Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cybersecurity cant delete


  • This topic is locked This topic is locked
2 replies to this topic

#1 optomark

optomark

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 05 November 2009 - 05:09 PM

Hi am having problems with removing this program. Have tried the recommended method on this website but found when I ran the program to delete cybersecurity as I scanned my computer the scan terminated.....I assume the malware did yhis. Any help appreciated




DS (Ver_09-10-26.01) - NTFSx86
Run by Nagihan at 21:19:12.97 on 05/11/2009
Internet Explorer: 7.0.6001.18000
Microsoft® Windows Vistaâ„¢ Home Premium 6.0.6001.1.1252.44.1033.18.3038.1825 [GMT 0:00]

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k yksvcs
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Sony\Network Utility\NSUService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\SDL International\License Server\Lmgrd.exe
C:\Program Files\SDL International\License Server\Lmgrd.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CS\cs.exe
C:\Program Files\Apoint\Apoint.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\Marketing Tools\MarketingTools.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\Sony\Network Utility\LANUtil.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\SDL International\License Server\trados.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Windows\explorer.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Nagihan\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SNYT&bmod=EU01
uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SNYT&bmod=EU01
mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SNYT&bmod=SNYT
mDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=SNYT&bmod=EU01
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: &Google Toolbar Help: {35a5b43b-cb8a-49ca-a9f4-d3b308d2e3cc} - c:\windows\system32\iehelpmod.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_219B3E1547538286.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [ISBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [MarketingTools] c:\program files\sony\marketing tools\MarketingTools.exe
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\sdltra~1.lnk - c:\program files\sdl international\sdl trados synergy 2007\Synergy.exe
uPolicies-system: DisableTaskMgr =
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: avgrsstx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\nagihan\appdata\roaming\mozilla\firefox\profiles\cs443r85.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo! Search
FF - prefs.js: keyword.URL - hxxp://uk.yhs.search.yahoo.com/avg/search?fr=yhs-avg&type=yahoo_avg_hs2-tb-web_uk&p=
FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-10-17 333192]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-10-17 360584]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2009-10-17 906520]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2009-10-17 285392]
R2 NSUService;NSUService;c:\program files\sony\network utility\NSUService.exe [2009-6-17 303104]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-4-18 11032]
R2 RtkAudioService;Realtek Audio Service;c:\program files\realtek\audio\hda\RtkAudioService.exe [2009-5-15 109088]
R2 SDL FLEXlm License Server;SDL FLEXlm License Server;c:\program files\sdl international\license server\lmgrd.exe [2007-2-22 1339392]
R2 uCamMonitor;CamMonitor;c:\program files\arcsoft\magic-i visual effects 2\uCamMonitor.exe [2009-6-17 104960]
R2 VAIO Power Management;VAIO Power Management;c:\program files\sony\vaio power management\SPMService.exe [2009-5-15 415592]
R2 VCFw;VAIO Content Folder Watcher;c:\program files\common files\sony shared\vaio content folder watcher\VCFw.exe [2009-1-14 5184872]
R2 yksvc;Marvell Yukon Service;c:\windows\system32\svchost.exe -k yksvcs [2008-1-21 21504]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\drivers\ArcSoftKsUFilter.sys [2009-6-17 17920]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-11-5 38224]
R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2008-8-29 3664384]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [2009-5-15 9344]
S2 NewServiceInstall1;NewServiceInstall1;c:\program files\sdl international\t2007\tt\lng\Dialogs1031.lng [2007-4-23 11264]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2009-5-15 29736]
S3 SOHCImp;VAIO Media plus Content Importer;c:\program files\common files\sony shared\sohlib\SOHCImp.exe [2009-6-17 120104]
S3 SOHDBSvr;VAIO Media plus Database Manager;c:\program files\common files\sony shared\sohlib\SOHDBSvr.exe [2009-6-17 70952]
S3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\common files\sony shared\sohlib\SOHDms.exe [2009-6-17 390440]
S3 SOHDs;VAIO Media plus Device Searcher;c:\program files\common files\sony shared\sohlib\SOHDs.exe [2009-6-17 75048]
S3 SOHPlMgr;VAIO Media plus Playlist Manager;c:\program files\common files\sony shared\sohlib\SOHPlMgr.exe [2009-6-17 91432]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\sony\vcm intelligent analyzing manager\VcmIAlzMgr.exe [2009-6-17 394536]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\common files\sony shared\vcmxml\VcmXmlIfHelper.exe [2009-6-17 83240]

=============== Created Last 30 ================

2009-11-05 20:50:41 0 d-----w- c:\users\nagihan\appdata\roaming\Malwarebytes
2009-11-05 20:50:38 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-05 20:50:37 0 d-----w- c:\programdata\Malwarebytes
2009-11-05 20:50:36 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-05 20:50:36 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-04 13:40:28 0 d-----w- c:\program files\common files\CSUninstall
2009-11-04 13:40:26 302592 ----a-w- c:\windows\system32\iehelpmod.dll
2009-11-04 13:40:21 0 d-----w- c:\program files\CS
2009-11-04 11:57:57 1383424 ----a-w- c:\windows\system32\mshtml.tlb
2009-10-28 21:09:57 310784 ----a-w- c:\windows\system32\unregmp2.exe
2009-10-28 21:09:55 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-10-27 15:42:03 2421760 ----a-w- c:\windows\system32\wucltux.dll
2009-10-27 15:41:55 87552 ----a-w- c:\windows\system32\wudriver.dll
2009-10-27 15:40:51 33792 ----a-w- c:\windows\system32\wuapp.exe
2009-10-27 15:40:51 171608 ----a-w- c:\windows\system32\wuwebv.dll
2009-10-24 14:03:45 0 d-----r- c:\program files\Skype
2009-10-22 09:06:16 97800 ----a-w- c:\windows\system32\infocardapi.dll
2009-10-22 09:06:16 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-10-22 09:06:15 622080 ----a-w- c:\windows\system32\icardagt.exe
2009-10-22 09:06:15 43544 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2009-10-22 09:06:15 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
2009-10-22 09:06:15 11264 ----a-w- c:\windows\system32\icardres.dll
2009-10-22 09:06:14 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2009-10-22 09:06:12 326160 ----a-w- c:\windows\system32\PresentationHost.exe
2009-10-22 08:54:54 96760 ----a-w- c:\windows\system32\dfshim.dll
2009-10-22 08:54:48 282112 ----a-w- c:\windows\system32\mscoree.dll
2009-10-22 08:54:43 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-10-22 08:54:18 158720 ----a-w- c:\windows\system32\mscorier.dll
2009-10-22 08:54:07 83968 ----a-w- c:\windows\system32\mscories.dll
2009-10-19 09:46:44 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-10-18 19:06:45 0 ----a-w- c:\users\nagihan\appdata\roaming\wklnhst.dat
2009-10-18 18:56:33 376 ----a-w- c:\windows\ODBC.INI
2009-10-18 18:56:28 28040 ----a-w- c:\windows\system32\mdimon.dll
2009-10-18 18:55:22 0 d-----w- c:\program files\Microsoft ActiveSync
2009-10-18 18:00:03 0 d-----w- c:\users\nagihan\appdata\roaming\Trados
2009-10-18 17:48:11 0 d-----w- c:\users\nagihan\appdata\roaming\SDL International
2009-10-18 17:31:24 0 d-----w- c:\programdata\FLEXnet
2009-10-18 17:31:23 0 d-----w- c:\programdata\Macrovision
2009-10-18 17:29:39 0 d-----w- c:\windows\Downloaded Installations
2009-10-18 17:27:25 0 d-----w- c:\program files\common files\Macrovision Shared
2009-10-18 17:26:51 0 d-----w- c:\programdata\SDL International
2009-10-18 17:26:28 0 d-----w- c:\program files\SDL International
2009-10-18 16:54:39 0 d-----w- c:\program files\Technitium
2009-10-18 16:49:13 431616 ----a-w- c:\windows\system32\temp.006
2009-10-18 16:49:13 203976 ----a-w- c:\windows\system32\RICHTX32.OCX
2009-10-18 16:49:12 749568 ----a-w- c:\windows\system32\VBOLock.ocx
2009-10-18 16:49:12 61491 ----a-w- c:\windows\system32\wbemdisp.TLB
2009-10-18 16:49:12 368912 ----a-w- c:\windows\system32\vbar332.dll
2009-10-18 16:49:12 0 d-----w- c:\program files\KLC
2009-10-18 16:49:11 598288 ----a-w- c:\windows\system32\temp.000
2009-10-18 16:49:11 326656 ----a-w- c:\windows\system32\temp.005
2009-10-18 16:49:11 17920 ----a-w- c:\windows\system32\temp.003
2009-10-18 16:49:11 164112 ----a-w- c:\windows\system32\temp.001
2009-10-18 16:49:11 147728 ----a-w- c:\windows\system32\temp.002
2009-10-18 16:49:11 1388544 ----a-w- c:\windows\system32\temp.004
2009-10-18 16:16:30 2048 ----a-w- c:\windows\system32\tzres.dll
2009-10-18 16:08:37 499712 ----a-w- c:\windows\system32\kerberos.dll
2009-10-18 16:08:37 270848 ----a-w- c:\windows\system32\schannel.dll
2009-10-17 21:53:35 0 d-----w- c:\programdata\McAfee Security Scan
2009-10-17 21:13:23 56 ---ha-w- c:\programdata\ezsidmv.dat
2009-10-17 21:11:51 428544 ----a-w- c:\windows\system32\EncDec.dll
2009-10-17 21:10:53 2501921 ----a-w- c:\windows\system32\wlan.tmf
2009-10-17 21:10:52 513024 ----a-w- c:\windows\system32\wlansvc.dll
2009-10-17 21:10:52 302592 ----a-w- c:\windows\system32\wlansec.dll
2009-10-17 21:10:52 293376 ----a-w- c:\windows\system32\wlanmsm.dll
2009-10-17 21:10:52 127488 ----a-w- c:\windows\system32\L2SecHC.dll
2009-10-17 21:10:47 2033152 ----a-w- c:\windows\system32\win32k.sys
2009-10-17 21:10:44 72704 ----a-w- c:\windows\system32\fontsub.dll
2009-10-17 21:10:44 289792 ----a-w- c:\windows\system32\atmfd.dll
2009-10-17 21:10:44 156672 ----a-w- c:\windows\system32\t2embed.dll
2009-10-17 21:10:44 10240 ----a-w- c:\windows\system32\dciman32.dll
2009-10-17 21:10:20 2868224 ----a-w- c:\windows\system32\mf.dll
2009-10-17 21:08:53 0 d--h--w- C:\$AVG
2009-10-17 21:08:48 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2009-10-17 21:08:46 360584 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-10-17 21:08:39 333192 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-10-17 21:08:24 0 d-----w- c:\windows\system32\drivers\Avg
2009-10-17 21:08:22 0 d-----w- c:\programdata\AVG Security Toolbar
2009-10-17 21:07:44 0 d-----w- c:\programdata\avg9
2009-10-17 21:07:34 71680 ----a-w- c:\windows\system32\atl.dll
2009-10-17 21:07:13 160256 ----a-w- c:\windows\system32\wkssvc.dll
2009-10-17 21:07:08 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-10-17 21:05:38 636928 ----a-w- c:\windows\system32\localspl.dll
2009-10-17 21:05:34 91136 ----a-w- c:\windows\system32\avifil32.dll
2009-10-17 21:05:01 195440 ------w- c:\windows\system32\MpSigStub.exe
2009-10-17 21:04:53 147456 ----a-w- c:\windows\system32\Faultrep.dll
2009-10-17 21:04:53 125952 ----a-w- c:\windows\system32\wersvc.dll
2009-10-17 21:04:18 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-10-17 21:04:18 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-10-17 21:04:17 43520 ----a-w- c:\windows\system32\msdxm.tlb
2009-10-17 21:04:17 4096 ----a-w- c:\windows\system32\msdxm.ocx
2009-10-17 21:04:17 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-10-17 21:04:17 18432 ----a-w- c:\windows\system32\amcompat.tlb
2009-10-17 21:04:11 144896 ----a-w- c:\windows\system32\drivers\srv2.sys
2009-10-17 21:03:33 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2009-10-17 21:03:32 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2009-10-17 21:02:41 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2009-10-17 21:02:33 604672 ----a-w- c:\windows\system32\WMSPDMOD.DLL
2009-10-14 20:59:28 524288 --sha-w- c:\users\nagihan\ntuser.dat{8a30c8e0-b8c8-11de-a353-002433e8a5cd}.TMContainer00000000000000000002.regtrans-ms
2009-10-14 20:59:28 524288 --sha-w- c:\users\nagihan\ntuser.dat{8a30c8e0-b8c8-11de-a353-002433e8a5cd}.TMContainer00000000000000000001.regtrans-ms
2009-10-14 20:59:27 65536 --sha-w- c:\users\nagihan\ntuser.dat{8a30c8e0-b8c8-11de-a353-002433e8a5cd}.TM.blf
2009-10-12 21:56:59 0 d-----w- c:\users\nagihan\Tracing
2009-10-12 21:47:46 0 d-----w- c:\program files\AVG
2009-10-12 20:58:06 0 d-----w- c:\program files\MSXML 4.0
2009-10-12 20:55:21 0 d-----w- c:\programdata\ArcSoft
2009-10-12 20:52:04 0 d-----w- C:\VAIO Entertainment
2009-10-12 20:20:19 0 ---ha-r- c:\windows\system32\drivers\104D_Sony_VGN-NW11SS.mrk

==================== Find3M ====================

2009-09-10 17:30:12 213504 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 12:24:34 61440 ----a-w- c:\windows\system32\msasn1.dll
2009-08-31 13:55:50 293376 ----a-w- c:\windows\system32\psisdecd.dll
2009-08-27 13:32:41 833024 ----a-w- c:\windows\system32\wininet.dll
2009-08-27 13:29:25 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-08-27 10:58:58 26624 ----a-w- c:\windows\system32\ieUnatt.exe
2009-08-14 16:29:41 17920 ----a-w- c:\windows\system32\netevent.dll
2009-08-14 16:29:41 104960 ----a-w- c:\windows\system32\netiohlp.dll
2009-08-14 14:16:55 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2009-08-14 14:16:55 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2009-08-14 14:16:52 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2009-08-14 14:16:51 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2009-08-14 14:16:50 19968 ----a-w- c:\windows\system32\ARP.EXE
2009-08-14 14:16:49 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2009-08-14 14:16:49 10240 ----a-w- c:\windows\system32\finger.exe
2009-06-17 16:59:19 86016 ----a-w- c:\windows\inf\infstrng.dat
2009-06-17 16:59:19 51200 ----a-w- c:\windows\inf\infpub.dat
2009-06-17 16:59:16 86016 ----a-w- c:\windows\inf\infstor.dat
2009-05-15 18:20:19 665600 ----a-w- c:\windows\inf\drvindex.dat
2008-01-21 02:43:21 174 --sha-w- c:\program files\desktop.ini
2006-11-02 12:42:02 30674 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 12:42:02 30674 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 12:42:02 287440 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 12:42:02 287440 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 21:20:03.67 ===============

Attached Files


Edited by optomark, 05 November 2009 - 05:11 PM.


BC AdBot (Login to Remove)

 


#2 optomark

optomark
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 05 November 2009 - 06:11 PM

Just in case anyone has similar prob solved it by running 'AVENGER' from
http://www.myantispyware.com/2009/10/07/ho...l-instructions/

and following instructions and then was able to use MBAM successfully.

Seems to have worked

Edited by optomark, 05 November 2009 - 06:12 PM.


#3 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:02:38 PM

Posted 06 November 2009 - 08:50 PM

Thanks for letting us know :(

Since this issue appears to be resolved ... this topic has been closed. Glad we could help. :(

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users