Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

GMER freezing


  • This topic is locked This topic is locked
3 replies to this topic

#1 Troutteaser

Troutteaser

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:02:15 PM

Posted 02 September 2010 - 07:25 PM

Trying to run GMER to do my root scan, but program keeps freezing at various points. Running Windows XP. Any ideas?

Websites found from searches on IE8 and Google being redirected. Running Windows XP Service Pack 3 with AVG antivirus and Spyware Doctor, but something still slipped through. GMER constantly crashed until I scanned in Safe Mode. Any help addressing my computer issues would be greatly appreciated.




DDS (Ver_10-03-17.01) - NTFSx86
Run by Roy Thun at 13:01:15.68 on Thu 09/02/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3582.3088 [GMT -7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost -k DcomLaunch
C:WINDOWSsystem32svchost -k rpcss
C:WINDOWSSystem32svchost.exe -k netsvcs
C:WINDOWSsystem32svchost.exe -k WudfServiceGroup
C:WINDOWSsystem32svchost.exe -k NetworkService
C:WINDOWSsystem32svchost.exe -k LocalService
C:WINDOWSsystem32Ati2evxx.exe
C:Program FilesAVGAVG9avgchsvx.exe
C:Program FilesAVGAVG9avgrsx.exe
C:WINDOWSSystem32svchost.exe -k netsvcs
C:Program FilesAVGAVG9avgcsrvx.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSsystem32rundll32.exe
C:WINDOWSsystem32svchost.exe -k LocalService
C:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exe
C:Program FilesAVGAVG9avgwdsvc.exe
C:Program FilesBonjourmDNSResponder.exe
C:Program FilesSpyware DoctorBDTBDTUpdateService.exe
C:WINDOWSsystem32CTsvcCDA.EXE
C:Program FilesAVGAVG9avgnsx.exe
C:Program FilesJavajre6binjqs.exe
C:Program FilesCommon FilesLogiShrdLVMVFMLVPrcSrv.exe
C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
C:WINDOWSsystem32HPZipm12.exe
C:Program FilesSpyware DoctorpctsAuxs.exe
C:Program FilesSpyware DoctorpctsSvc.exe
C:Program FilesMicrosoftSearch Enhancement PackSeaPortSeaPort.exe
C:Program FilesDell Support Centerbinsprtsvc.exe
C:WINDOWSsystem32svchost.exe -k LocalService
C:WINDOWSsystem32svchost.exe -k imgsvc
C:WINDOWSsystem32MsPMSPSv.exe
C:WINDOWSsystem32svchost.exe -k netsvcs
C:WINDOWSsystem32fxssvc.exe
C:WINDOWSehomemcrdsvc.exe
C:WINDOWSExplorer.EXE
C:Program FilesHewlett-PackardHP Software UpdateHPWuSchd2.exe
C:Program FilesCyberLinkPowerDVDDVDLauncher.exe
C:WINDOWSsystem32dlatfswctrl.exe
C:Program FilesCreativeSound Blaster Live! 24-bitSurround MixerCTSysVol.exe
C:Program FilesMicrosoft IntelliPointipoint.exe
C:Program FilesLogitechQuickCamQuickcam.exe
C:PROGRA~1AVGAVG9avgtray.exe
C:WINDOWSehomeehtray.exe
C:Program FilesSpyware DoctorpctsTray.exe
C:WINDOWSstsystra.exe
C:WINDOWSsystem32Rundll32.exe
C:Program FilesiTunesiTunesHelper.exe
C:PROGRA~1VIRTUA~1CitiVAN.exe
C:Program FilesCommon FilesJavaJava Updatejusched.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesCreativeSync Manager UnicodeCTSyncU.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:Program FilesIObitAdvanced SystemCare 3Sup_SmartRAM.exe
C:Program FilesInnovative SolutionsDriverMaxdevices.exe
C:Program FilesDigital Line DetectDLG.exe
C:Program FilesFinePixViewerQuickDCF2.exe
C:Program FilesHewlett-PackardDigital Imagingbinhpqtra08.exe
C:WINDOWSsystem32OBroker.exe
C:Program FilesHewlett-PackardDigital Imagingbinhpobnz08.exe
C:Program FilesLogitechSetPointSetPoint.exe
C:Program FilesHewlett-PackardDigital Imagingbinhposol08.exe
C:Program FilesCommon FilesLogishrdLQCVFXCOCIManager.exe
C:Program FilesCommon FilesLogishrdKHAL2KHALMNPR.EXE
C:Program FilesiPodbiniPodService.exe
C:WINDOWSSystem32alg.exe
C:Program FilesHewlett-PackardDigital ImagingbinhpqSTE08.exe
c:program fileslogitechquickcamlululnchr.exe
c:program fileslogitechquickcamluLogitechUpdate.exe
C:Documents and SettingsRoy Thun.THUNPCDesktopdds.scr
C:WINDOWSsystem32wbemwmiprvse.exe

============== Pseudo HJT Report ===============

uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uStart Page = hxxp://cm.my.yahoo.com/?rd=nux
uInternet Settings,ProxyOverride = *.local
mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:program filesavgavg9toolbarIEToolbar.dll
BHO: Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:program filesyahoo!companioninstallscpn0yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filescommon filesadobeacrobatactivexAcroIEHelper.dll
BHO: Virtual Account Numbers Helper: {17424104-1444-4810-85d7-b4da413c5a9a} - c:program filesvirtual account numbersCitiVANHelper.dll
BHO: PC Tools Browser Guard BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - c:program filesspyware doctorbdtPCTBrowserDefender.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:program filesavgavg9avgssie.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:windowssystem32dlatfswshx.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:program filesmicrosoftsearch enhancement packsearch helperSEPsearchhelperie.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:program filescommon filesmicrosoft sharedwindows liveWindowsLiveLogin.dll
BHO: {99EEA14E-1AE5-47F6-98DC-DE41BCC922DE} - No File
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:program filesavgavg9toolbarIEToolbar.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:program filesgooglegoogletoolbarnotifier5.5.5126.1836swg.dll
BHO: {B9AB28FA-ED73-4E5E-BA11-0925D85120D1} - No File
BHO: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:program filesvuze_remotetbVuz0.dll
BHO: MSN Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:program filesmsntoolbar3.0.1125.0msneshellx.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:program filesjavajre6binjp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:program filesjavajre6libdeployjqsiejqs_plugin.dll
BHO: OToolbarHelper Class: {ead3a971-6a23-4246-8691-c9244e858967} - c:program filespaypalpaypal plug-inPayPalHelper.dll
TB: PayPal Plug-In: {dc0f2f93-27fa-4f84-acaa-9416f90b9511} - c:program filespaypalpaypal plug-inOToolbar.dll
TB: MSN Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:program filesmsntoolbar3.0.1125.0msneshellx.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:program filesavgavg9toolbarIEToolbar.dll
TB: Vuze Remote Toolbar: {ba14329e-9550-4989-b3f2-9732e92d17cc} - c:program filesvuze_remotetbVuz0.dll
TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} - c:program filesspyware doctorbdtPCTBrowserDefender.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:program filesgooglegoogle toolbarGoogleToolbar_32.dll
TB: Virtual Account Numbers: {7a21a046-b886-4a62-9d69-ef2059b0a27b} - c:program filesvirtual account numbersCitiVANToolbar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:program filesyahoo!companioninstallscpn0yt.dll
TB: {4E7BD74F-2B8D-469E-94BE-FD60BB9AAE29} - No File
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe
uRun: [CTSyncU.exe] "c:program filescreativesync manager unicodeCTSyncU.exe"
uRun: [swg] "c:program filesgooglegoogletoolbarnotifierGoogleToolbarNotifier.exe"
uRun: [SmartRAM] "c:program filesiobitadvanced systemcare 3Sup_SmartRAM.exe" /m
uRun: [DriverMax] "c:program filesinnovative solutionsdrivermaxdevices.exe" -agent
uRun: [DriverMax_RESTART] "c:program filesinnovative solutionsdrivermaxdevices.exe" -RESTART
mRun: [HP Software Update] c:program fileshewlett-packardhp software updateHPWuSchd2.exe
mRun: [DVDLauncher] "c:program filescyberlinkpowerdvdDVDLauncher.exe"
mRun: [dla] c:windowssystem32dlatfswctrl.exe
mRun: [CTSysVol] "c:program filescreativesound blaster live! 24-bitsurround mixerCTSysVol.exe" /r
mRun: [ATIPTA] "c:program filesati technologiesati control panelatiptaxx.exe"
mRun: [IntelliPoint] "c:program filesmicrosoft intellipointipoint.exe"
mRun: [DellSupportCenter] "c:program filesdell support centerbinsprtcmd.exe" /P DellSupportCenter
mRun: [AppleSyncNotifier] c:program filescommon filesapplemobile device supportAppleSyncNotifier.exe
mRun: [dscactivate] "c:program filesdell support centergs_agentcustomdsca.exe"
mRun: [ISUSPM Startup] "c:progra~1common~1instal~1update~1ISUSPM.exe" -startup
mRun: [LogitechQuickCamRibbon] "c:program fileslogitechquickcamQuickcam.exe" /hide
mRun: [Microsoft Default Manager] "c:program filesmicrosoftsearch enhancement packdefault managerDefMgr.exe" -resume
mRun: [AVG9_TRAY] c:progra~1avgavg9avgtray.exe
mRun: [PinnacleDriverCheck] c:windowssystem32PSDrvCheck.exe
mRun: [PCLEPCI] c:progra~1pinnacleppePPE.EXE
mRun: [ehTray] c:windowsehomeehtray.exe
mRun: [AdobeCS4ServiceManager] "c:program filescommon filesadobecs4servicemanagerCS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Reader Speed Launcher] "c:program filesadobereader 8.0readerReader_sl.exe"
mRun: [Adobe ARM] "c:program filescommon filesadobearm1.0AdobeARM.exe"
mRun: [QuickTime Task] "c:program filesquicktimeqttask.exe" -atboottime
mRun: [DWQueuedReporting] "c:progra~1common~1micros~1dwdwtrig20.exe" -t
mRun: [ISTray] "c:program filesspyware doctorpctsTray.exe"
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [P17Helper] Rundll32 P17.dll,P17Helper
mRun: [iTunesHelper] "c:program filesitunesiTunesHelper.exe"
mRun: [Citi Virtual Account Numbers] c:progra~1virtua~1CitiVAN.exe /lang=en_RG /dontopenmycards
mRun: [SunJavaUpdateSched] "c:program filescommon filesjavajava updatejusched.exe"
dRun: [DWQueuedReporting] "c:progra~1common~1micros~1dwdwtrig20.exe" -t
StartupFolder: c:docume~1alluse~1startm~1programsstartupat&tse~1.lnk - c:program filessbc self support toolbinmatcli.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartupdigita~1.lnk - c:program filesdigital line detectDLG.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartupexifla~1.lnk - c:program filesfinepixviewerQuickDCF2.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartuphpdigi~1.lnk - c:program fileshewlett-packarddigital imagingbinhpqtra08.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartuphppsc2~1.lnk - c:program fileshewlett-packarddigital imagingbinhpobnz08.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartuplogite~1.lnk - c:program fileslogitechsetpointSetPoint.exe
StartupFolder: c:docume~1alluse~1startm~1programsstartupoffice~1.lnk - c:program fileshewlett-packarddigital imagingbinhposol08.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:program filesmessengermsmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:progra~1micros~2office11REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:windowssystem32Shdocvw.dll
DPF: Microsoft XML Parser for Java - file://c:windowsjavaclassesxmldso.cab
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/e/4/9/e494c802-dd90-4c6b-a074-469358f075a6/OGAControl.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:program filesyahoo!commonYinsthelper.dll
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photos.walmart.com/WalmartActivia.cab
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.1.cab
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6087.cab
DPF: {6781FF2E-7452-11D4-84D4-0040F60CE591} - hxxp://www.etniesskatepark.com/rvctl.cab
DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} - hxxp://www.creative.com/softwareupdate/su/ocx/15101/CTSUEng.cab
DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} - hxxps://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - hxxp://floridakeysmedia.tv/axiscam/Codebase/AxisCamControl.ocx
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://www.creative.com/softwareupdate/su/ocx/15106/CTPID.cab
TCP: {6C7F7870-6729-4606-935F-0004711616B8} = 68.94.156.1,68.94.157.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:program filesavgavg9avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:progra~1common~1skypeSKYPE4~1.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: avgrsstarter - avgrsstx.dll
Notify: LBTWlgn - c:program filescommon fileslogitechbluetoothLBTWlgn.dll
Notify: yayayVpQ - yayayVpQ.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:windowssystem32WPDShServiceObj.dll
SEH: {097F10A7-487F-4457-AB1F-827C59479A72} - No File
SEH: {B9AB28FA-ED73-4E5E-BA11-0925D85120D1} - No File
LSA: Authentication Packages = msv1_0 c:windowssystem32khfCtqro
LSA: Notification Packages = :windowssystem32srrstr.dll cecli scecli

============= SERVICES / DRIVERS ===============

R0 PCTCore;PCTools KDS;c:windowssystem32driversPCTCore.sys [2010-5-15 218592]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:windowssystem32driversavgldx86.sys [2009-10-19 216200]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:windowssystem32driversavgmfx86.sys [2009-10-19 29584]
R1 AvgTdiX;AVG Free Network Redirector;c:windowssystem32driversavgtdix.sys [2009-10-19 242896]
R2 avg9wd;AVG Free WatchDog;c:program filesavgavg9avgwdsvc.exe [2010-3-25 308064]
R2 Browser Defender Update Service;Browser Defender Update Service;c:program filesspyware doctorbdtBDTUpdateService.exe [2010-5-15 112592]
R2 McrdSvc;Media Center Extender Service;c:windowsehomemcrdsvc.exe [2005-8-5 99328]
R2 sdAuxService;PC Tools Auxiliary Service;c:program filesspyware doctorpctsAuxs.exe [2010-6-10 366840]
R2 sdCoreService;PC Tools Security Service;c:program filesspyware doctorpctsSvc.exe [2010-6-10 1142224]
R3 PGR1394b;HS 3d Sensor IEEE 1394 Bus host controllers;c:windowssystem32driversHS3dSensor1394.sys [2010-7-9 72704]
S1 yzbgqap;yzbgqap;??ž --> ž [?]
S2 gupdate1c9e4c4caa6902a;Google Update Service (gupdate1c9e4c4caa6902a);c:program filesgoogleupdateGoogleUpdate.exe [2009-6-3 133104]
S3 cpudrv;cpudrv;c:program filessystemrequirementslabcpudrv.sys [2009-12-18 11336]
S3 cpuz132;cpuz132;??c:docume~1roythu~1.thulocals~1tempcpuz132cpuz132_x32.sys --> c:docume~1roythu~1.thulocals~1tempcpuz132cpuz132_x32.sys [?]
S3 service.sys;service.sys;??c:windowssystem32service.sys --> c:windowssystem32service.sys [?]

=============== Created Last 30 ================

2010-09-02 18:49:35 20 ----a-w- c:documents and settingsroy thun.thunpcdefogger_reenable
2010-09-02 02:47:16 0 d-----w- c:windowssystem32wbemRepository
2010-09-01 21:05:35 524288 ----a-w- C:ntuser.dat
2010-08-26 14:56:08 0 ----a-w- c:windowssystem32REN78.tmp
2010-08-26 14:56:08 0 ----a-w- c:windowssystem32REN77.tmp
2010-08-19 13:45:14 0 d-----w- c:program filesVirtual Account Numbers
2010-08-19 13:45:12 145920 ----a-w- c:windowssystem32OBroker.exe
2010-08-11 18:06:47 3274 ----a-w- c:windowssystem32wbemOutlook_01cb397ff6e69da0.mof

==================== Find3M ====================

2010-09-02 18:52:15 0 ----a-w- c:windowssystem32driverslvuvc.hs
2010-09-02 18:52:10 0 ----a-w- c:windowssystem32driverslogiflt.iad
2010-08-29 15:14:52 6820 ----a-w- c:windowssystem32d3d9caps.dat
2010-07-27 06:30:35 8462336 ------w- c:windowssystem32dllcacheshell32.dll
2010-07-23 01:52:32 767928 ----a-w- c:windowsBDTSupport.dll
2010-07-17 12:00:04 423656 ----a-w- c:windowssystem32deployJava1.dll
2010-07-06 23:37:46 409600 ----a-w- c:windowssystem32wrap_oal.dll
2010-07-06 23:37:46 114688 ----a-w- c:windowssystem32OpenAL32.dll
2010-07-06 00:29:58 691696 ----a-w- c:windowssystem32driverssptd.sys
2010-06-30 12:31:35 149504 ----a-w- c:windowssystem32schannel.dll
2010-06-30 12:31:35 149504 ------w- c:windowssystem32dllcacheschannel.dll
2010-06-25 00:51:58 11077120 ------w- c:windowssystem32dllcacheieframe.dll
2010-06-24 12:22:03 916480 ----a-w- c:windowssystem32wininet.dll
2010-06-24 12:22:03 916480 ------w- c:windowssystem32dllcachewininet.dll
2010-06-24 12:22:03 12800 ------w- c:windowssystem32dllcachexpshims.dll
2010-06-24 12:22:02 1210368 ------w- c:windowssystem32dllcacheurlmon.dll
2010-06-24 12:22:01 611840 ------w- c:windowssystem32dllcachemstime.dll
2010-06-24 12:22:01 5951488 ------w- c:windowssystem32dllcachemshtml.dll
2010-06-24 12:22:01 206848 ------w- c:windowssystem32dllcacheoccache.dll
2010-06-24 12:21:59 599040 ------w- c:windowssystem32dllcachemsfeeds.dll
2010-06-24 12:21:59 55296 ------w- c:windowssystem32dllcachemsfeedsbs.dll
2010-06-24 12:21:59 25600 ------w- c:windowssystem32dllcachejsproxy.dll
2010-06-24 12:21:58 247808 ------w- c:windowssystem32dllcacheieproxy.dll
2010-06-24 12:21:58 1986560 ------w- c:windowssystem32dllcacheiertutil.dll
2010-06-24 12:21:58 184320 ------w- c:windowssystem32dllcacheiepeers.dll
2010-06-24 12:21:56 743424 ------w- c:windowssystem32dllcacheiedvtool.dll
2010-06-24 12:21:55 387584 ------w- c:windowssystem32dllcacheiedkcs32.dll
2010-06-23 13:44:04 1851904 ----a-w- c:windowssystem32win32k.sys
2010-06-23 13:44:04 1851904 ------w- c:windowssystem32dllcachewin32k.sys
2010-06-23 12:08:09 173056 ------w- c:windowssystem32dllcacheie4uinit.exe
2010-06-21 15:27:11 354304 ------w- c:windowssystem32dllcachesrv.sys
2010-06-18 13:36:12 3558912 ----a-w- c:windowssystem32dllcachemoviemk.exe
2010-06-17 14:03:00 80384 ----a-w- c:windowssystem32iccvid.dll
2010-06-14 14:31:20 744448 ------w- c:windowssystem32dllcachehelpsvc.exe
2010-06-14 07:41:45 1172480 ----a-w- c:windowssystem32msxml3.dll
2010-06-14 07:41:45 1172480 ----a-w- c:windowssystem32dllcachemsxml3.dll
2010-06-08 00:21:02 1652664 ----a-w- c:windowsPCTBDCore.dll
2008-05-12 00:03:36 0 -c--a-w- c:program filesuninstall.dat
2005-08-29 04:02:48 251 -c--a-w- c:program fileswt3d.ini
2005-05-26 21:35:42 1422 -c--a-w- c:program filesReadMe.txt
2010-05-14 04:09:50 156672 --sha-r- c:windowssystem32mfc71uk.dll
2008-05-16 19:31:55 1317983 -csha-w- c:windowssystem32orqtCfhk.ini2

============= FINISH: 13:03:12.60 ===============

Edited by Pandy, 03 September 2010 - 09:14 AM.
Topics merged ~Pandy


BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:15 PM

Posted 11 September 2010 - 08:03 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. You can subscribe by clicking the Options box to the right of your topic title and selecting Track This Topic.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks thumbup2.gif
Posted Image
m0le is a proud member of UNITE

#3 Troutteaser

Troutteaser
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:02:15 PM

Posted 12 September 2010 - 11:42 AM

Thanks for the note. I believe I have addressed the malware issue on my computer. Regards.

#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:09:15 PM

Posted 12 September 2010 - 06:00 PM

Thanks for letting me know thumbup2.gif

----------------------------------------------------------

This topic has been closed.

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users