Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

fraud skysgaurd HELP


  • Please log in to reply
5 replies to this topic

#1 ryaz11

ryaz11

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 12:02 AM

Hey there

I recently ran my anti virus nothing came up, Then ran spybot and came up with fraud skysgaurd and a win32 agent.

I cant get rid of it Please help

I ran rkill and combo fix and will post the results now!!

If anyone knows help me pleae

BC AdBot (Login to Remove)

 


#2 ryaz11

ryaz11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 12:03 AM

RKIL



This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 11/12/2010 at 15:27:49.
Operating System: Windows Vista ™ Home Premium


Processes terminated by Rkill or while it was running:
















COMBO FIX


ComboFix 10-12-09.04 - Owner 11/12/2010 15:36:02.2.2 - x86
Running from: C:\Users\Owner\Desktop\ComboFix.exe
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_monitor


((((((((((((((((((((((((( Files Created from 2010-11-11 to 2010-12-11 )))))))))))))))))))))))))))))))
.

2073-04-13 07:17:26 . 2006-11-21 10:48:08 203576 ------w- C:\Program Files\Microsoft Games\Age of Empires III\autopatcher2.exe
2010-12-11 04:44:14 . 2010-12-11 04:46:27 -------- d-----w- C:\Users\Owner\AppData\Local\temp
2010-12-11 04:44:14 . 2010-12-11 04:44:14 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\temp
2010-12-11 04:44:14 . 2010-12-11 04:44:14 -------- d-----w- C:\Users\Default\AppData\Local\temp
2010-12-11 04:10:54 . 2010-12-11 04:10:54 -------- d-----w- C:\Program Files\Safer Networking
2010-12-10 23:15:30 . 2010-11-10 04:33:37 6273872 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8FBE3055-DAAE-4CC0-8BCF-9E8D32BD8910}\mpengine.dll
2010-12-08 01:51:08 . 2010-03-05 14:01:02 420352 ----a-w- C:\Windows\system32\vbscript.dll
2010-12-08 01:51:07 . 2010-10-19 04:27:49 7680 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2010-12-04 03:59:36 . 2010-12-04 03:59:36 -------- d-----w- C:\Program Files\Sophos
2010-12-03 12:17:37 . 2010-12-03 12:17:37 -------- d-----w- C:\Users\Owner\AppData\Roaming\Malwarebytes
2010-12-03 12:17:14 . 2010-11-29 06:42:18 38224 ----a-w- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-12-03 12:17:12 . 2010-12-03 12:17:12 -------- d-----w- C:\ProgramData\Malwarebytes
2010-12-03 12:17:08 . 2010-12-03 12:17:20 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware
2010-12-03 12:17:08 . 2010-11-29 06:42:06 20952 ----a-w- C:\Windows\system32\drivers\mbam.sys
2010-12-03 11:31:22 . 2008-09-25 03:27:12 905216 ----a-w- C:\Windows\system32\GearDrvs.msi
2010-12-03 09:47:15 . 2010-11-23 16:11:48 21312 ----a-w- C:\Windows\system32\authuitu.dll
2010-12-03 09:47:15 . 2010-11-23 16:11:36 29504 ----a-w- C:\Windows\system32\uxtuneup.dll
2010-12-03 09:36:07 . 2010-11-23 16:16:14 31552 ----a-w- C:\Windows\system32\TURegOpt.exe
2010-12-03 09:35:12 . 2010-12-03 09:35:12 -------- d-----w- C:\Users\Owner\AppData\Roaming\TuneUp Software
2010-12-03 09:34:41 . 2010-12-03 09:46:37 -------- d-----w- C:\Program Files\TuneUp Utilities 2011
2010-12-03 09:33:28 . 2010-12-03 10:40:45 -------- d-----w- C:\ProgramData\TuneUp Software
2010-12-03 09:33:21 . 2010-12-03 11:39:21 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2010-12-03 09:33:21 . 2010-12-03 09:33:31 -------- d-----w- C:\Program Files\Spybot - Search & Destroy
2010-12-03 09:33:08 . 2010-12-03 09:33:08 -------- d-sh--w- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2010-12-03 08:31:57 . 2010-12-03 21:41:20 -------- d-----w- C:\Program Files\Norton 360
2010-12-03 08:29:52 . 2010-12-03 12:08:47 124464 ----a-w- C:\Windows\system32\drivers\SYMEVENT.SYS
2010-12-03 08:29:39 . 2010-12-03 12:09:18 -------- d-----w- C:\Program Files\Symantec
2010-12-03 07:33:41 . 2010-12-03 07:56:47 -------- d-----w- C:\ProgramData\Kaspersky Lab Setup Files
2010-12-03 02:52:16 . 2010-12-03 02:52:28 -------- d-----w- C:\Program Files\Common Files\Adobe(31)
2010-12-02 07:40:30 . 2010-12-02 07:40:32 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Local\Adobe
2010-11-30 03:54:42 . 2010-11-30 03:54:42 -------- d-----w- C:\Windows\system32\config\systemprofile\AppData\Roaming\DivX
2010-11-30 03:05:36 . 2010-12-03 06:42:40 -------- d-----w- C:\Program Files\TVersitybar
2010-11-30 03:04:53 . 2010-12-03 06:42:56 -------- d-----w- C:\Program Files\TVersity Codec Pack
2010-11-30 03:04:32 . 2010-12-03 06:43:16 -------- d-----w- C:\ProgramData\TVersity
2010-11-28 06:27:45 . 2010-11-28 06:27:45 -------- d-----w- C:\Users\Owner\AppData\Local\Mozilla
2010-11-20 22:07:28 . 2010-11-20 22:07:28 -------- d-----w- C:\Program Files\Common Files\xing shared
2010-11-20 22:06:46 . 2010-11-20 22:07:39 -------- d-----w- C:\Program Files\Real
2010-11-15 02:49:27 . 2010-11-15 02:49:29 -------- d-----w- C:\Program Files\Microsoft Silverlight
2010-11-13 05:11:25 . 2010-09-07 22:09:46 108032 ----a-w- C:\Windows\system32\ff_vfw.dll
2010-11-13 05:11:22 . 2010-11-13 05:11:26 -------- d-----w- C:\Program Files\ffdshow
2010-11-13 05:09:15 . 2010-11-13 05:09:15 -------- d-----w- C:\Users\Owner\AppData\Local\Xara
2010-11-13 05:09:11 . 2010-11-13 05:09:11 -------- d-----w- C:\Users\Owner\AppData\Roaming\MAGIX
2010-11-13 05:08:16 . 2010-11-13 05:08:16 -------- d-----w- C:\Program Files\Common Files\MAGIX Shared
2010-11-13 05:02:51 . 2010-11-13 05:04:14 -------- d-----w- C:\Program Files\MAGIX
2010-11-13 05:02:29 . 2010-11-13 05:04:14 -------- d-----w- C:\ProgramData\MAGIX
2010-11-13 05:02:27 . 2010-11-13 05:02:27 -------- d-----w- C:\Program Files\Common Files\MAGIX Services
2010-11-13 04:56:36 . 2010-11-13 04:56:39 -------- d-----w- C:\Program Files\ConduitEngine
2010-11-13 04:56:32 . 2010-11-13 04:56:50 -------- d-----w- C:\Program Files\Reganam
2010-11-11 06:12:54 . 2009-02-18 03:53:22 112504 ----a-w- C:\Windows\system32\ArMonitor.dll
2010-11-11 06:10:34 . 2010-11-11 06:12:52 -------- d-----w- C:\Program Files\ARX

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-11-20 22:06:51 . 2010-04-29 09:47:50 499712 ----a-w- C:\Windows\system32\msvcp71.dll
2010-11-20 22:06:51 . 2006-07-11 08:35:38 348160 ----a-w- C:\Windows\system32\msvcr71.dll
2010-10-18 23:41:44 . 2010-03-30 21:18:26 222080 ------w- C:\Windows\system32\MpSigStub.exe
2010-10-14 07:04:26 . 2010-10-14 07:04:26 341256 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-10-04 22:25:59 . 2010-10-04 22:25:59 894616 ----a-w- C:\Windows\dbplugin.exe
2010-10-04 22:25:59 . 2010-10-04 22:25:59 31728 ----a-w- C:\Windows\dbrmdwb.exe
2010-10-04 22:25:59 . 2010-10-04 22:25:59 26 ----a-w- C:\Windows\dbrmdwb.bat
2010-10-04 22:25:59 . 2010-10-04 22:25:59 245840 ----a-w- C:\Windows\system32\DNLEng.dll
2010-10-04 22:25:59 . 2010-10-04 22:25:59 2327704 ----a-w- C:\Windows\dbplugin.ocx
2010-10-04 22:25:59 . 2010-10-04 22:25:59 2179072 ----a-w- C:\Windows\npdbplug.dll
2010-09-24 12:11:15 . 2010-09-24 12:11:14 2560 ----a-w- C:\Windows\_MSRSTRT.EXE
2010-09-13 13:56:41 . 2010-10-12 22:11:12 8147456 ----a-w- C:\Windows\system32\wmploc.DLL
2009-03-31 11:47:26 . 2010-12-03 11:44:49 324976 ----a-w- C:\Program Files\mozilla firefox\components\coFFPlgn.dll
.



Rkill completed on 11/12/2010 at 15:28:04.

#3 ryaz11

ryaz11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 12:19 AM

I have windows vista home premium , im not very good with computers so please explain what i should do. thanks

#4 ryaz11

ryaz11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 02:46 AM

Anyone? im from australia so if i dont reply it means im off for the night

#5 ryaz11

ryaz11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 03:05 PM

no help?

#6 ryaz11

ryaz11
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 December 2010 - 11:03 PM

???




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users