Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Removed antimalware doctor and now computer freezes


  • This topic is locked This topic is locked
2 replies to this topic

#1 kissfandoug

kissfandoug

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Janesville, WI
  • Local time:09:32 PM

Posted 03 May 2010 - 11:09 AM

links to last post: http://www.bleepingcomputer.com/forums/topic313992.html, http://www.bleepingcomputer.com/forums/topic313992.html (both are the same)

I am unable to turn the firewall on, the trojan or whatever it is says it can't start the ICS service.
I was able to run defogger and dds, but not GMER. The initial scan for GMER worked, but when I made the option changes and ran the scan it froze up within 30 sec.

I'm able to boot without freezing in safe mode. I've ran superantispyware, antimalwarebytes, spybot s&d, and AVG antivirus scanner in safe mode. They all find things but ask to reboot, so I reboot to normal mode and it freezes. Computer runs chkdsk after every restart even when I let it finish. Sometimes when the computer freezes I get a solid high pitched tone (no speakers are attached - its coming from the internal computer speaker that makes the beeps) This has only happened a few times. IE will not work at all and I can't update the spyware scanners. I am using a USB drive and a laptop to do this.


DDS (Ver_10-03-17.01) - NTFSx86
Run by Doug at 13:26:32.92 on Mon 05/03/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_18
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1276 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost -k DcomLaunch
svchost.exe
C:\windows\System32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k WudfServiceGroup
C:\windows\system32\Ati2evxx.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\windows\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\system32\bgsvcgen.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Norton Ghost\Agent\VProSvc.exe
C:\windows\Explorer.EXE
C:\Onyx\AutoUpdate\OnxUpdtService.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\SAiDownloader.exe
C:\WINDOWS\system32\SAiLicSvr.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files\Smith Micro\StuffIt 12.0.1\ArcNameService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\windows\stsystra.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\Common Files\AOL\1220328624\ee\AOLSoftware.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\MSN Toolbar\Platform\4.0.0379.0\mswinext.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\Program Files\RFA\rfagent.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Norton Ghost\Agent\VProTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe
C:\Program Files\Webroot\Washer\wwDisp.exe
C:\windows\system32\wscntfy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Doug\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://192.168.0.50/DiagStatsLAMPS.htm
uInternet Settings,ProxyOverride = <local>
uInternet Settings,ProxyServer = http=127.0.0.1:5555
mURLSearchHooks: H - No File
BHO: ContributeBHO Class: {074c1dc5-9320-4a9a-947d-c042949c6216} - c:\program files\adobe\/Adobe Contribute CS4/contributeieplugin.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Ask Search Assistant BHO: {9cb65201-89c4-402c-ba80-02d8c59f9b1d} - Ask Search Assistant BHO
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: MSN Toolbar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\msn toolbar\platform\4.0.0379.0\npwinext.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - Ask Toolbar BHO
TB: Ask Toolbar: {fe063db9-4ec0-403e-8dd8-394c54984b2c} -
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: MSN Toolbar: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\msn toolbar\platform\4.0.0379.0\npwinext.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Contribute Toolbar: {517bdde4-e3a7-4570-b21e-2b52b6139fc7} - c:\program files\adobe\/Adobe Contribute CS4/contributeieplugin.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [Window Washer] c:\program files\webroot\washer\wwDisp.exe
uRun: [Jfatali] rundll32.exe "c:\windows\dsxletl.dll",Startup
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [HostManager] c:\program files\common files\aol\1220328624\ee\AOLSoftware.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
mRun: [Hard Disk Sentinel] "c:\program files\hard disk sentinel\HDSentinel.exe" /AUTORUN
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [OSSelectorReinstall] c:\program files\common files\acronis\acronis disk director\oss_reinstall.exe
mRun: [MSN Toolbar] "c:\program files\msn toolbar\platform\4.0.0379.0\mswinext.exe"
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [rfagent] "c:\program files\rfa\rfagent.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [Norton Ghost 14.0] "c:\program files\norton ghost\agent\VProTray.exe"
mRun: [Name of App] c:\program files\samsung\fw liveupdate\FWManager.exe r
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [Adobe_ID0ENQBO] c:\progra~1\common~1\adobe\adobe version cue cs4\server\bin\VersionCueCS4Tray.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 9.0\acrobat\Acrotray.exe"
mPolicies-explorer: NoResolveTrack = 1 (0x1)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\microsoft office\office12\REFIEBAR.DLL
DPF: Web-Based Email Tools - hxxp://email.secureserver.net/Download.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: avgrsstarter - avgrsstx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
LSA: Notification Packages = scecli c:\windows\system32\romopifo.dll jadegada.dll
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\doug\applic~1\mozilla\firefox\profiles\m0pne8gi.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.aol.com/aolcom/search?invocationType=tb50ffTB50CLie7&query=
FF - prefs.js: browser.search.selectedEngine - AOL Search
FF - prefs.js: browser.startup.homepage - hxxp://www.aol.com
FF - prefs.js: keyword.URL - hxxp://search.aol.com/aolcom/search?invocationType=tb50ffTB50CLab&query=
FF - component: c:\program files\microsoft\search enhancement pack\search helper\firefoxextension\searchhelperextension\components\SEPsearchhelperff.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npunagi2.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: XULRunner: {03C1DF03-FC17-4F8D-84EA-F2E95051083C} - c:\documents and settings\doug\local settings\application data\{03C1DF03-FC17-4F8D-84EA-F2E95051083C}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.protocol-handler.warn-external.dnupdate - false
============= SERVICES / DRIVERS ===============

R0 hotcore3;hc3ServiceName;c:\windows\system32\drivers\hotcore3.sys [2009-12-1 40560]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-1-29 216200]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-1-29 29512]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-1-29 242896]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-4-27 61440]
R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-5-12 611664]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2010-3-14 916760]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-3-14 308064]
R2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 OnyxUpdaterService;Onyx Updater;c:\onyx\autoupdate\OnxUpdtService.exe [2008-9-8 53248]
R2 PDIHWCTL;PDIHWCTL;c:\windows\system32\drivers\pdihwctl.sys [2008-9-2 14416]
R2 SAiDownloader;SAiDownloader;c:\windows\system32\SAiDownloader.exe [2008-9-1 438272]
R2 SAiLicSvr;SAiLicSvr;c:\windows\system32\SAiLicSvr.exe [2008-10-2 86016]
R2 SentinelKeysServer;Sentinel Keys Server;c:\program files\common files\safenet sentinel\sentinel keys server\sntlkeyssrvr.exe [2007-4-27 316992]
R2 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2004-8-4 5120]
R2 wwEngineSvc;Window Washer Engine;c:\program files\webroot\washer\WasherSvc.exe [2008-9-5 598856]
R3 SNXPCARD;SNXPCARD;c:\windows\system32\drivers\snxpcard.sys [2008-10-6 23040]
R3 SNXPPALX;SNXPPALX;c:\windows\system32\drivers\snxppalx.sys [2008-10-6 76800]
R3 SymSnapService;SymSnapService;c:\program files\norton ghost\shared\drivers\SymSnapService.exe [2007-12-20 1558000]
S0 ixxozt;ixxozt; [x]
S2 WUSB300NSvc;WUSB300NSvc;"c:\program files\linksys\wusb300n\wlservice.exe" "wusb300n.exe" --> c:\program files\linksys\wusb300n\WLService.exe [?]
S3 {6A045BC8-5055-41B0-9A3313E5C4E31A0E};{6A045BC8-5055-41B0-9A3313E5C4E31A0E};c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\common files\adobe\adobe version cue cs4\server\bin\VersionCueCS4.exe [2008-8-15 288112]
S3 ATICDSDr;ATICDSDr;\??\c:\docume~1\doug\locals~1\temp\{9b94b~1\atiicdxx.sys --> c:\docume~1\doug\locals~1\temp\{9b94b~1\atiicdxx.sys [?]
S3 DfSdkS;Defragmentation-Service;c:\program files\ashampoo\ashampoo winoptimizer 6\DfSdkS.exe [2009-4-6 410976]
S3 FWPort;Printer Port;c:\windows\system32\drivers\FWPort.sys [2008-9-1 95032]
S3 i1;i1 Pro;c:\windows\system32\drivers\i1.sys [2008-9-2 26045]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2010-4-30 38224]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2008-8-21 18688]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2008-8-21 8320]
S3 motport;Motorola USB Diagnostic Port;c:\windows\system32\drivers\motport.sys [2007-6-18 23680]
S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [2008-8-20 168192]
S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [2008-8-20 142976]
S3 USBREC;Canon USB Video Record;c:\windows\system32\drivers\USBREC.sys [2004-10-5 4992]

=============== Created Last 30 ================

2010-05-02 23:58:23 332 ----a-w- c:\documents and settings\doug\defogger_reenable
2010-05-02 23:47:07 0 d-----w- c:\windows\system32\wbem\Repository
2010-05-02 22:25:47 0 d-----w- c:\program files\Trend Micro
2010-05-02 13:32:17 0 d-----w- c:\docume~1\alluse~1\applic~1\SecTaskMan
2010-05-02 13:32:14 0 d-----w- c:\program files\Security Task Manager
2010-05-01 23:52:16 0 d-----w- C:\VundoFix Backups
2010-05-01 03:48:25 0 d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2010-05-01 03:48:16 0 d-----w- c:\program files\SUPERAntiSpyware
2010-05-01 03:48:16 0 d-----w- c:\docume~1\doug\applic~1\SUPERAntiSpyware.com
2010-04-30 18:45:10 54016 ----a-w- c:\windows\system32\drivers\jolj.sys
2010-04-30 17:01:37 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-30 17:01:35 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-30 17:01:35 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-30 13:51:54 120 ----a-w- c:\windows\Odacu.dat
2010-04-30 13:51:54 0 ----a-w- c:\windows\Ahifikehejo.bin
2010-04-30 13:50:18 0 d-----w- c:\docume~1\doug\applic~1\795B97A513CF0B484668B97D9FA02DC3
2010-04-28 19:29:58 0 d-----w- c:\program files\iPod
2010-04-28 19:26:22 0 d-----w- c:\program files\Bonjour
2010-04-09 20:42:57 87 ----a-w- c:\windows\system32\ssprs.tgz
2010-04-09 20:42:57 73 ----a-w- c:\windows\system32\ssprs.dll
2010-04-09 20:42:57 219 ----a-w- c:\windows\system32\lsprst7.tgz
2010-04-09 20:42:57 21 ----a-w- c:\windows\SurCode.INI
2010-04-09 20:42:57 205 ----a-w- c:\windows\system32\lsprst7.dll
2010-04-09 20:42:57 1025 ----a-w- c:\windows\system32\sysprs7.tgz
2010-04-09 20:42:57 1025 ----a-w- c:\windows\system32\sysprs7.dll
2010-04-09 20:42:57 1025 ----a-w- c:\windows\system32\clauth2.dll
2010-04-09 20:42:57 1025 ----a-w- c:\windows\system32\clauth1.dll
2010-04-09 20:42:57 0 d-----w- c:\docume~1\alluse~1\applic~1\Minnetonka Audio Software
2010-04-08 18:20:02 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-04-08 18:20:02 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-04-07 15:55:00 0 d-----w- c:\docume~1\alluse~1\applic~1\ALM
2010-04-07 15:42:48 46928 ----a-w- c:\windows\system32\AdobePDF.dll
2010-04-07 15:42:48 22872 ----a-r- c:\windows\system32\AdobePDFUI.dll
2010-04-07 15:27:29 0 d-----w- c:\program files\common files\Macrovision Shared

==================== Find3M ====================

2010-04-21 14:26:36 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-04-09 20:18:46 73312 ----a-w- c:\windows\system32\drivers\adfs.sys
2010-03-22 16:14:51 139128 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-03-22 16:14:41 215128 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-03-22 16:10:09 138056 ----a-w- c:\docume~1\doug\applic~1\PnkBstrK.sys
2010-03-22 16:09:52 75064 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-03-22 16:09:52 2434856 ----a-w- c:\windows\system32\pbsvc_bc2.exe
2010-03-14 14:44:18 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-03-14 14:43:54 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-03-10 06:15:52 420352 ----a-w- c:\windows\system32\vbscript.dll
2010-02-25 06:24:37 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-16 14:08:49 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25:04 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-12 01:22:31 103752 ----a-w- c:\windows\system32\AOLDial.dll
2008-12-16 16:13:31 9269 ----a-w- c:\program files\hs_err_pid3400.log
2008-12-16 16:12:32 9270 ----a-w- c:\program files\hs_err_pid3184.log
2008-12-16 16:12:03 9268 ----a-w- c:\program files\hs_err_pid3392.log
2008-09-03 13:54:49 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008090320080904\index.dat

============= FINISH: 13:27:56.48 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 kissfandoug

kissfandoug
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Janesville, WI
  • Local time:09:32 PM

Posted 04 May 2010 - 10:07 AM

Please close this topic

#3 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:32 PM

Posted 04 May 2010 - 05:06 PM

Topic closed at members request. Please send me a PM if you would like it reopened.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users