Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

How to remove a Browser Redirect bug


  • This topic is locked This topic is locked
2 replies to this topic

#1 ComputerVictim

ComputerVictim

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:12:59 AM

Posted 13 May 2011 - 02:02 PM

My searches in IE and Firefox are redirected.
DDS.txt is pasted below
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by John F at 13:36:09.73 on Fri 05/13/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.478.62 [GMT -4:00]
.
AV: Spyware Doctor with AntiVirus *Enabled/Updated* {D3C23B96-C9DC-477F-8EF1-69AF17A6EFF6}
.
============== Running Processes ===============
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\PC Tools Security\BDT\BDTUpdateService.exe
C:\Program Files\Citrix\GoToAssist Express Customer\274\g2ax_service.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Real\RealPlayer\update\realsched.exe
C:\Program Files\PC Tools Security\pctsGui.exe
C:\Program Files\PC Tools Security\BDT\FGuard.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
C:\Program Files\Citrix\GoToAssist Express Customer\274\g2ax_comm_customer.exe
C:\Program Files\Citrix\GoToAssist Express Customer\274\g2ax_system_customer.exe
C:\Program Files\Citrix\GoToAssist Express Customer\274\g2ax_user_customer.exe
C:\Program Files\Common Files\Silver Bullet Technology\Logging\Logging Service\SBTLogService.exe
C:\Program Files\PC Tools Security\pctsAuxs.exe
C:\Program Files\PC Tools Security\pctsSvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\Intuit\QuickBooks Pro\qbw32.exe
C:\Program Files\Common Files\Intuit\QuickBooks\axlbridge.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Intuit\QUICKB~1\QBDBMgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\InstallShield\UpdateService\agent.exe
C:\Documents and Settings\John F\Desktop\dds.scr
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: PC Tools Browser Guard BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - c:\program files\pc tools security\bdt\PCTBrowserDefender.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} - c:\program files\pc tools security\bdt\PCTBrowserDefender.dll
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [ISTray] "c:\program files\pc tools security\pctsGui.exe" /hideGUI
mRun: [PCTools FGuard] c:\program files\pc tools security\bdt\FGuard.exe
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\2.0.181\SSScheduler.exe
IE: {ECDCA4E5-DE44-4b94-8F46-CD0D5B4895FC} - c:\program files\amicus50\research\GetTags.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll
Trusted Zone: charlestoncounty.org\imgweb
Trusted Zone: secureinternetbank.com\web3
DPF: FirstViewer - hxxp://www.rod.dorchestercounty.net/alchemyweb/Components/FirstVwr.CAB
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://www.apple.com/qtactivex/qtplugin.cab
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photos.walmart.com/WalmartActivia.cab
DPF: {4592C0F5-3382-44C6-9F79-BEA2CCBDA2EA} - hxxp://imgweb.charlestoncounty.org/appnet/activex/OBXWebSelect.cab
DPF: {8285080A-3FAF-41B1-B7BD-933EE724B650} - hxxp://imgweb.charlestoncounty.org/appnet/activex/OBXSelect.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {93D532DD-85FC-4A92-8254-8DB5437D8690} - hxxp://imgweb.charlestoncounty.org/AppNet/activex/OBXPopup.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab
DPF: {D208D580-5E06-4C0A-8FC3-C179FEDB5B0E} - hxxps://web3.secureinternetbank.com/WebCaptureWeb/SCBT/setupZiptrc.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: GoToAssist Express Customer - c:\program files\citrix\gotoassist express customer\274\g2ax_winlogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
SecurityProviders:
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\johnf~1\applic~1\mozilla\firefox\profiles\5k6y5rn2.default\
FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordext.dll
FF - component: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordlegacyext.dll
FF - component: c:\documents and settings\john f\application data\mozilla\firefox\profiles\5k6y5rn2.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - component: c:\documents and settings\john f\application data\mozilla\firefox\profiles\5k6y5rn2.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll
FF - component: c:\program files\pc tools security\bdt\firefox\platform\winnt_x86-msvc\components\libheuristic.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\program files\common files\research in motion\bbwebsllauncher\NPWebSLLauncher.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.53\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - c:\program files\mozilla firefox\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Google Toolbar for Firefox: {3112ca9c-de6d-4884-a869-9855de68056c} - %profile%\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\firefox\Ext
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: Browser Defender Toolbar: {cb84136f-9c44-433a-9048-c5cd9df1dc16} - c:\program files\pc tools security\bdt\Firefox
.
============= SERVICES / DRIVERS ===============
.
R0 atiide;atiide;c:\windows\system32\drivers\atiide.sys [2007-3-9 3456]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2011-4-28 263888]
R0 pctDS;PC Tools Data Store;c:\windows\system32\drivers\pctDS.sys [2011-4-28 338880]
R0 pctEFA;PC Tools Extended File Attributes;c:\windows\system32\drivers\pctEFA.sys [2011-4-28 656320]
R1 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [2011-4-28 251560]
R1 PCTSD;PC Tools Spyware Doctor Driver;c:\windows\system32\drivers\PCTSD.sys [2011-4-28 233976]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\pc tools security\bdt\BDTUpdateService.exe [2011-4-28 337872]
R2 GoToAssist Express Customer;GoToAssist Express Customer;c:\program files\citrix\gotoassist express customer\274\g2ax_service.exe [2011-4-29 161144]
R2 SBT Log;SBT Log;c:\program files\common files\silver bullet technology\logging\logging service\SBTLogService.exe [2008-2-6 53248]
R2 sdAuxService;PC Tools Auxiliary Service;c:\program files\pc tools security\pctsAuxs.exe [2011-4-28 371472]
R2 sdCoreService;PC Tools Security Service;c:\program files\pc tools security\pctsSvc.exe [2011-4-28 1117144]
R3 pctplsg;pctplsg;c:\windows\system32\drivers\pctplsg.sys [2011-4-28 70536]
S1 MpKsl0002f762;MpKsl0002f762;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{104220cd-72ec-472b-a789-2e946b58e40d}\mpksl0002f762.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{104220cd-72ec-472b-a789-2e946b58e40d}\MpKsl0002f762.sys [?]
S1 MpKsl02727677;MpKsl02727677;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\mpksl02727677.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\MpKsl02727677.sys [?]
S1 MpKsl0423780b;MpKsl0423780b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\mpksl0423780b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\MpKsl0423780b.sys [?]
S1 MpKsl0594e6ed;MpKsl0594e6ed;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1e7fffca-818a-4d0e-b7cd-529cc821b83c}\mpksl0594e6ed.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1e7fffca-818a-4d0e-b7cd-529cc821b83c}\MpKsl0594e6ed.sys [?]
S1 MpKsl0af995d5;MpKsl0af995d5;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\mpksl0af995d5.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\MpKsl0af995d5.sys [?]
S1 MpKsl0d748745;MpKsl0d748745;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\mpksl0d748745.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\MpKsl0d748745.sys [?]
S1 MpKsl10a87112;MpKsl10a87112;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{10dc791a-800f-4d7a-8d85-a0739e43980f}\mpksl10a87112.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{10dc791a-800f-4d7a-8d85-a0739e43980f}\MpKsl10a87112.sys [?]
S1 MpKsl14fe717d;MpKsl14fe717d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{9cf0cc3a-2975-4dcc-8094-0982e98f1acb}\mpksl14fe717d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{9cf0cc3a-2975-4dcc-8094-0982e98f1acb}\MpKsl14fe717d.sys [?]
S1 MpKsl1890a67f;MpKsl1890a67f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\mpksl1890a67f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\MpKsl1890a67f.sys [?]
S1 MpKsl1973d8c2;MpKsl1973d8c2;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d0286d2c-fca9-4b91-8816-73fc3308f87a}\mpksl1973d8c2.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d0286d2c-fca9-4b91-8816-73fc3308f87a}\MpKsl1973d8c2.sys [?]
S1 MpKsl1ae2fecc;MpKsl1ae2fecc;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a34fa1a0-0ea0-4522-8d14-742c65fa6ba6}\mpksl1ae2fecc.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a34fa1a0-0ea0-4522-8d14-742c65fa6ba6}\MpKsl1ae2fecc.sys [?]
S1 MpKsl1b1eb373;MpKsl1b1eb373;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\mpksl1b1eb373.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\MpKsl1b1eb373.sys [?]
S1 MpKsl20265591;MpKsl20265591;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a34fa1a0-0ea0-4522-8d14-742c65fa6ba6}\mpksl20265591.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a34fa1a0-0ea0-4522-8d14-742c65fa6ba6}\MpKsl20265591.sys [?]
S1 MpKsl22c34cf6;MpKsl22c34cf6;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5e33703d-c8e0-4d8c-a79d-15350665b839}\mpksl22c34cf6.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5e33703d-c8e0-4d8c-a79d-15350665b839}\MpKsl22c34cf6.sys [?]
S1 MpKsl2bef5865;MpKsl2bef5865;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\mpksl2bef5865.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\MpKsl2bef5865.sys [?]
S1 MpKsl2cf35573;MpKsl2cf35573;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\mpksl2cf35573.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\MpKsl2cf35573.sys [?]
S1 MpKsl37c35caa;MpKsl37c35caa;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\mpksl37c35caa.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\MpKsl37c35caa.sys [?]
S1 MpKsl39a8c681;MpKsl39a8c681;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\mpksl39a8c681.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\MpKsl39a8c681.sys [?]
S1 MpKsl3ca3ad4b;MpKsl3ca3ad4b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpksl3ca3ad4b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKsl3ca3ad4b.sys [?]
S1 MpKsl3f2793fc;MpKsl3f2793fc;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\mpksl3f2793fc.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\MpKsl3f2793fc.sys [?]
S1 MpKsl474f9059;MpKsl474f9059;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{935ecd16-9135-4331-856c-0009890e700f}\mpksl474f9059.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{935ecd16-9135-4331-856c-0009890e700f}\MpKsl474f9059.sys [?]
S1 MpKsl4f57a904;MpKsl4f57a904;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\mpksl4f57a904.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\MpKsl4f57a904.sys [?]
S1 MpKsl547847bd;MpKsl547847bd;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\mpksl547847bd.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\MpKsl547847bd.sys [?]
S1 MpKsl572d4f0f;MpKsl572d4f0f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{30ff9fad-dee1-4d4a-bd1d-7d7022e0846d}\mpksl572d4f0f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{30ff9fad-dee1-4d4a-bd1d-7d7022e0846d}\MpKsl572d4f0f.sys [?]
S1 MpKsl5789943b;MpKsl5789943b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpksl5789943b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKsl5789943b.sys [?]
S1 MpKsl5db42df1;MpKsl5db42df1;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{885ee561-82d5-40c3-b735-f3a1d84db0c5}\mpksl5db42df1.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{885ee561-82d5-40c3-b735-f3a1d84db0c5}\MpKsl5db42df1.sys [?]
S1 MpKsl5fcab9f4;MpKsl5fcab9f4;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\mpksl5fcab9f4.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\MpKsl5fcab9f4.sys [?]
S1 MpKsl6a8d52c9;MpKsl6a8d52c9;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{064f4dbc-0b4c-46ac-8b90-235ad2abee75}\mpksl6a8d52c9.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{064f4dbc-0b4c-46ac-8b90-235ad2abee75}\MpKsl6a8d52c9.sys [?]
S1 MpKsl6f02ccd0;MpKsl6f02ccd0;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7b1caff3-ce06-41aa-95b9-25bba0be1a80}\mpksl6f02ccd0.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7b1caff3-ce06-41aa-95b9-25bba0be1a80}\MpKsl6f02ccd0.sys [?]
S1 MpKsl72229a90;MpKsl72229a90;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\mpksl72229a90.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\MpKsl72229a90.sys [?]
S1 MpKsl7374aa70;MpKsl7374aa70;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\mpksl7374aa70.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\MpKsl7374aa70.sys [?]
S1 MpKsl7694390a;MpKsl7694390a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpksl7694390a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKsl7694390a.sys [?]
S1 MpKsl76a98639;MpKsl76a98639;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1f9d17d4-e97d-436a-ae44-97ff506066f1}\mpksl76a98639.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{1f9d17d4-e97d-436a-ae44-97ff506066f1}\MpKsl76a98639.sys [?]
S1 MpKsl77bf8e70;MpKsl77bf8e70;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{73f03e23-9568-4ef6-a1e9-c1720d164a33}\mpksl77bf8e70.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{73f03e23-9568-4ef6-a1e9-c1720d164a33}\MpKsl77bf8e70.sys [?]
S1 MpKsl7940673e;MpKsl7940673e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\mpksl7940673e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\MpKsl7940673e.sys [?]
S1 MpKsl7bff21a3;MpKsl7bff21a3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpksl7bff21a3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKsl7bff21a3.sys [?]
S1 MpKsl7d56bc7b;MpKsl7d56bc7b;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0c0c0d0f-8c02-40ec-b42b-454c23ae023d}\mpksl7d56bc7b.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{0c0c0d0f-8c02-40ec-b42b-454c23ae023d}\MpKsl7d56bc7b.sys [?]
S1 MpKsl821cb525;MpKsl821cb525;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\mpksl821cb525.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\MpKsl821cb525.sys [?]
S1 MpKsl822b3860;MpKsl822b3860;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b749e51a-1adb-4a3d-8756-2e9af7acf191}\mpksl822b3860.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b749e51a-1adb-4a3d-8756-2e9af7acf191}\MpKsl822b3860.sys [?]
S1 MpKsl8bc1ccc3;MpKsl8bc1ccc3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\mpksl8bc1ccc3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5db851ab-6ef4-4338-84e7-7289c73e0790}\MpKsl8bc1ccc3.sys [?]
S1 MpKsl92e15661;MpKsl92e15661;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\mpksl92e15661.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\MpKsl92e15661.sys [?]
S1 MpKsl96ca9908;MpKsl96ca9908;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\mpksl96ca9908.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\MpKsl96ca9908.sys [?]
S1 MpKsla0f51178;MpKsla0f51178;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5e33703d-c8e0-4d8c-a79d-15350665b839}\mpksla0f51178.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5e33703d-c8e0-4d8c-a79d-15350665b839}\MpKsla0f51178.sys [?]
S1 MpKsla1ed8993;MpKsla1ed8993;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\mpksla1ed8993.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\MpKsla1ed8993.sys [?]
S1 MpKsla2deb2e3;MpKsla2deb2e3;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\mpksla2deb2e3.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\MpKsla2deb2e3.sys [?]
S1 MpKslb0a40fef;MpKslb0a40fef;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\mpkslb0a40fef.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\MpKslb0a40fef.sys [?]
S1 MpKslb207d552;MpKslb207d552;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpkslb207d552.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKslb207d552.sys [?]
S1 MpKslb446dd97;MpKslb446dd97;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{935ecd16-9135-4331-856c-0009890e700f}\mpkslb446dd97.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{935ecd16-9135-4331-856c-0009890e700f}\MpKslb446dd97.sys [?]
S1 MpKslb67a6e0f;MpKslb67a6e0f;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{10dc791a-800f-4d7a-8d85-a0739e43980f}\mpkslb67a6e0f.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{10dc791a-800f-4d7a-8d85-a0739e43980f}\MpKslb67a6e0f.sys [?]
S1 MpKslb6e55e7e;MpKslb6e55e7e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\mpkslb6e55e7e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\MpKslb6e55e7e.sys [?]
S1 MpKslb7475036;MpKslb7475036;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7767139a-9598-4d78-9d80-82d485958422}\mpkslb7475036.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7767139a-9598-4d78-9d80-82d485958422}\MpKslb7475036.sys [?]
S1 MpKslb8e11d1d;MpKslb8e11d1d;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\mpkslb8e11d1d.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\MpKslb8e11d1d.sys [?]
S1 MpKslb90540a7;MpKslb90540a7;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\mpkslb90540a7.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d8375523-af11-4c50-b5a0-f0587d4da4ff}\MpKslb90540a7.sys [?]
S1 MpKslbc45c517;MpKslbc45c517;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b5d5d069-9c60-4e9b-89bf-cac0c109e457}\mpkslbc45c517.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b5d5d069-9c60-4e9b-89bf-cac0c109e457}\MpKslbc45c517.sys [?]
S1 MpKslbdf1bb50;MpKslbdf1bb50;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7767139a-9598-4d78-9d80-82d485958422}\mpkslbdf1bb50.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7767139a-9598-4d78-9d80-82d485958422}\MpKslbdf1bb50.sys [?]
S1 MpKslc416c90e;MpKslc416c90e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\mpkslc416c90e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f62b6175-3f84-400c-8e44-f833257eeeff}\MpKslc416c90e.sys [?]
S1 MpKslc726e541;MpKslc726e541;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\mpkslc726e541.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\MpKslc726e541.sys [?]
S1 MpKslc778bb85;MpKslc778bb85;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b749e51a-1adb-4a3d-8756-2e9af7acf191}\mpkslc778bb85.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{b749e51a-1adb-4a3d-8756-2e9af7acf191}\MpKslc778bb85.sys [?]
S1 MpKsld8d5f5fa;MpKsld8d5f5fa;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\mpksld8d5f5fa.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{8186bc32-429f-46f7-bb6a-29d135a50235}\MpKsld8d5f5fa.sys [?]
S1 MpKsld973022a;MpKsld973022a;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7d7d7062-b192-4fb1-b86a-1bd60d725334}\mpksld973022a.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{7d7d7062-b192-4fb1-b86a-1bd60d725334}\MpKsld973022a.sys [?]
S1 MpKsldd541e29;MpKsldd541e29;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\mpksldd541e29.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f002a33a-196d-45fa-9d61-f47ea5b771b6}\MpKsldd541e29.sys [?]
S1 MpKsle098c931;MpKsle098c931;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\mpksle098c931.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{d7178cab-3559-4dbf-ac85-62e461a7b91d}\MpKsle098c931.sys [?]
S1 MpKsle9469fa4;MpKsle9469fa4;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\mpksle9469fa4.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a1cf68a8-b9ec-42fe-bf2c-0f7682e5120a}\MpKsle9469fa4.sys [?]
S1 MpKsleed7e780;MpKsleed7e780;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5f4f52e1-695d-4fa2-875b-79704fe08bb6}\mpksleed7e780.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{5f4f52e1-695d-4fa2-875b-79704fe08bb6}\MpKsleed7e780.sys [?]
S1 MpKslf351c11c;MpKslf351c11c;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\mpkslf351c11c.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{066165fb-dee3-46c7-95f1-ab863ced85e9}\MpKslf351c11c.sys [?]
S1 MpKslf714d03e;MpKslf714d03e;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3d6f9e62-aef9-4a21-8c7b-4e9d092142e9}\mpkslf714d03e.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{3d6f9e62-aef9-4a21-8c7b-4e9d092142e9}\MpKslf714d03e.sys [?]
S1 MpKslf91a4739;MpKslf91a4739;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\mpkslf91a4739.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\MpKslf91a4739.sys [?]
S1 MpKslfb440820;MpKslfb440820;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\mpkslfb440820.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{f82ba7b8-8a4e-4157-9325-7db4a72be0f7}\MpKslfb440820.sys [?]
S1 MpKslfd27e1da;MpKslfd27e1da;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{be52c7a9-c4df-472b-8449-8a5ef1cc7cb9}\mpkslfd27e1da.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{be52c7a9-c4df-472b-8449-8a5ef1cc7cb9}\MpKslfd27e1da.sys [?]
S1 MpKslfd3a51d5;MpKslfd3a51d5;\??\c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\mpkslfd3a51d5.sys --> c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{91077e23-4cf0-44c5-8906-dcc303739c03}\MpKslfd3a51d5.sys [?]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-10-27 136176]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-10-27 136176]
S3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [2010-1-15 227232]
.
=============== Created Last 30 ================
.
2011-05-04 12:37:29 -------- d-----w- C:\ada840bbf6520d07b92ecec0bb02
2011-05-04 07:11:02 -------- d-----w- C:\473575f1797094d2bb5d0d1933b56b1d
2011-05-03 22:38:50 743936 ------w- c:\windows\system32\dllcache\helpsvc.exe
2011-05-03 22:35:17 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2011-05-03 20:01:05 98816 ----a-w- c:\windows\sed.exe
2011-05-03 20:01:05 89088 ----a-w- c:\windows\MBR.exe
2011-05-03 20:01:05 256512 ----a-w- c:\windows\PEV.exe
2011-05-03 20:01:05 161792 ----a-w- c:\windows\SWREG.exe
2011-04-29 20:31:36 -------- d-----w- c:\docume~1\johnf~1\locals~1\applic~1\Deployment
2011-04-28 17:12:38 767952 ----a-w- c:\windows\BDTSupport.dll
2011-04-28 17:12:38 149456 ----a-w- c:\windows\SGDetectionTool.dll
2011-04-28 17:12:37 2074576 ----a-w- c:\windows\PCTBDCore.dll
2011-04-28 17:12:37 1533904 ----a-w- c:\windows\PCTBDRes.dll
2011-04-28 17:07:24 656320 ----a-w- c:\windows\system32\drivers\pctEFA.sys
2011-04-28 17:07:24 338880 ----a-w- c:\windows\system32\drivers\pctDS.sys
2011-04-28 17:07:22 251560 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2011-04-28 17:07:11 263888 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2011-04-28 17:07:11 160576 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2011-04-28 17:06:58 233976 ----a-w- c:\windows\system32\drivers\PCTSD.sys
2011-04-28 17:06:50 70536 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2011-04-28 17:06:26 -------- d-----w- c:\program files\PC Tools Security
2011-04-28 17:06:26 -------- d-----w- c:\program files\common files\PC Tools
2011-04-28 12:39:43 -------- d-----w- c:\windows\system32\wbem\repository\FS
2011-04-28 12:39:43 -------- d-----w- c:\windows\system32\wbem\Repository
2011-04-14 07:39:02 103864 ----a-w- c:\program files\mozilla firefox\plugins\nppdf32.dll
2011-04-14 07:39:02 103864 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find3M ====================
.
2011-01-28 13:11:10 6275960 ----a-w- c:\program files\Silverlight.exe
2010-07-07 13:46:16 96768824 ----a-w- c:\program files\iTunesSetup.exe
2010-06-04 16:56:45 9120817 ----a-w- c:\program files\videoconverter.exe
2010-04-23 18:41:10 38874608 ----a-w- c:\program files\GoogleSketchUpWEN.exe
2010-03-03 18:55:14 891248 ----a-w- c:\program files\avg_free_stb_all_9_40_cnet.exe
2008-01-08 17:09:59 49943864 ----a-w- c:\program files\iTunesSetup731.exe
2007-04-16 15:49:10 19994184 ----a-w- c:\program files\QuickTimeInstaller.exe
2007-03-13 19:40:30 6820552 ----a-w- c:\program files\FirefoxGoogleToolbarSetup.exe
.
============= FINISH: 13:38:30.37 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:05:59 AM

Posted 13 May 2011 - 04:24 PM

Good evening. :)

Download TDSSKiller.zip from Kaspersky from here and save it to your Desktop.

  • You will then need to extract the file(s) from the zipped folder.
  • To do this: Right-click on the zipped folder and from the menu that appears, click on Extract All...
    In the Extraction Wizard window that opens, click on Next> and in the next window that appears, click on Next> again.
    In the final window, click on Finish

  • Please close all open programs as this may result in a reboot being necessary.
  • Double click TDSSKiller.exe to begin.
  • Click Start scan and allow the tool to do just that.
  • One the scan has completed, if the tool has identified anything allow it to carry out it's default action(s) - you'll need to click Continue where appropriate.
  • Finally, if it prompts you to reboot your machine, please click Reboot Now and ensure that your machine does so.
  • If the scan finds nothing, please click the Report button and let me have a copy of the text file that opens.
  • If you reboot your machine, the log, which i'd like to see, will be located at the root of you hard drive as C:\TDSSKiller.Version_Date_Time_log.txt.
    Please check that you get the one with the right date and time. :)

So long, and thanks for all the fish.

 

 


#3 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:05:59 AM

Posted 19 May 2011 - 02:00 PM

As there has been no response for five days this thread is now closed.

So long, and thanks for all the fish.

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users