Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

unknown infection(s) can't run any antivirus nor firefox


  • This topic is locked This topic is locked
4 replies to this topic

#1 Dr0g0r

Dr0g0r

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:14 AM

Posted 17 August 2011 - 07:10 PM

I tried a lot of Antivirus to install, some went all the way up to the scnanning where they did not act, most never even installed, i tried many versions of every antivirus i fell on, but i never could perform a system scan which would permit me to clean and use firefox, or any internet related program. I had to manually "destroy" an AVG version that didnt want to uninstall at some point. Tell me what more information you would need. Thank You! Ro

.
DDS (Ver_2011-06-23.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_26
Run by Ro at 17:38:37 on 2011-08-17
Microsoft Windows XP Professionnel 5.1.2600.3.1252.2.1036.18.2038.1395 [GMT -4:00]
.
AV: AVG Internet Security 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
AV: Kaspersky Internet Security *Disabled/Outdated* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *Disabled*
FW: AVG Firewall *Enabled*
.
============== Running Processes ===============
.
D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\3470248027:2755078193.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\igfxtray.exe
D:\WINDOWS\system32\hkcmd.exe
D:\WINDOWS\system32\igfxpers.exe
D:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
D:\WINDOWS\sm56hlpr.exe
D:\WINDOWS\stsystra.exe
D:\WINDOWS\system32\igfxsrvc.exe
D:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
D:\WINDOWS\system32\ctfmon.exe
D:\WINDOWS\system32\rundll32.exe
svchost.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
D:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
D:\WINDOWS\system32\wbem\wmiapsrv.exe
D:\WINDOWS\System32\svchost.exe -k HTTPFilter
D:\Program Files\uTorrent\uTorrent.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2011\klwtblfs.exe
D:\Program Files\Internet Explorer\IEXPLORE.EXE
D:\Program Files\Internet Explorer\IEXPLORE.EXE
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uURLSearchHooks: Yahoo! Toolbar avec bloqueur de fenÍtres pop-up: {ef99bd32-c1fb-11d2-892f-0090271d4f88} -
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} -
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - d:\program files\kaspersky lab\kaspersky internet security 2011\ievkbd.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Programme d'aide de l'Assistant de connexion Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - d:\program files\fichiers communs\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - d:\program files\kaspersky lab\kaspersky internet security 2011\klwtbbho.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "d:\program files\fichiers communs\ahead\lib\NMBgMonitor.exe"
uRun: [ctfmon.exe] d:\windows\system32\ctfmon.exe
uRun: [QuickMainnt5] rundll32.exe "d:\documents and settings\ro\local settings\application data\mfccrtvdm\QuickMainnt5.dll",ieapiWan smpMapnet
uRun: [Pando Media Booster] d:\program files\pando networks\media booster\PMB.exe
mRun: [IgfxTray] d:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] d:\windows\system32\hkcmd.exe
mRun: [Persistence] d:\windows\system32\igfxpers.exe
mRun: [SunJavaUpdateSched] "d:\program files\fichiers communs\java\java update\jusched.exe"
mRun: [SMSERIAL] sm56hlpr.exe
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [NeroFilterCheck] d:\program files\fichiers communs\ahead\lib\NeroCheck.exe
mRun: [AVP] "d:\program files\kaspersky lab\kaspersky internet security 2011\avp.exe"
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [CTFMON.EXE] d:\windows\system32\CTFMON.EXE
dRunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - d:\program files\kaspersky lab\kaspersky internet security 2011\klwtbbho.dll
IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - d:\program files\kaspersky lab\kaspersky internet security 2011\klwtbbho.dll
LSP: mswsock.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0015-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_15-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
TCP: DhcpNameServer = 142.169.1.16 199.84.242.22
TCP: Interfaces\{753FB91E-FFD0-44A9-80B7-8825CE131F21} : DhcpNameServer = 142.169.1.16 199.84.242.22
Notify: igfxcui - igfxdev.dll
Notify: klogon - d:\windows\system32\klogon.dll
AppInit_DLLs: d:\progra~1\kasper~1\kasper~1\mzvkbd3.dll,d:\progra~1\kasper~1\kasper~1\kloehk.dll
Hosts: 127.0.0.1 www.spywareinfo.com
.
================= FIREFOX ===================
.
FF - ProfilePath - d:\documents and settings\ro\application data\mozilla\firefox\profiles\gk4a3uvq.default\
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 60808
FF - prefs.js: network.proxy.type - 1
FF - plugin: d:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;d:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;d:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592]
R0 KL1;Kl1;d:\windows\system32\drivers\kl1.sys [2010-5-7 132184]
R1 56903246;56903246;d:\windows\system32\drivers\56903246.sys [2011-8-17 133208]
R1 72433385;72433385;d:\windows\system32\drivers\72433385.sys [2011-8-17 133208]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;d:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34896]
R1 Avgtdix;AVG TDI Driver;d:\windows\system32\drivers\avgtdix.sys [2010-9-7 297168]
R1 KLIF;Kaspersky Lab Driver;d:\windows\system32\drivers\klif.sys [2011-8-17 477784]
R3 Avgfwdx;Avgfwdx;d:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
R3 AVGIDSDriver;AVGIDSDriver;d:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 134480]
R3 AVGIDSFilter;AVGIDSFilter;d:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 24144]
R3 AVGIDSShim;AVGIDSShim;d:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 27216]
R3 klmouflt;Kaspersky Lab KLMOUFLT;d:\windows\system32\drivers\klmouflt.sys [2009-11-2 19472]
S1 31985439;31985439;d:\windows\system32\drivers\31985439.sys [2011-8-17 133208]
S1 82039934;82039934;d:\windows\system32\drivers\82039934.sys [2011-8-17 133208]
S1 99501082;99501082;d:\windows\system32\drivers\99501082.sys [2011-8-17 133208]
S1 Avgldx86;AVG AVI Loader Driver;d:\windows\system32\drivers\avgldx86.sys [2010-9-7 248656]
S1 kl2;Kl2;d:\windows\system32\drivers\kl2.sys [2010-5-7 132184]
S2 avgfws;Pare-feu AVG;"d:\program files\avg\avg10\avgfws.exe" --> d:\program files\avg\avg10\avgfws.exe [?]
S2 AVGIDSAgent;AVGIDSAgent;"d:\program files\avg\avg10\identity protection\agent\bin\avgidsagent.exe" --> d:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [?]
S2 avgwd;AVG WatchDog;"d:\program files\avg\avg10\avgwdsvc.exe" --> d:\program files\avg\avg10\avgwdsvc.exe [?]
S2 AVP;Kaspersky Anti-Virus Service;d:\program files\kaspersky lab\kaspersky internet security 2011\avp.exe [2010-5-7 344736]
S3 Avgfwfd;AVG network filter service;d:\windows\system32\drivers\avgfwdx.sys [2010-7-12 30432]
S3 klim5;Kaspersky Anti-Virus NDIS Filter;d:\windows\system32\drivers\klim5.sys --> d:\windows\system32\drivers\klim5.sys [?]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;d:\windows\system32\drivers\rt2870.sys [2011-8-11 517632]
.
=============== Created Last 30 ================
.
2011-08-17 21:04:10 388096 ----a-r- d:\documents and settings\ro\application data\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-08-17 21:04:10 -------- d-----w- d:\program files\Trend Micro
2011-08-17 20:50:33 133208 ----a-w- d:\windows\system32\drivers\99501082.sys
2011-08-17 20:33:43 133208 ----a-w- d:\windows\system32\drivers\82039934.sys
2011-08-17 20:20:25 133208 ----a-w- d:\windows\system32\drivers\31985439.sys
2011-08-17 20:18:48 133208 ----a-w- d:\windows\system32\drivers\56903246.sys
2011-08-17 20:15:23 133208 ----a-w- d:\windows\system32\drivers\72433385.sys
2011-08-17 19:54:18 150200 ----a-w- d:\program files\mozilla firefox\extensions\linkfilter@kaspersky.ru\components\kavlinkfilter.dll
2011-08-17 19:54:17 109240 ----a-w- d:\program files\mozilla firefox\extensions\kavantibanner@kaspersky.ru\components\abhelperxpcom.dll
2011-08-17 19:49:29 97549 ----a-w- d:\windows\system32\drivers\klick.dat
2011-08-17 19:49:29 113933 ----a-w- d:\windows\system32\drivers\klin.dat
2011-08-17 19:47:51 -------- d-----w- d:\program files\Kaspersky Lab
2011-08-17 19:47:51 -------- d-----w- d:\documents and settings\all users\application data\Kaspersky Lab
2011-08-17 19:46:30 -------- d-----w- d:\documents and settings\all users\application data\Kaspersky Lab Setup Files
2011-08-17 19:13:52 -------- d-----w- d:\program files\Yahoo!
2011-08-17 18:54:40 -------- d-----w- d:\documents and settings\ro\local settings\application data\{42FFD6CD-1797-4302-8C84-959BECBCDA13}
2011-08-17 18:47:17 -------- d-----w- d:\windows\system32\appmgmt
2011-08-17 16:56:06 -------- d-----w- d:\documents and settings\ro\local settings\application data\mfccrtVdm
2011-08-17 16:33:32 -------- d-----w- d:\windows\system32\wbem\repository\FS
2011-08-17 16:33:32 -------- d-----w- d:\windows\system32\wbem\Repository
2011-08-17 08:49:44 -------- d-----w- d:\documents and settings\ro\local settings\application data\PMB Files(2)
2011-08-17 08:11:54 -------- d-----w- d:\program files\Lead and Gold
2011-08-17 07:46:07 -------- d-----w- d:\documents and settings\all users\application data\Avira
2011-08-17 07:03:21 267266 ----a-w- d:\documents and settings\all users\application data\bdinstall.bin
2011-08-17 00:09:31 -------- d-----w- d:\program files\BitDefender
2011-08-17 00:09:31 -------- d-----w- d:\documents and settings\all users\application data\BitDefender
2011-08-17 00:08:11 -------- d-----w- d:\program files\fichiers communs\BitDefender
2011-08-16 22:21:05 -------- d-----w- d:\program files\Spybot - Search & Destroy
2011-08-16 22:21:05 -------- d-----w- d:\documents and settings\all users\application data\Spybot - Search & Destroy
2011-08-16 21:14:49 -------- d-----w- d:\documents and settings\ro\application data\OpenOffice.org
2011-08-16 19:55:10 -------- d-sh--w- d:\documents and settings\ro\PrivacIE
2011-08-16 15:01:07 -------- d-----w- d:\documents and settings\ro\local settings\application data\LEGO Software
2011-08-16 14:20:07 -------- d-----w- d:\documents and settings\ro\application data\CatanSuR
2011-08-16 14:16:49 -------- d-----w- d:\documents and settings\ro\local settings\application data\Chromium
2011-08-16 13:48:06 -------- d-----w- d:\windows\Logs
2011-08-16 13:48:05 -------- d-----w- d:\program files\LEGO Software
2011-08-15 21:14:37 -------- d-----w- d:\windows\system32\LogFiles
2011-08-15 21:13:43 -------- d-----w- d:\program files\VideoLAN
2011-08-15 21:02:44 -------- d-----w- d:\documents and settings\ro\application data\AVG10
2011-08-15 21:01:34 -------- d--h--w- d:\documents and settings\all users\application data\Common Files
2011-08-15 21:00:10 -------- d-----w- d:\windows\system32\drivers\AVG
2011-08-15 21:00:10 -------- d-----w- d:\documents and settings\all users\application data\AVG10
2011-08-15 20:57:37 -------- d-----w- d:\documents and settings\all users\application data\MFAData
2011-08-15 19:13:29 -------- d-----w- d:\program files\Seigneur des Anneaux Online
2011-08-15 19:10:43 -------- d-----w- d:\program files\Pando Networks
2011-08-15 16:40:05 -------- d-sh--w- d:\documents and settings\ro\IETldCache
2011-08-15 16:24:12 7680 -c----w- d:\windows\system32\dllcache\iecompat.dll
2011-08-15 16:23:50 -------- d-----w- d:\windows\ie8updates
2011-08-15 16:23:40 602112 -c----w- d:\windows\system32\dllcache\msfeeds.dll
2011-08-15 16:23:40 55296 -c----w- d:\windows\system32\dllcache\msfeedsbs.dll
2011-08-15 16:23:40 247808 -c----w- d:\windows\system32\dllcache\ieproxy.dll
2011-08-15 16:23:40 1991680 -c----w- d:\windows\system32\dllcache\iertutil.dll
2011-08-15 16:23:40 12800 -c----w- d:\windows\system32\dllcache\xpshims.dll
2011-08-15 16:23:39 743424 -c----w- d:\windows\system32\dllcache\iedvtool.dll
2011-08-15 16:23:39 11081728 -c----w- d:\windows\system32\dllcache\ieframe.dll
2011-08-15 16:23:05 -------- dc-h--w- d:\windows\ie8
2011-08-15 16:12:52 12288 -c--a-w- d:\windows\system32\dllcache\mouhid.sys
2011-08-15 16:12:52 12288 ----a-w- d:\windows\system32\drivers\mouhid.sys
2011-08-15 16:12:50 10368 -c--a-w- d:\windows\system32\dllcache\hidusb.sys
2011-08-15 16:12:50 10368 ----a-w- d:\windows\system32\drivers\hidusb.sys
2011-08-15 16:08:54 221184 ----a-w- d:\windows\system32\wmpns.dll
2011-08-15 16:04:30 -------- d-----w- d:\program files\MSXML 4.0
2011-08-15 16:01:03 2194816 -c----w- d:\windows\system32\dllcache\ntoskrnl.exe
2011-08-15 16:01:03 2150912 -c----w- d:\windows\system32\dllcache\ntkrnlmp.exe
2011-08-15 16:01:03 2029056 -c----w- d:\windows\system32\dllcache\ntkrpamp.exe
2011-08-15 16:01:02 2071424 -c----w- d:\windows\system32\dllcache\ntkrnlpa.exe
2011-08-15 12:49:12 272768 -c----w- d:\windows\system32\dllcache\bthport.sys
2011-08-15 12:49:12 272768 ------w- d:\windows\system32\drivers\bthport.sys
2011-08-15 07:15:49 456320 -c----w- d:\windows\system32\dllcache\mrxsmb.sys
2011-08-15 03:21:29 -------- d-----w- d:\program files\Voyage Century Online
2011-08-15 02:46:01 26144 ----a-w- d:\windows\system32\spupdsvc.exe
2011-08-15 02:46:01 -------- d-----w- d:\windows\system32\PreInstall
2011-08-15 02:46:00 -------- d--h--w- d:\windows\$hf_mig$
2011-08-15 01:54:12 274288 ----a-w- d:\windows\system32\mucltui.dll
2011-08-15 01:54:12 215920 ----a-w- d:\windows\system32\muweb.dll
2011-08-15 01:54:12 18288 ----a-w- d:\windows\system32\mucltui.dll.mui
2011-08-15 00:37:24 -------- d-----w- D:\Voyage Century
2011-08-14 23:51:03 -------- d-----w- d:\documents and settings\ro\application data\Sony Online Entertainment
2011-08-14 23:51:02 -------- d-----w- d:\documents and settings\ro\local settings\application data\SCE
2011-08-14 23:50:16 -------- d-----w- d:\windows\system32\AGEIA
2011-08-14 23:50:00 -------- d-----w- d:\program files\fichiers communs\Wise Installation Wizard
2011-08-14 23:49:51 -------- d-----w- d:\program files\Sony Online Entertainment
2011-08-14 21:19:54 -------- d-----w- d:\program files\mIRC
2011-08-14 21:19:54 -------- d-----w- d:\documents and settings\ro\application data\mIRC
2011-08-14 21:17:55 404640 ----a-w- d:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-14 21:14:17 -------- d-----w- d:\documents and settings\ro\Tracing
2011-08-14 21:13:00 -------- d-----w- d:\program files\Microsoft
2011-08-14 21:08:47 -------- d-----w- d:\program files\fichiers communs\Windows Live
2011-08-12 01:12:11 -------- d-----w- d:\documents and settings\all users\application data\Age of Empires 3
2011-08-11 22:55:06 -------- d-----w- d:\program files\Microsoft Games
2011-08-11 22:33:13 2297552 ----a-w- d:\windows\system32\d3dx9_26.dll
2011-08-11 20:34:47 -------- d-----w- d:\program files\OpenOffice.org 3
2011-08-11 20:34:33 73728 ----a-w- d:\windows\system32\javacpl.cpl
2011-08-11 20:34:33 472808 ----a-w- d:\windows\system32\deployJava1.dll
2011-08-11 20:30:59 -------- d-----w- d:\documents and settings\ro\local settings\application data\Sun
2011-08-11 20:17:45 116736 ----a-w- d:\windows\system32\drivers\mcdbus.sys
2011-08-11 20:17:44 -------- d-----w- d:\program files\MagicDisc
2011-08-11 18:07:38 -------- d-----w- d:\documents and settings\ro\local settings\application data\Ahead
2011-08-11 18:05:06 -------- d-----w- d:\program files\Nero
2011-08-11 18:05:06 -------- d-----w- d:\program files\fichiers communs\Ahead
2011-08-11 18:05:06 -------- d-----w- d:\documents and settings\all users\application data\Nero
2011-08-11 18:04:56 819200 ----a-w- d:\program files\windows media player\wmsetsdk.exe
2011-08-11 18:04:56 47616 ----a-w- d:\program files\windows media player\msoobci.dll
2011-08-11 18:04:42 -------- d-----w- d:\windows\RegisteredPackages
2011-08-11 17:16:43 517632 ----a-r- d:\windows\system32\drivers\rt2870.sys
2011-08-10 22:09:40 -------- d-----w- d:\program files\uTorrent
2011-08-10 22:08:41 -------- d-----w- d:\documents and settings\ro\local settings\application data\uTorrent
2011-08-10 22:08:41 -------- d-----w- d:\documents and settings\ro\application data\uTorrent
2011-08-10 22:06:44 -------- d-----w- d:\windows\system32\SoftwareDistribution
2011-08-10 21:19:52 -------- d-----w- d:\windows\WinRAR
2011-08-10 20:31:26 -------- d-----w- d:\windows\pss
2011-08-10 19:38:55 26368 -c--a-w- d:\windows\system32\dllcache\usbstor.sys
2011-08-10 18:57:36 1179784 ----a-w- d:\windows\system32\drivers\sthda.sys
2011-08-10 18:57:36 117248 ----a-w- d:\windows\system32\staco.dll
2011-08-10 17:39:20 -------- d-----w- d:\documents and settings\ro\application data\DRPSu
2011-08-10 17:29:18 176128 ----a-w- d:\windows\system32\st326233.dll
2011-08-10 16:53:03 -------- d-sh--w- d:\documents and settings\ro\UserData
2011-08-10 16:04:31 6272 -c--a-w- d:\windows\system32\dllcache\splitter.sys
2011-08-10 16:02:37 296448 ----a-r- d:\windows\system32\drivers\yk51x86.sys
2011-08-10 16:02:37 282624 ----a-r- d:\windows\system32\ykx32mpcoinst.dll
2011-08-10 16:00:36 290304 ----a-r- d:\windows\system32\drivers\tifm21.sys
2011-08-10 15:59:41 684032 ----a-r- d:\windows\system32\NETw4c32.dll
2011-08-10 15:59:41 2772992 ----a-r- d:\windows\system32\NETw4r32.dll
2011-08-10 15:59:40 2530176 ----a-r- d:\windows\system32\drivers\NETw4x32.sys
2011-08-10 15:22:56 184320 ----a-r- d:\windows\system32\igfxres.dll
.
==================== Find3M ====================
.
2011-08-06 18:47:24 1571840 ----a-w- d:\windows\system32\sfcfiles.dll
2011-08-06 18:47:04 312344 ----a-w- d:\windows\system32\drivers\iaStor.sys
2011-07-15 13:29:31 456320 ----a-w- d:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ----a-w- d:\windows\system32\drivers\ndistapi.sys
2011-06-24 14:10:47 139656 ----a-w- d:\windows\system32\drivers\rdpwd.sys
2011-06-23 18:31:31 916480 ----a-w- d:\windows\system32\wininet.dll
2011-06-23 18:31:30 43520 ------w- d:\windows\system32\licmgr10.dll
2011-06-23 18:31:30 1469440 ------w- d:\windows\system32\inetcpl.cpl
2011-06-23 12:05:13 385024 ------w- d:\windows\system32\html.iec
2011-06-20 17:44:47 293888 ----a-w- d:\windows\system32\winsrv.dll
2011-06-06 11:35:23 1859072 ----a-w- d:\windows\system32\win32k.sys
.
============= FINISH: 17:44:40,34 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 sundavis

sundavis

  • Malware Response Team
  • 2,708 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:14 AM

Posted 20 August 2011 - 12:41 PM

Hi Dr0g0r,




Welcome to BleepingComputer Virus, Trojan, Spyware, and Malware Removal Logs Forum. :welcome:
My name is sundavis, I will be helping you to deal with your Malware problems today.


Before we start cleaning, we need one necessary tool to ensure everything will go smoothly during the cleanup process.

Do you have Install Disc handy? If yes, please install Recovery Console as instructed in this thread . If no, please make a Recovery Console CD as instructed in this thread . Let me know if you can access RC during rebooting your pc.

#3 sundavis

sundavis

  • Malware Response Team
  • 2,708 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:14 AM

Posted 30 August 2011 - 02:18 AM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

#4 sundavis

sundavis

  • Malware Response Team
  • 2,708 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:14 AM

Posted 03 September 2011 - 05:08 AM

This topic has been re-opened at the request of the person who originally posted.

#5 sundavis

sundavis

  • Malware Response Team
  • 2,708 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:14 AM

Posted 03 September 2011 - 03:22 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users