Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google and IE redirect virus


  • This topic is locked This topic is locked
2 replies to this topic

#1 647chang

647chang

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:12:19 PM

Posted 08 May 2011 - 11:47 AM

here is my report
thanks in advance

ComboFix 11-05-07.03 - Vantage Garage Doors 05/08/2011 9:23.2.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2942.1984 [GMT -7:00]
Running from: c:\users\Vantage Garage Doors\Desktop\ComboFix.exe
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoogleCrashHandler.exe
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoogleUpdate.exe
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdate.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoopdateBho.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ar.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_bg.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_bn.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ca.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_cs.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_da.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_de.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_el.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_en-GB.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_en.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_es-419.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_es.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_et.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fa.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fil.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_gu.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hu.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_id.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_is.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_it.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_iw.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ja.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_kn.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ko.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_lt.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_lv.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ml.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_mr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ms.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_nl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_no.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_or.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pt-BR.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pt-PT.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ro.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ru.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sk.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sv.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ta.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_te.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_th.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_tr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_uk.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ur.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_vi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_zh-CN.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_zh-TW.dll
c:\users\VANTAG~1\AppData\Local\Temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\npGoogleOneClick8.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoogleCrashHandler.exe
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoogleUpdate.exe
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdate.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoopdateBho.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ar.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_bg.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_bn.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ca.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_cs.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_da.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_de.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_el.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_en-GB.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_en.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_es-419.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_es.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_et.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fa.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fil.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_gu.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hu.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_id.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_is.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_it.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_iw.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ja.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_kn.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ko.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_lt.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_lv.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ml.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_mr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ms.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_nl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_no.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_or.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pt-BR.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pt-PT.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ro.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ru.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sk.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sl.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sv.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ta.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_te.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_th.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_tr.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_uk.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ur.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_vi.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_zh-CN.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_zh-TW.dll
c:\users\VANTAG~1\AppData\Local\Temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\npGoogleOneClick8.dll
c:\users\VANTAG~1\AppData\Local\Temp\{5AABA809-689B-4196-ABF5-7466291F1586}\{F0B2D11F-E4D9-4C17-A195-B8BADEAE9C40}\difxapi.dll
c:\users\VANTAG~1\AppData\Local\Temp\11021725-00000938-89p5nvahmy\tmp3939.tmp
c:\users\VANTAG~1\AppData\Local\Temp\6EF8.dir\InstallFlashPlayer.exe
c:\users\VANTAG~1\AppData\Local\Temp\nsz3C46.tmp.exe
c:\users\VANTAG~1\AppData\Local\Temp\SetupDataMngr_jZip.exe
c:\users\VANTAG~1\AppData\Local\Temp\srmnwaxcoe.exe
c:\users\VANTAG~1\AppData\Local\Temp\xcernasomw.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoogleCrashHandler.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoogleUpdate.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdate.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\GoopdateBho.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ar.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_bg.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_bn.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ca.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_cs.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_da.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_de.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_el.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_en-GB.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_en.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_es-419.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_es.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_et.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fa.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fil.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_fr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_gu.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_hu.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_id.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_is.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_it.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_iw.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ja.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_kn.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ko.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_lt.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_lv.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ml.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_mr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ms.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_nl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_no.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_or.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pt-BR.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_pt-PT.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ro.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ru.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sk.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_sv.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ta.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_te.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_th.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_tr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_uk.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_ur.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_vi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_zh-CN.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\goopdateres_zh-TW.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{15129C0E-4894-42A3-BEB2-37062BD97EBF}\npGoogleOneClick8.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoogleCrashHandler.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoogleUpdate.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdate.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\GoopdateBho.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ar.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_bg.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_bn.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ca.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_cs.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_da.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_de.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_el.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_en-GB.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_en.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_es-419.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_es.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_et.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fa.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fil.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_fr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_gu.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_hu.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_id.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_is.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_it.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_iw.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ja.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_kn.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ko.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_lt.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_lv.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ml.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_mr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ms.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_nl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_no.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_or.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pt-BR.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_pt-PT.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ro.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ru.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sk.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sl.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_sv.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ta.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_te.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_th.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_tr.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_uk.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_ur.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_vi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_zh-CN.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\goopdateres_zh-TW.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{4B1D8BB2-645C-4378-AC31-D45137ED05B8}\npGoogleOneClick8.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\{5AABA809-689B-4196-ABF5-7466291F1586}\{F0B2D11F-E4D9-4C17-A195-B8BADEAE9C40}\difxapi.dll
c:\users\Vantage Garage Doors\AppData\Local\temp\11021725-00000938-89p5nvahmy\tmp3939.tmp
c:\users\Vantage Garage Doors\AppData\Local\temp\6EF8.dir\InstallFlashPlayer.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\nsz3C46.tmp.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\SetupDataMngr_jZip.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\srmnwaxcoe.exe
c:\users\Vantage Garage Doors\AppData\Local\temp\xcernasomw.exe
c:\users\Vantage Garage Doors\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Security Tool.lnk
c:\windows\system32\config\mcckmplayervod.ini
c:\windows\system32\dlumd10.dll
c:\windows\system32\dlumd11.dll
c:\windows\system32\dlumd9.dll
.
.
((((((((((((((((((((((((( Files Created from 2011-04-08 to 2011-05-08 )))))))))))))))))))))))))))))))
.
.
2011-05-08 16:28 . 2011-05-08 16:28 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-05-08 16:28 . 2011-05-08 16:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-04 03:01 . 2011-05-04 03:01 -------- d-----w- c:\users\Vantage Garage Doors\AppData\Roaming\TightVNC
2011-05-03 14:42 . 2011-05-03 14:43 -------- d-----w- c:\program files\jZip
2011-05-03 04:31 . 2011-05-03 04:31 -------- d-----w- c:\program files\TightVNC
2011-05-03 04:30 . 2011-05-03 04:30 -------- d-----w- c:\program files\Wyse
2011-05-03 04:29 . 2011-05-03 04:29 -------- d-----w- c:\users\Vantage Garage Doors\AppData\Local\Downloaded Installations
2011-05-02 18:07 . 2011-04-10 20:07 182896 ----a-w- c:\windows\system32\drivers\dlkmd.sys
2011-05-02 18:07 . 2011-04-10 20:07 14448 ----a-w- c:\windows\system32\drivers\dlkmdldr.sys
2011-05-02 18:06 . 2011-05-02 18:06 -------- d-----w- c:\program files\DisplayLink iPad Software
2011-05-02 18:04 . 2011-05-02 18:04 -------- d-----w- c:\program files\DisplayLink Core Software
2011-05-02 17:15 . 2011-05-02 17:15 -------- d-----w- c:\program files\Safari
2011-05-02 17:06 . 2011-05-02 17:06 -------- d-----w- c:\program files\iPod
2011-05-02 17:06 . 2011-05-02 17:07 -------- d-----w- c:\program files\iTunes
2011-05-02 17:03 . 2011-05-02 17:03 -------- d-----w- c:\program files\Bonjour
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2011-05-02 17:00 . 2011-05-02 17:00 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2011-05-02 16:59 . 2011-05-02 17:00 -------- d-----w- c:\program files\QuickTime
2011-04-27 14:37 . 2011-03-03 15:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll
2011-04-27 14:37 . 2011-03-03 13:35 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll
2011-04-27 14:37 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll
2011-04-14 10:39 . 2011-04-14 10:39 103864 ----a-w- c:\program files\Internet Explorer\Plugins\nppdf32.dll
2011-04-10 20:07 . 2011-04-10 20:07 1070952 ----a-w- c:\windows\system32\dlumd64.dll
2011-04-10 20:06 . 2011-04-10 20:06 615784 ----a-w- c:\windows\system32\dlumd32.dll
2011-04-10 20:06 . 2011-04-10 20:06 107880 ----a-w- c:\windows\system32\DLTmmB.dll
2011-04-10 20:06 . 2011-04-10 20:06 103784 ----a-w- c:\windows\system32\ManageTMMLifeTime.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-06 23:20 . 2011-04-06 23:20 91424 ----a-w- c:\windows\system32\dnssd.dll
2011-04-06 23:20 . 2011-04-06 23:20 75040 ----a-w- c:\windows\system32\jdns_sd.dll
2011-04-06 23:20 . 2011-04-06 23:20 197920 ----a-w- c:\windows\system32\dnssdX.dll
2011-04-06 23:20 . 2011-04-06 23:20 107808 ----a-w- c:\windows\system32\dns-sd.exe
2011-03-15 04:05 . 2011-04-01 18:19 6792528 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{22D60E5F-6F1F-45A9-8706-6B2F7CAEB7A1}\mpengine.dll
2011-03-03 15:40 . 2011-04-27 14:37 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2011-03-03 15:40 . 2011-04-27 14:37 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2011-03-03 15:40 . 2011-04-27 14:37 542720 ----a-w- c:\windows\apppatch\AcLayers.dll
2011-03-03 15:40 . 2011-04-27 14:37 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll
2011-02-22 14:13 . 2011-03-23 14:47 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-02-22 13:33 . 2011-03-23 14:47 1068544 ----a-w- c:\windows\system32\DWrite.dll
2011-02-22 13:33 . 2011-03-23 14:47 797696 ----a-w- c:\windows\system32\FntCache.dll
2011-02-18 23:36 . 2011-02-18 23:36 41984 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2011-02-18 23:36 . 2011-02-18 23:36 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"cdloader"="c:\users\Vantage Garage Doors\AppData\Roaming\mjusbsp\cdloader2.exe" [2010-02-26 50520]
"fyrb"="c:\users\Vantage Garage Doors\AppData\Roaming\netmsg6.dll" [2010-12-28 52224]
"NSYOE"="c:\users\Vantage Garage Doors\AppData\Roaming\msexch40T.dll" [2010-12-28 52224]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UpdatePSTShortCut"="c:\program files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" [2008-09-11 210216]
"UpdatePDIRShortCut"="c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"UpdateP2GoShortCut"="c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-06-14 210216]
"TSMAgent"="c:\program files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe" [2008-10-18 1152296]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"PPort11reminder"="c:\program files\ScanSoft\PaperPort\Ereg\Ereg.exe" [2007-08-31 328992]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-09-27 92704]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-09-27 13539872]
"KBD"="c:\program files\Hewlett-Packard\KBD\KbdStub.EXE" [2008-07-21 12288]
"IndexSearch"="c:\program files\ScanSoft\PaperPort\IndexSearch.exe" [2007-10-12 46368]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-09 54840]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-10-09 75008]
"DVDAgent"="c:\program files\Hewlett-Packard\Media\DVD\DVDAgent.exe" [2008-12-01 1148200]
"ControlCenter3"="c:\program files\Brother\ControlCenter3\brctrcen.exe" [2007-10-30 77824]
"CLMLServer for HP TouchSmart"="c:\program files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe" [2008-10-18 189736]
"BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2007-11-06 741376]
"PAC7302_Monitor"="c:\windows\PixArt\PAC7302\Monitor.exe" [2007-12-10 323584]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2008-01-21 215552]
"Intuit SyncManager"="c:\program files\Common Files\Intuit\Sync\IntuitSyncManager.exe" [2009-12-22 1092872]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-30 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-14 421160]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-04-20 58656]
"PocketCloud Location"="c:\program files\Wyse\PocketCloud Windows Companion\WyseBrowser.exe" [2011-03-25 399872]
"tvncontrol"="c:\program files\TightVNC\tvnserver.exe" [2010-07-08 815704]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableUIPI"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PictureMover.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\PictureMover.lnk
backup=c:\windows\pss\PictureMover.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuickBooks Update Agent.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk
backup=c:\windows\pss\QuickBooks Update Agent.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Intuit SyncManager]
2009-12-22 13:47 1092872 ----a-w- c:\program files\Common Files\Intuit\Sync\IntuitSyncManager.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
2007-10-12 02:03 29984 ----a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-11-30 00:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartMenu]
2008-09-23 19:03 912688 ----a-w- c:\program files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 16:03 210472 ----a-w- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile-based device management]
2008-01-21 02:23 215552 ----a-w- c:\windows\WindowsMobile\wmdSync.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 GRemoteBus;GRemote virtual joystick Bus Enumerator;c:\windows\system32\DRIVERS\GRemoteBus.sys [2009-08-05 23368]
R3 GRemoteJoy;GRemote virtual joystick Device Driver;c:\windows\system32\DRIVERS\GRemoteJoy.sys [2009-08-05 39112]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
R3 WUSB54GSCv2.NTx86;Compact Wireless-G USB Network Adapter with SpeedBooster Service;c:\windows\system32\DRIVERS\WUSB54GSCV2_X86.sys [2008-01-08 238072]
S0 dlkmdldr;dlkmdldr;c:\windows\system32\drivers\dlkmdldr.sys [2011-04-10 14448]
S2 {55662437-DA8C-40c0-AADA-2C816A897A49};Power Control [2009/05/09 10:20];c:\program files\Hewlett-Packard\Media\DVD\000.fcl [2008-10-21 23:42 87536]
S2 DisplayLinkService;DisplayLinkManager;c:\program files\DisplayLink Core Software\DisplayLinkManager.exe [2011-04-10 5240168]
S2 NovacomD;Palm Novacom;c:\program files\Palm, Inc\novacom\x86\novacomd.exe [2010-01-12 33792]
S2 tvnserver;TightVNC Server;c:\program files\TightVNC\tvnserver.exe [2010-07-08 815704]
S2 WysePocketCloud;Wyse PocketCloud;c:\program files\Wyse\PocketCloud Windows Companion\PocketCloudService.exe [2011-03-25 83968]
S3 dlkmd;dlkmd;c:\windows\system32\drivers\dlkmd.sys [2011-04-10 182896]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2011-05-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1559103655-3629663591-1659472153-1000Core.job
- c:\users\Vantage Garage Doors\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-20 00:29]
.
2011-05-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1559103655-3629663591-1659472153-1000UA.job
- c:\users\Vantage Garage Doors\AppData\Local\Google\Update\GoogleUpdate.exe [2009-05-20 00:29]
.
2011-03-25 c:\windows\Tasks\PCDRScheduledMaintenance.job
- c:\program files\PC-Doctor for Windows\pcdr5cuiw32.exe [2008-09-10 14:43]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://maps.google.com/maps?hl=en&tab=wl
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cndt
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
DPF: {5C709EEC-DDE1-4738-8E57-7564E2637891} - hxxps://merchantaccount.quickbooks.com/sync/QBMASSyncCom1_2009.cab
DPF: {788539E8-002D-4E59-9089-40B694A99C9A} - hxxps://merchantaccount.quickbooks.com/sync/QBMASSyncCom2_2008.cab
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-05-08 09:29
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{55662437-DA8C-40c0-AADA-2C816A897A49}]
"ImagePath"="\??\c:\program files\Hewlett-Packard\Media\DVD\000.fcl"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2011-05-08 09:30:38
ComboFix-quarantined-files.txt 2011-05-08 16:30
ComboFix2.txt 2010-08-04 22:20
.
Pre-Run: 174,356,217,856 bytes free
Post-Run: 174,549,131,264 bytes free
.
- - End Of File - - A5B852869B5665C295C8C746A4CD40F6

BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:04:19 PM

Posted 17 May 2011 - 07:22 PM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#3 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:04:19 PM

Posted 23 May 2011 - 06:01 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users