200: 10/21/2009 8:52:53 AM - Avg8 Update
RP201: 10/22/2009 2:33:38 AM - Restore Operation
RP202: 10/22/2009 2:38:54 AM - Avg8 Update
RP203: 10/22/2009 2:40:58 AM - Restore Operation
RP204: 10/22/2009 2:48:00 AM - Avg8 Update
RP205: 10/23/2009 8:04:07 AM - System Checkpoint
RP206: 10/24/2009 11:53:06 AM - System Checkpoint
RP207: 10/26/2009 10:25:51 AM - System Checkpoint
RP208: 10/27/2009 6:28:35 PM - System Checkpoint
RP209: 10/28/2009 10:13:15 PM - System Checkpoint
RP210: 10/30/2009 8:49:35 AM - System Checkpoint
RP211: 10/31/2009 7:47:56 PM - System Checkpoint
RP212: 11/2/2009 9:28:38 AM - System Checkpoint
RP213: 11/4/2009 8:51:40 AM - Avg8 Update
RP214: 11/5/2009 9:58:49 AM - Software Distribution Service 3.0
RP215: 11/5/2009 12:41:45 PM - Software Distribution Service 3.0
RP216: 11/5/2009 3:10:57 PM - Software Distribution Service 3.0
RP217: 11/5/2009 9:01:11 PM - Software Distribution Service 3.0
RP218: 11/6/2009 12:06:24 AM - Software Distribution Service 3.0

==== Installed Programs ======================

Acer Crystal Eye webcam
Acrobat.com
Acronis True Image Home
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.1
Alpha Antivirus
Atheros for Acer Driver 5.3.0.45_Foxconn Installation Program
Avanquest update
AVG Free 8.5
Broadcom Gigabit Integrated Controller
Broadcom Wireless LAN Driver 4.100.15.7_Negative_Foxconn
CCleaner (remove only)
Crawler Toolbar with Web Security Guard
DriverMax 3.0
E.M. Total Video Player 1.31
Fairy Lake Screensaver 1.1
Free PDF2Word Converter
Free YouTube to Mp3 Converter version 3.2
fullscreensavers Toolbar
GOM Player
Google Toolbar for Internet Explorer
High Definition Audio Driver Package - KB888111
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
Kundli for Windows (Lite Edition)
Launch Manager
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Motorola Phone Tools
Mozilla Firefox (3.0.5)
Realtek High Definition Audio Driver
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB960714)
Spyware Terminator
Texas Instruments PCIxx21/x515/xx12 drivers.
TIPCI
Uninstall 1.0.0.1
Update for Windows XP (KB898461)
Update for Windows XP (KB904942)
VideoLAN VLC media player 0.8.1
WebFldrs XP
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Player 11
WinRAR archiver
Yahoo! Install Manager
Yahoo! Messenger
Yahoo! Toolbar

==== Event Viewer Messages From Past Week ========

11/5/2009 9:58:54 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070002: Microsoft Windows Installer 3.1.
11/1/2009 10:15:52 PM, error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.

==== End Of File ===========================

Attached Files



BC AdBot (Login to Remove)

 


#2 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:07:40 AM

Posted 10 November 2009 - 07:42 AM

Hello ghazini

Welcome to BleepingComputer :(
==========================
  • Download OTL to your desktop.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Under the Standard Registry box change it to All.
  • Check the boxes beside LOP Check and Purity Check.
  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply.
===========
Download This file. Note its name and save it to your root folder, such as C:\.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security program drivers will not conflict with this file.
  • Click on this link to see a list of programs that should be disabled.
  • Double-click on the downloaded file to start the program. (If running Vista, right click on it and select "Run as an Administrator")
  • Allow the driver to load if asked.
  • You may be prompted to scan immediately if it detects rootkit activity.
  • If you are prompted to scan your system click "Yes" to begin the scan.
  • If not prompted, click the "Rootkit/Malware" tab.
  • On the right-side, all items to be scanned should be checked by default except for "Show All". Leave that box unchecked.
  • Select all drives that are connected to your system to be scanned.
  • Click the Scan button to begin. (Please be patient as it can take some time to complete)
  • When the scan is finished, click Save to save the scan results to your Desktop.
  • Save the file as Results.log and copy/paste the contents in your next reply.
  • Exit the program and re-enable all active protection when done.

Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users