Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop up gave me a virus, don't know what kind


  • This topic is locked This topic is locked
1 reply to this topic

#1 M M Short

M M Short

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:10:03 AM

Posted 18 November 2009 - 05:48 PM

About two weeks ago I came across a pop up telling me that I had a virus and it downloaded a file, I tried to get out of it as fast as I could but it still infected my computer. And now every time I start up my computer something is different, either my toolbars do not appear or they will appear but nothing works, icons disappear out of my toolbars, my current time and date keeps changing, and programs or internet windows freeze up and stop responding or keep minimizing, programs lag and their windows blink and now my computer is shutting down by itself. I have no clue what to do, can you help me please.

Thank you very much
Michelle Short


DDS log


DDS (Ver_09-10-26.01) - NTFSx86
Run by owner at 16:21:03.93 on Wed 11/18/2009
Internet Explorer: 8.0.6001.18828
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.2038.846 [GMT -8:00]

SP: Spybot - Search and Destroy *enabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
FW: Outpost Firewall *enabled* {8A20CA2A-9E02-4A64-923B-0A38208EB7FD}

============== Running Processes ===============

C:Windowssystem32wininit.exe
C:Program FilesAVGAVG9avgchsvx.exe
C:Program FilesAVGAVG9avgrsx.exe
C:Windowssystem32lsm.exe
C:Program FilesAVGAVG9avgcsrvx.exe
C:Windowssystem32svchost.exe -k DcomLaunch
C:Windowssystem32svchost.exe -k rpcss
C:WindowsSystem32svchost.exe -k LocalServiceNetworkRestricted
C:WindowsSystem32svchost.exe -k LocalSystemNetworkRestricted
C:Windowssystem32svchost.exe -k netsvcs
C:Windowssystem32svchost.exe -k GPSvcGroup
C:Windowssystem32SLsvc.exe
C:Windowssystem32svchost.exe -k LocalService
C:Windowssystem32svchost.exe -k NetworkService
C:Windowssystem32Dwm.exe
C:WindowsExplorer.EXE
C:WindowsSystem32spoolsv.exe
C:Windowssystem32svchost.exe -k LocalServiceNoNetwork
C:Windowssystem32taskeng.exe
C:Windowssystem32taskeng.exe
C:WindowsSystem32igfxtray.exe
C:WindowsSystem32igfxpers.exe
C:Program FilesSynapticsSynTPSynTPStart.exe
C:WindowsRtHDVCpl.exe
C:Windowssystem32igfxsrvc.exe
C:Program FilesAVGAVG9avgtray.exe
C:Program FilesToshibaTOSCDSPDTOSCDSPD.exe
C:Program FilesSpybot - Search & DestroyTeaTimer.exe
C:Program FilesAVGAVG9avgwdsvc.exe
C:WindowsMicrosoft.NetFrameworkv3.0WPFPresentationFontCache.exe
C:Program FilesAVGAVG9avgnsx.exe
C:TOSHIBAIVPISMpinger.exe
C:Windowssystem32svchost.exe -k NetworkServiceNetworkRestricted
C:Windowssystem32svchost.exe -k imgsvc
C:Program FilesToshibaBluetooth Toshiba StackTosBtSrv.exe
C:Program FilesCommon FilesUlead SystemsDVDULCDRSvr.exe
C:WindowsSystem32svchost.exe -k WerSvcGroup
C:Windowssystem32SearchIndexer.exe
C:Program FilesAVGAVG9avgemc.exe
C:Program FilesSpybot - Search & DestroySDWinSec.exe
C:Program FilesAVGAVG9avgcsrvx.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:Program FilesSynapticsSynTPSynToshiba.exe
C:Windowssystem32wuauclt.exe
C:Windowssystem32svchost.exe -k SDRSVC
C:Program FilesIObitIObit Security 360is360.exe
C:Program FilesIObitIObit Security 360is360tray.exe
C:Program FilesIObitIObit Security 360IS360srv.exe
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsSystem32svchost.exe -k secsvcs
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesInternet Exploreriexplore.exe
C:Windowssystem32MacromedFlashFlashUtil10c.exe
C:Program FilesInternet Exploreriexplore.exe
C:Windowssystem32taskeng.exe
C:Windowssystem32SearchProtocolHost.exe
C:Windowssystem32SearchFilterHost.exe
C:UsersownerDesktopdds.scr
C:Windowssystem32wbemwmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.myspace.com/
mDefault_Page_URL = hxxp://www.toshibadirect.com/dpdstart
uInternet Settings,ProxyOverride = <local>
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:program filesavgavg9toolbarIEToolbar.dll
uURLSearchHooks: H - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filescommon filesadobeacrobatactivexAcroIEHelper.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:program filesspybot - search & destroySDHelper.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:program filesjavajre1.6.0_02binssv.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:program filesavgavg9toolbarIEToolbar.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:program filesavgavg9toolbarIEToolbar.dll
uRun: [TOSCDSPD] c:program filestoshibatoscdspdTOSCDSPD.exe
uRun: [SpybotSD TeaTimer] c:program filesspybot - search & destroyTeaTimer.exe
mRun: [IgfxTray] c:windowssystem32igfxtray.exe
mRun: [HotKeysCmds] c:windowssystem32hkcmd.exe
mRun: [Persistence] c:windowssystem32igfxpers.exe
mRun: [Windows Defender] %ProgramFiles%Windows DefenderMSASCui.exe -hide
mRun: [SynTPStart] c:program filessynapticssyntpSynTPStart.exe
mRun: [OutpostMonitor] c:progra~1agnitumoutpos~1op_mon.exe /tray /noservice
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [Adobe Reader Speed Launcher] "c:program filesadobereader 8.0readerReader_sl.exe"
mRun: [QuickTime Task] "c:program filesquicktimeQTTask.exe" -atboottime
mRun: [AVG9_TRAY] c:progra~1avgavg9avgtray.exe
mRun: [IObit Security 360] "c:program filesiobitiobit security 360IS360tray.exe" /autostart
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:progra~1micros~3office12EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:program filesjavajre1.6.0_02binssv.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:program filesspybot - search & destroySDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} - hxxp://lads.myspace.com/upload/MySpaceUploader2.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: c:progra~1agnitumoutpos~1wl_hook.dll,avgrsstx.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%Windows MailWinMail.exe" OCInstallUserConfigOE
mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - %SystemRoot%system32unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - c:windowssystem32unregmp2.exe /ShowWMP
mASetup: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "c:windowssystem32rundll32.exe" "c:windowssystem32iedkcs32.dll",BrandIEActiveSetup SIGNUP

============= SERVICES / DRIVERS ===============

R1 afw;Agnitum Firewall Driver;c:windowssystem32driversafw.sys [2009-10-28 29208]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:windowssystem32driversavgldx86.sys [2009-11-12 333192]
R1 AvgTdiX;AVG Free Network Redirector;c:windowssystem32driversavgtdix.sys [2009-11-12 360584]
R1 SandBox;SandBox;c:windowssystem32driversSandBox.sys [2009-10-28 704384]
R2 acssrv;Agnitum Client Security Service;c:progra~1agnitumoutpos~1acs.exe [2009-10-28 1195008]
R2 avg9emc;AVG Free E-mail Scanner;c:program filesavgavg9avgemc.exe [2009-11-12 906520]
R2 avg9wd;AVG Free WatchDog;c:program filesavgavg9avgwdsvc.exe [2009-11-12 285392]
R2 IS360service;IS360service;c:program filesiobitiobit security 360is360srv.exe [2009-11-18 312592]
R2 SBSDWSCService;SBSD Security Center Service;c:program filesspybot - search & destroySDWinSec.exe [2009-11-18 1153368]
R3 afwcore;afwcore;c:windowssystem32driversafwcore.sys [2009-10-28 307224]
R3 FwLnk;FwLnk Driver;c:windowssystem32driversFwLnk.sys [2007-11-6 7168]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11g 54Mbps USB 2.0 Network Adapter;c:windowssystem32driversrtl8187B.sys [2009-10-27 252416]

=============== Created Last 30 ================

2009-11-18 21:02:57 0 d-----w- c:programdataIObit
2009-11-18 21:02:55 0 d-----w- c:program filesIObit
2009-11-18 20:12:49 0 ---ha-w- c:windowssystem32driversMsft_User_WpdFs_01_00_00.Wdf
2009-11-18 17:37:53 0 d-----w- c:program filesTrend Micro
2009-11-18 10:02:00 0 d-----w- c:programdataSpybot - Search & Destroy
2009-11-18 10:02:00 0 d-----w- c:program filesSpybot - Search & Destroy
2009-11-13 03:24:52 0 d-----w- c:program filesZone Labs
2009-11-13 03:24:11 70 ---ha-w- c:windowssystem32driversvsconfig.xml
2009-11-13 03:24:11 0 d-----w- c:windowssystem32ZoneLabs
2009-11-13 03:23:01 0 d-----w- c:programdataCheckPoint
2009-11-13 03:12:16 0 d--h--w- C:$AVG
2009-11-13 03:12:14 12464 ----a-w- c:windowssystem32avgrsstx.dll
2009-11-13 03:12:13 360584 ----a-w- c:windowssystem32driversavgtdix.sys
2009-11-13 03:12:05 333192 ----a-w- c:windowssystem32driversavgldx86.sys
2009-11-13 03:12:03 0 d-----w- c:windowssystem32driversAvg
2009-11-13 03:12:00 0 d-----w- c:programdataAVG Security Toolbar
2009-11-13 03:11:32 0 d-----w- c:program filesAVG
2009-11-13 03:11:29 0 d-----w- c:programdataavg9
2009-11-12 02:55:44 0 d-----w- c:programdataApple Computer
2009-11-12 02:54:30 0 d-----w- c:programdataApple
2009-11-11 23:51:11 2035712 ----a-w- c:windowssystem32win32k.sys
2009-11-11 23:50:55 351232 ----a-w- c:windowssystem32WSDApi.dll
2009-11-08 23:43:20 0 ---ha-w- c:windowssystem32driversMsft_User_WpdMtpDr_01_00_00.Wdf
2009-11-06 20:58:57 72192 ----a-w- c:windowssystem32driverspacer.sys
2009-11-06 04:47:55 0 d-----w- C:PerfLogs
2009-11-04 22:19:53 1638912 ----a-w- c:windowssystem32mshtml.tlb
2009-10-30 19:45:57 472576 ----a-w- c:windowssystem32secproc_isv.dll
2009-10-30 19:44:59 75776 ----a-w- c:windowssystem32synceng.dll
2009-10-30 19:43:59 90112 ----a-w- c:windowssystem32wbemWmiApRpl.dll
2009-10-30 18:57:31 2421760 ----a-w- c:windowssystem32wucltux.dll
2009-10-30 18:56:58 87552 ----a-w- c:windowssystem32wudriver.dll
2009-10-30 18:56:46 33792 ----a-w- c:windowssystem32wuapp.exe
2009-10-30 18:56:46 171608 ----a-w- c:windowssystem32wuwebv.dll
2009-10-29 01:21:14 0 d-----w- c:program filesAdvanced Spyware Remover
2009-10-29 00:31:30 704384 ----a-w- c:windowssystem32driversSandBox.sys
2009-10-29 00:30:59 307224 ----a-w- c:windowssystem32driversafwcore.sys
2009-10-29 00:29:08 49 ----a-w- c:windowstransp.gif
2009-10-29 00:29:06 29208 ----a-w- c:windowssystem32driversafw.sys
2009-10-29 00:28:49 0 d-----w- c:program filesAgnitum
2009-10-28 23:58:30 0 d-----w- c:program filesMicrosoft CAPICOM 2.1.0.2
2009-10-28 23:22:49 0 d-----w- c:programdataAgnitum
2009-10-28 23:05:45 710 ----a-w- c:usersownerappdataroamingwklnhst.dat
2009-10-28 22:55:27 55656 ----a-w- c:windowssystem32driversavgntflt.sys
2009-10-28 11:23:07 269312 ----a-w- c:windowssystem32es.dll
2009-10-28 05:08:34 2048 ----a-w- c:windowssystem32tzres.dll
2009-10-28 05:06:28 61440 ----a-w- c:windowssystem32winipsec.dll
2009-10-28 05:06:28 361984 ----a-w- c:windowssystem32IPSECSVC.DLL
2009-10-28 05:06:28 28672 ----a-w- c:windowssystem32FwRemoteSvr.dll
2009-10-28 05:06:28 272896 ----a-w- c:windowssystem32polstore.dll
2009-10-28 05:05:08 94720 ----a-w- c:windowssystem32PortableDeviceClassExtension.dll
2009-10-28 05:05:08 241152 ----a-w- c:windowssystem32PortableDeviceApi.dll
2009-10-28 05:05:08 160768 ----a-w- c:windowssystem32PortableDeviceTypes.dll
2009-10-28 05:03:18 9728 ----a-w- c:windowssystem32TCPSVCS.EXE
2009-10-28 05:03:18 8704 ----a-w- c:windowssystem32HOSTNAME.EXE
2009-10-28 05:03:18 27136 ----a-w- c:windowssystem32NETSTAT.EXE
2009-10-28 05:03:18 19968 ----a-w- c:windowssystem32ARP.EXE
2009-10-28 05:03:18 17920 ----a-w- c:windowssystem32ROUTE.EXE
2009-10-28 05:03:18 17920 ----a-w- c:windowssystem32netevent.dll
2009-10-28 05:03:18 11264 ----a-w- c:windowssystem32MRINFO.EXE
2009-10-28 05:03:18 104960 ----a-w- c:windowssystem32netiohlp.dll
2009-10-28 05:03:18 10240 ----a-w- c:windowssystem32finger.exe
2009-10-28 05:03:17 897608 ----a-w- c:windowssystem32driverstcpip.sys
2009-10-28 05:03:16 814 ----a-w- c:windowssystem32wbemWFP.MOF
2009-10-28 04:58:53 12880 ----a-w- c:windowssystem32wbemwlan.mof
2009-10-28 04:58:49 2334 ----a-w- c:windowssystem32wbemL2SecHC.mof
2009-10-28 04:58:49 127488 ----a-w- c:windowssystem32L2SecHC.dll
2009-10-28 04:58:48 68096 ----a-w- c:windowssystem32wlanhlp.dll
2009-10-28 04:58:48 64512 ----a-w- c:windowssystem32wlanapi.dll
2009-10-28 04:58:48 513024 ----a-w- c:windowssystem32wlansvc.dll
2009-10-28 04:58:48 293376 ----a-w- c:windowssystem32wlanmsm.dll
2009-10-28 04:58:48 2501921 ----a-w- c:windowssystem32wlan.tmf
2009-10-28 04:58:47 302592 ----a-w- c:windowssystem32wlansec.dll
2009-10-28 04:58:47 15181 ----a-w- c:windowssystem32gatherWirelessInfo.vbs
2009-10-28 04:55:58 72704 ----a-w- c:windowssystem32fontsub.dll
2009-10-28 04:55:58 34304 ----a-w- c:windowssystem32atmlib.dll
2009-10-28 04:55:58 289792 ----a-w- c:windowssystem32atmfd.dll
2009-10-28 04:55:58 23552 ----a-w- c:windowssystem32lpk.dll
2009-10-28 04:55:58 156672 ----a-w- c:windowssystem32t2embed.dll
2009-10-28 04:55:58 10240 ----a-w- c:windowssystem32dciman32.dll
2009-10-28 04:54:34 175104 ----a-w- c:windowssystem32wdigest.dll
2009-10-28 04:54:33 9728 ----a-w- c:windowssystem32lsass.exe
2009-10-28 04:54:33 72704 ----a-w- c:windowssystem32secur32.dll
2009-10-28 04:54:33 439896 ----a-w- c:windowssystem32driversksecdd.sys
2009-10-28 04:54:33 213504 ----a-w- c:windowssystem32msv1_0.dll
2009-10-28 04:54:33 13780 ----a-w- c:windowssystem32wbemlsasrv.mof
2009-10-28 04:54:33 1256448 ----a-w- c:windowssystem32lsasrv.dll
2009-10-28 04:53:04 98816 ----a-w- c:windowssystem32mfps.dll
2009-10-28 04:53:04 53248 ----a-w- c:windowssystem32rrinstaller.exe
2009-10-28 04:53:04 2868224 ----a-w- c:windowssystem32mf.dll
2009-10-28 04:53:04 2048 ----a-w- c:windowssystem32mferror.dll
2009-10-28 04:53:03 24576 ----a-w- c:windowssystem32mfpmp.exe
2009-10-28 04:51:42 376832 ----a-w- c:windowssystem32winhttp.dll
2009-10-28 04:47:27 71680 ----a-w- c:windowssystem32atl.dll
2009-10-28 04:46:20 296960 ----a-w- c:windowssystem32gdi32.dll
2009-10-28 04:41:39 3597896 ----a-w- c:windowssystem32ntkrnlpa.exe
2009-10-28 04:41:39 3546184 ----a-w- c:windowssystem32ntoskrnl.exe
2009-10-28 04:39:29 212480 ----a-w- c:windowssystem32driversmrxsmb10.sys
2009-10-28 04:38:26 562176 ----a-w- c:windowssystem32msdtcprx.dll
2009-10-28 04:38:26 38912 ----a-w- c:windowssystem32xolehlp.dll
2009-10-28 04:37:20 160256 ----a-w- c:windowssystem32wkssvc.dll
2009-10-28 04:36:09 53248 ----a-w- c:windowssystem32tsgqec.dll
2009-10-28 04:36:09 2066432 ----a-w- c:windowssystem32mstscax.dll
2009-10-28 04:36:09 136192 ----a-w- c:windowssystem32aaclient.dll
2009-10-28 04:35:03 303616 ----a-w- c:windowssystem32wmpeffects.dll
2009-10-28 04:34:01 2048 ----a-w- c:windowssystem32msxml3r.dll
2009-10-28 04:34:01 1191936 ----a-w- c:windowssystem32msxml3.dll
2009-10-28 04:29:24 80896 ----a-w- c:windowssystem32MSNP.ax
2009-10-28 04:29:24 69632 ----a-w- c:windowssystem32Mpeg2Data.ax
2009-10-28 04:29:24 428544 ----a-w- c:windowssystem32EncDec.dll
2009-10-28 04:29:24 217088 ----a-w- c:windowssystem32psisrndr.ax
2009-10-28 04:29:24 177664 ----a-w- c:windowssystem32mpg2splt.ax
2009-10-28 04:29:23 57856 ----a-w- c:windowssystem32MSDvbNP.ax
2009-10-28 04:29:23 293376 ----a-w- c:windowssystem32psisdecd.dll
2009-10-28 04:26:22 636928 ----a-w- c:windowssystem32localspl.dll
2009-10-28 04:25:25 91136 ----a-w- c:windowssystem32avifil32.dll
2009-10-28 04:25:25 82944 ----a-w- c:windowssystem32mciavi32.dll
2009-10-28 04:25:25 65024 ----a-w- c:windowssystem32avicap32.dll
2009-10-28 04:25:25 31232 ----a-w- c:windowssystem32msvidc32.dll
2009-10-28 04:25:25 12800 ----a-w- c:windowssystem32msrle32.dll
2009-10-28 04:25:25 123904 ----a-w- c:windowssystem32msvfw32.dll
2009-10-28 04:23:35 2927104 ----a-w- c:windowsexplorer.exe
2009-10-28 04:19:59 4096 ----a-w- c:windowssystem32NlsLexicons002a.dll
2009-10-28 04:15:51 6656 ----a-w- c:windowssystem32kbd106n.dll
2009-10-28 04:15:46 988216 ----a-w- c:windowssystem32winload.exe
2009-10-28 04:15:46 927288 ----a-w- c:windowssystem32winresume.exe
2009-10-28 04:15:46 40960 ----a-w- c:windowssystem32srclient.dll
2009-10-28 04:15:46 378368 ----a-w- c:windowssystem32srcore.dll
2009-10-28 04:15:46 318464 ----a-w- c:windowssystem32rstrui.exe
2009-10-28 04:15:46 14848 ----a-w- c:windowssystem32srdelayed.exe
2009-10-28 04:15:45 46592 ----a-w- c:windowssystem32setbcdlocale.dll
2009-10-28 04:15:45 19000 ----a-w- c:windowssystem32kd1394.dll
2009-10-28 04:15:44 615992 ----a-w- c:windowssystem32ci.dll
2009-10-28 04:13:55 551424 ----a-w- c:windowssystem32rpcss.dll
2009-10-28 04:13:54 666624 ----a-w- c:windowssystem32printfilterpipelinesvc.exe
2009-10-28 04:13:54 499200 ----a-w- c:windowssystem32wbemWmiPrvSD.dll
2009-10-28 04:13:54 26112 ----a-w- c:windowssystem32printfilterpipelineprxy.dll
2009-10-28 04:13:54 247296 ----a-w- c:windowssystem32wbemWmiPrvSE.exe
2009-10-28 04:13:54 129024 ----a-w- c:windowssystem32wbemWmiDcPrv.dll
2009-10-28 04:13:53 615424 ----a-w- c:windowssystem32wbemfastprox.dll
2009-10-28 04:13:53 54784 ----a-w- c:windowssystem32iasads.dll
2009-10-28 04:13:53 44032 ----a-w- c:windowssystem32iasdatastore.dll
2009-10-28 04:13:53 17408 ----a-w- c:windowssystem32iashost.exe
2009-10-28 04:13:52 98304 ----a-w- c:windowssystem32iasrecst.dll
2009-10-28 04:13:52 183296 ----a-w- c:windowssystem32sdohlp.dll
2009-10-28 04:11:08 24064 ----a-w- c:windowssystem32amxread.dll
2009-10-28 04:11:08 13824 ----a-w- c:windowssystem32apilogen.dll
2009-10-28 04:10:04 712704 ----a-w- c:windowssystem32WindowsCodecs.dll
2009-10-28 04:10:04 425472 ----a-w- c:windowssystem32PhotoMetadataHandler.dll
2009-10-28 04:10:03 347136 ----a-w- c:windowssystem32WindowsCodecsExt.dll
2009-10-28 04:08:54 37888 ----a-w- c:windowssystem32printcom.dll
2009-10-28 04:08:53 443392 ----a-w- c:windowssystem32win32spl.dll
2009-10-28 04:07:57 14848 ----a-w- c:windowssystem32wshrm.dll
2009-10-28 04:07:57 113664 ----a-w- c:windowssystem32driversrmcast.sys
2009-10-28 04:06:46 43520 ----a-w- c:windowssystem32msdxm.tlb
2009-10-28 04:06:46 313344 ----a-w- c:windowssystem32wmpdxm.dll
2009-10-28 04:06:46 18432 ----a-w- c:windowssystem32amcompat.tlb
2009-10-28 04:04:57 268288 ----a-w- c:windowssystem32schannel.dll
2009-10-28 04:00:21 97800 ----a-w- c:windowssystem32infocardapi.dll
2009-10-28 04:00:21 622080 ----a-w- c:windowssystem32icardagt.exe
2009-10-28 04:00:21 37384 ----a-w- c:windowssystem32infocardcpl.cpl
2009-10-28 04:00:21 11264 ----a-w- c:windowssystem32icardres.dll
2009-10-28 04:00:13 105016 ----a-w- c:windowssystem32PresentationCFFRasterizerNative_v0300.dll
2009-10-28 04:00:12 781344 ----a-w- c:windowssystem32PresentationNative_v0300.dll
2009-10-28 04:00:12 43544 ----a-w- c:windowssystem32PresentationHostProxy.dll
2009-10-28 04:00:12 326160 ----a-w- c:windowssystem32PresentationHost.exe
2009-10-28 03:38:37 65536 ----a-w- c:windowsocsetup_cbs_install_NetFx3.dpx
2009-10-28 03:38:37 29097984 ----a-w- c:windowsocsetup_install_NetFx3.etl
2009-10-28 03:38:37 196608 ----a-w- c:windowsocsetup_cbs_install_NetFx3.perf
2009-10-28 03:35:52 96760 ----a-w- c:windowssystem32dfshim.dll
2009-10-28 03:35:52 41984 ----a-w- c:windowssystem32netfxperf.dll
2009-10-28 03:35:51 282112 ----a-w- c:windowssystem32mscoree.dll
2009-10-28 03:35:50 83968 ----a-w- c:windowssystem32mscories.dll
2009-10-28 03:35:50 158720 ----a-w- c:windowssystem32mscorier.dll
2009-10-28 03:17:18 28672 ----a-w- c:windowssystem32Apphlpdm.dll
2009-10-28 03:17:16 4240384 ----a-w- c:windowssystem32GameUXLegacyGDFs.dll
2009-10-28 03:17:15 1695744 ----a-w- c:windowssystem32gameux.dll
2009-10-28 03:16:35 996352 ----a-w- c:windowssystem32WMNetMgr.dll
2009-10-28 03:16:35 94720 ----a-w- c:windowssystem32logagent.exe
2009-10-28 03:16:02 84480 ----a-w- c:windowssystem32INETRES.dll
2009-10-28 03:16:02 738304 ----a-w- c:windowssystem32inetcomm.dll
2009-10-28 03:15:36 61440 ----a-w- c:windowssystem32msasn1.dll
2009-10-28 03:15:06 784896 ----a-w- c:windowssystem32rpcrt4.dll
2009-10-28 03:14:29 1314816 ----a-w- c:windowssystem32quartz.dll
2009-10-28 03:13:58 604672 ----a-w- c:windowssystem32WMSPDMOD.DLL
2009-10-28 02:09:56 288768 ----a-w- c:windowssystem32driverssrv.sys
2009-10-28 02:08:53 1645568 ----a-w- c:windowssystem32connect.dll
2009-10-28 02:07:24 144896 ----a-w- c:windowssystem32driverssrv2.sys
2009-10-28 02:05:02 2048 ----a-w- c:windowssystem32msxml6r.dll
2009-10-28 02:05:02 1334272 ----a-w- c:windowssystem32msxml6.dll
2009-10-28 02:02:48 8147456 ----a-w- c:windowssystem32wmploc.DLL
2009-10-28 02:02:47 7680 ----a-w- c:windowssystem32spwmp.dll
2009-10-28 02:02:46 4096 ----a-w- c:windowssystem32dxmasf.dll
2009-10-28 02:02:45 4096 ----a-w- c:windowssystem32msdxm.ocx
2009-10-28 02:02:42 310784 ----a-w- c:windowssystem32unregmp2.exe
2009-10-28 01:43:04 195456 ------w- c:windowssystem32MpSigStub.exe
2009-10-28 01:40:57 0 d-----w- c:windowsInternet Logs
2009-10-28 00:44:39 285184 ----a-w- c:windowssystem32driverstos_sps32.sys
2009-10-28 00:43:32 172032 ----a-w- c:windowssystem32igfxres.dll
2009-10-28 00:43:16 16050 ----a-w- c:windowssystem32results.xml
2009-10-28 00:35:34 252416 ----a-w- c:windowssystem32driversrtl8187B.sys
2009-10-28 00:35:34 252416 ----a-w- c:windowssystemrtl8187B.sys
2009-10-28 00:35:28 0 d-----w- c:program filesREALTEK RTL8187B Wireless LAN Driver
2009-10-28 00:28:51 920088 ----a-w- c:windowssystem32igxpun.exe
2009-10-28 00:28:51 319456 ----a-w- c:windowssystem32difxapi.dll
2009-10-28 00:28:51 0 d-----w- c:windowssystem32Lang
2009-10-28 00:20:32 32592 ----a-w- c:windowssystem32msonpmon.dll
2009-10-28 00:18:02 0 d-----w- c:programdataMicrosoft Help
2009-10-28 00:12:15 0 d-sh--w- C:$RECYCLE.BIN
2009-10-27 23:58:51 0 d-----w- c:usersownerappdataroamingSymantec

==================== Find3M ====================

2009-11-06 05:02:21 174 --sha-w- c:program filesdesktop.ini
2009-11-06 04:59:22 86016 ----a-w- c:windowsinfinfstor.dat
2009-11-06 04:59:22 51200 ----a-w- c:windowsinfinfpub.dat
2009-11-06 04:59:21 143360 ----a-w- c:windowsinfinfstrng.dat
2009-11-06 04:47:51 665600 ----a-w- c:windowsinfdrvindex.dat
2009-11-06 04:34:49 101888 ----a-w- c:windowssystem32ifxcardm.dll
2009-11-06 04:34:47 82432 ----a-w- c:windowssystem32axaltocm.dll
2009-10-28 04:19:59 6014976 ----a-w- c:windowssystem32NlsLexicons001a.dll
2009-10-27 23:57:25 6 --sh--r- c:windowssystem32driverstaishop.sys
2009-08-27 05:22:28 916480 ----a-w- c:windowssystem32wininet.dll
2009-08-27 05:17:43 71680 ----a-w- c:windowssystem32iesetup.dll
2009-08-27 05:17:43 109056 ----a-w- c:windowssystem32iesysprep.dll
2009-08-27 03:42:29 133632 ----a-w- c:windowssystem32ieUnatt.exe
2006-11-02 12:42:02 30674 ----a-w- c:windowsinfperflib0409perfd.dat
2006-11-02 12:42:02 30674 ----a-w- c:windowsinfperflib0409perfc.dat
2006-11-02 12:42:02 287440 ----a-w- c:windowsinfperflib0409perfi.dat
2006-11-02 12:42:02 287440 ----a-w- c:windowsinfperflib0409perfh.dat
2006-11-02 09:20:21 287440 ----a-w- c:windowsinfperflib0000perfi.dat
2006-11-02 09:20:21 287440 ----a-w- c:windowsinfperflib0000perfh.dat
2006-11-02 09:20:19 30674 ----a-w- c:windowsinfperflib0000perfd.dat
2006-11-02 09:20:19 30674 ----a-w- c:windowsinfperflib0000perfc.dat

============= FINISH: 16:22:02.35 ===============

When installed StopZilla and it found a trojan virus but I didn't realize at the time you had to pay for it to remove the virus but I wrote it down. But now that I know what virus I have how do I remove it? This is the name and file location the scanner gave:

Gen Trojan Installer E

makelink.exe (c:windowssystem32sysprepmakelink.exe)

Thanks =)
Michelle

Attached Files


Edited by boopme, 20 November 2009 - 07:04 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,231 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:03 PM

Posted 25 November 2009 - 02:07 PM

Op has notified me they did a Restore and I will close this
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users