Jump to content

Malwarebytes

can not start malwarebytes scan

Started by Galina, Aug 04 2009 11:55 PM

4 replies to this topic

#1
Galina
Posted 04 August 2009 - 11:55 PM

    New Member

  • Members
  • Pip
  • 4 posts
I am pretty sure my computer has a virus although nothing is detected after running AVG antivirus or spybot. I also run highjact this but i am not sure how to interpret the result. I am having all kinds of problems with the Windows system files, unable to defragment or run check disk. Please help.

#2
AdvancedSetup
Posted 05 August 2009 - 12:13 AM

    Forum Deity

  • Administrators
  • PipPipPipPipPipPip
  • 22,904 posts
  • Gender:Male
  • Location:US
Please review the FAQ for a possible solution.
Please especially check Issue# 5
Ron Lewis
Manager, Online Support

Posted Image

Follow us: Twitter, Become a fan: Facebook

If you've posted to the HJT forum and it has been over 5 days without a response please send a Private Message asking for assistance.

#3
Galina
Posted 09 August 2009 - 11:56 PM

    New Member

  • Members
  • Pip
  • 4 posts
i was able to install and run a malware after renaming in to winlogin, but it did find over 100 viruses... but i still have issues with my computer. Can not run a check disk on my computer can not search my harddrive...

#4
Galina
Posted 10 August 2009 - 12:04 AM

    New Member

  • Members
  • Pip
  • 4 posts
this is a report after I run a rootRepeal sorry it is long
ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/08/09 16:57
Program Version: Version 1.3.3.0
Windows Version: Windows XP SP2
==================================================

Drivers
-------------------
Name: djex.sys
Image Path: C:\WINDOWS\system32\drivers\djex.sys
Address: 0xF3BB4000 Size: 61440 File Visible: No Signed: -
Status: -

Name: dump_diskdump.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_diskdump.sys
Address: 0xF7A80000 Size: 16384 File Visible: No Signed: -
Status: -

Name: dump_viasraid.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_viasraid.sys
Address: 0xB221F000 Size: 77824 File Visible: No Signed: -
Status: -

Name: giveio.sys
Image Path: giveio.sys
Address: 0xF7B58000 Size: 1664 File Visible: No Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xAF5E1000 Size: 49152 File Visible: No Signed: -
Status: -

Name: speedfan.sys
Image Path: speedfan.sys
Address: 0xF7A98000 Size: 5248 File Visible: No Signed: -
Status: -

Hidden/Locked Files
-------------------
Path: C:\HIBERFIL.SYS
Status: Locked to the Windows API!

Path: C:\272989ddf29c8198af2cc83c054c4782\L
Status: Locked to the Windows API!

Path: C:\272989ddf29c8198af2cc83c054c4782\>XK.(
Status: Invisible to the Windows API!

Path: C:\272989ddf29c8198af2cc83c054c4782\─>╔X╔K.(╩
Status: Visible to the Windows API, but not on disk.

Path: C:\Avenger\user.ds.lll
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\SPMSG.DLL
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\UACnsimayiaayrsxghbn.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACemmhsbowxwudrauxg.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\SPUPDSVC.EXE
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\UACINIT.DLL
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACioofcedvurmrxcsqa.dat
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACfakdpqoxhqqtwiite.db
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACwfhouuycqvouxkwft.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACwxqmnyieoxacfvnoo.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\UACufvugfvumhbfikrqg.dll
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\MPENGINE.DLL
Status: Could not get file information (Error 0xc0000102)

Path: c:\windows\temp\tmp00000001cf21379e097f4940
Status: Allocation size mismatch (API: 1245184, Raw: 524288)

Path: C:\WINDOWS\Temp\UAC86fd.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\UAC8c9b.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\UAC92e4.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\UAC968e.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Temp\UAC9ab4.tmp
Status: Invisible to the Windows API!

Path: C:\WINDOWS\Prefetch\C.EXE-1F03D944.pf
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\Prefetch\MSA.EXE-1E98B210.pf
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\Prefetch\RDL19.TMP.EXE-16A4478D.pf
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\i
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\m
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\e
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\e
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\F
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\B
Status: Locked to the Windows API!

Path: C:\WINDOWS\$NtUninstallKB959772_WM11$\3
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\.rc=
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\et/g/lib./1.
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\.\\"
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\r".t\\
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\);\r\n\t.}\r
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\er_728_9.0\"
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\潦浲椠㵤≜晟牯彭慢湮牥㠲㥟
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\input.pe=
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\input_ba.nne
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\_js\&w=7.28\
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\慢湮牥㝟㠲≜挠慬獳尽弢捡≜
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\scr".ipt
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\t1.1\">\.nOA
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\substrin.g
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\aScript1..1\
Status: Locked to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\猯⽳⽡就⬧牟獮尫䀧潔ㅰ㰾猯
Status: Invisible to the Windows API!

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\guage=\".jav
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\"text/ja.vas
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\ + "ipt\.\\"
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\ipt>\r\n.<sp
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\0\" styl.e=\
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\_input_b.ann
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\gt=s\&sl.id=
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\orm>\r\n.<sp
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\>\r\n<!-.--
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\28x90)_2.47R
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\scr" + ".ipt
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\substrin.g (
Status: Visible to the Windows API, but not on disk.

Path: C:\System Volume Information\_restore{566FF759-FA44-4413-927A-6BC30B792363}\stream_j.x.a
Status: Visible to the Windows API, but not on disk.

Path: C:\WINDOWS\SYSTEM32\DRIVERS\AEC.SYS
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\DRIVERS\UACfnqdcqikpmnivnfrn.sys
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SYSTEM32\Restore\MachineGuid.txt
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\Debug\Setup\UpdSh.bak
Status: Could not get file information (Error 0xc0000102)

Path: C:\Documents and Settings\Tom Petro\Cookies\tom petro@oasn04.247realmedia[1].txt
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB950749.CAT
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB942615.CAT
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SYSTEM32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB939653.CAT
Status: Could not get file information (Error 0xc0000102)

Path: C:\WINDOWS\SoftwareDistribution\Download\Install\ †
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\Install\≡SPΦ√╫.
Status: Visible to the Windows API, but not on disk.

Path: C:\WINDOWS\SoftwareDistribution\Download\Install\
Status: Visible to the Windows API, but not on disk.

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ˆŽDP^.nڸ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\s|c.s
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\닛焪끓�埩癩䒥㞱᭸]튴
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\˜P/‘F.Dž
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\DO‹.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\,›.(€
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\t*hj.mQc
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\6'鰻.t„
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\;U#4g.Y
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\hE!,.ˆY

Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\~4ž.5
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\”)%€`”.†
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\(OrR{.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\‚’fư.^<
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\’S…‚i’.KvO
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\|-rQ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
%E.cc
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\G.‡^%„‡.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\a>†l.‡K
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\㠄�ꝅ覸ޓ�덽쩝幝㫢㣕
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\w  .7
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\1sf2+.G
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Zm0.d
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\? ›j–P.Œž
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\{ˆ.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\퟇黷⽱뼈侔早ᶤ㎋ᔇ抶䘕
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ 68-/@\.„K
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\šN{‰@‘.Jt
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
*g]†T
.\F
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\™FFr.zG
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\šT]$.™
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Pi@j—.j
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Wf.W
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\:h<œŽCI.‰ŽA
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Y,#.l
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\x`V[-.‚
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\cm}h.3
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\e8A
„7.š
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\᱄濨㚧꧒鲓뼎朿ᝂ帏⎒⬁ᖖ訠悉ṯಌ⟖�⬤쫉ᅧ潻↖⚟
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\PD•.`Z
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\„&0۴9.3‚
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\‰).*IK
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ͫ.n‰.ǩ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\€|yŒz.ͻ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\D„oJ|.;
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\q•!—{.+
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\u
I9@).%=
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\0Rœ.r‰
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
ed$0.‚
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
€A9.8
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\s;˜.{—
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\‡δke.š22
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\PpS.f
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Ÿ~0TF.
l
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\t!.Wh
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ƒe?.†
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Y4.š@
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\﫦{V4J.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\˜
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\h?uh.V
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\0`0œ5Y.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ogb-‡.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ 6ž%Q.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\—)J4z‘.a
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\7W1&. 
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\zSJC™.Xi
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ˆc# q.ޫ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\/P˜.1Mr
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\B)s^|D.—
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Œ^ž.Ž
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\hw3u{.Ž
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\㐆納劼㤅憾椹憡㞛ꘋ愘ᑆꐐ聎엎̿ս榥浚䂼몧憜
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\.“
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Hrȶ.rf
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\€?i•.x
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\XJŒ.X
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\O/”|b.’
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\F}PK.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\CƒϾ.U
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Š]rdZ.@K
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Ÿs$].`S
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\c.L’.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\‘6ŸoO‹.qE
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\P‡ˆY™t.&
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\vzšDƒ.1
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ŽA #.u~
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\3‹"Ѹ.H
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\t…f†M?.J
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\賓㼬燳齦쓝栵땢谾紗릲촆ǫ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\v˦–.k;v
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\q~y˜.)Rh
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\†6r.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\N #8z.G
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\.Ħ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\▐뙃嵐旊ꅴ읫࣋킏❖㭫崬
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\(mb.8VW
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\|T–r=4D.:
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\nց. 
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Ll|v.„
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\擸岸耆샣쪔ꔷ鹒⡅榏弥ᰮ팠
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\–NIt.O
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\괌즄埠裏䗙䳫瑷闌圑〉
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Lɷu'.p
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ky"'...U
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\20$.p(F
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\G;Ÿӫ.6y
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\grF6.0o
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\[~.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ˆ‰nQ1.Xƒ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\„y/
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\QWc-U.-W
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\lu‡X.A%
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\„.0g
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\6EM•'.ks'
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\-qy4ž.D
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Yy2.#$z
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\0y.gc
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\1ˆx.?u
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\N
Status: Locked to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\{J3"W.>,2
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\O*™I.B
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\MN(J‹;–.ƒc
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\“…V`Š9_.t
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\sH .*q™
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\\8"Z.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\q(rL'.Cœ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\šM4h.‘ƒ
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\հZ.u
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\$ˆͣ›.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
"ƒ‘.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Ÿv”–b?.</
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ȱn+@›.<
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\p^o.;‡
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\\]O.O
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\nN0—.;c
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\8
Status: Locked to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\|–9x.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\=@Ei•.c
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\8&‚HŒ<_.!
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\<)—.hlt
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\ŽPR.ƒ\
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\/355\š
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\C__D`—.
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\燈஋ݎ蝈㍸≕繏젋촢땣评흉
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\C ‚Š.X$Q
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\8Ӡ.#^
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\†{VP .1
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\k!.z
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\h`9sd.+b
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\Eq]DHY.M"
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\767ad0b1e25f00eba5173e1b1c194659\
3Q.A
Status: Invisible to the Windows AStealth Objects
-------------------
Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: svchost.exe (PID: 1504) Address: 0x00fd0000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: svchost.exe (PID: 1504) Address: 0x02470000 Size: 49152

Object: Hidden Module [Name: UACNSIMAYIAAYRSXGHBN.DLL]
Process: svchost.exe (PID: 1504) Address: 0x10000000 Size: 73728

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: wuauclt.exe (PID: 1396) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: wuauclt.exe (PID: 1396) Address: 0x00970000 Size: 49152

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: HijackThis.exe (PID: 3192) Address: 0x00ec0000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: HijackThis.exe (PID: 3192) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: firefox.exe (PID: 4004) Address: 0x00a80000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: firefox.exe (PID: 4004) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: NOTEPAD.EXE (PID: 2268) Address: 0x00970000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: NOTEPAD.EXE (PID: 2268) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: winzip32.exe (PID: 3204) Address: 0x00cd0000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: winzip32.exe (PID: 3204) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: winzip32.exe (PID: 2348) Address: 0x00cd0000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: winzip32.exe (PID: 2348) Address: 0x10000000 Size: 45056

Object: Hidden Module [Name: UACufvugfvumhbfikrqg.dll]
Process: RootRepeal.exe (PID: 2640) Address: 0x00ae0000 Size: 49152

Object: Hidden Module [Name: UACwxqmnyieoxacfvnoo.dll]
Process: RootRepeal.exe (PID: 2640) Address: 0x10000000 Size: 45056

Hidden Services
-------------------
Service Name: UACd.sys
Image Path: C:\WINDOWS\system32\drivers\UACfnqdcqikpmnivnfrn.sys

==EOF==

#5
SpySentinel
Posted 10 August 2009 - 12:12 AM

    Forum Deity

  • Experts
  • PipPipPipPipPipPip
  • 1,848 posts
  • Gender:Male
  • Location:The United States
  • Interests:Fighting/Analyzing Malware & Social Media
Hi Galina,

Please post your logs in the Malware Removal - HijackThis Logs Forum so we can help you clean up your computer.
Matt Russo
Social Media Specialist

Posted Image

Follow us: Twitter, Become a fan: Facebook
Back to General Malwarebytes Anti-Malware Forum · Next Unread Topic →


1 user(s) are reading this topic

0 members, 1 guests, 0 anonymous users

  1. Malwarebytes Forum
  2. Malwarebytes Anti-Malware Support
  3. General Malwarebytes Anti-Malware Forum

Products

About

Partners

Follow Us