Jump to content

U602xu5J

Members
  • Posts

    2
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I don't see where to delete my post, so I am left to reply. My most recent scans have turned up no threats. I think that mbam has succeeded and that I no longer need additional help on this matter. Thank you!
  2. DDS (Ver_10-03-17.01) - NTFSx86 Run by at 20:50:54.12 on Fri 07/16/2010 Internet Explorer: 6.0.2900.5512 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3582.2913 [GMT -6:00] AV: AntiVir Desktop *On-access scanning disabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe svchost.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe C:\WINDOWS\system32\nvsvc32.exe c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe C:\WINDOWS\system32\StacSV.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\system32\WLTRAY.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Apoint\ApMsgFwd.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Palm\Hotsync.exe C:\Documents and Settings\M. Burbidge\Application Data\Dropbox\bin\Dropbox.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\Apoint\HidFind.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Documents and Settings\M. Burbidge\My Documents\Downloads\dds.scr ============== Pseudo HJT Report =============== uStart Page = hxxp://www.google.com/ uSearch Page = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb uSearch Bar = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 mDefault_Page_URL = hxxp://www.dell.com mDefault_Search_URL = hxxp://www.google.com/ie mStart Page = hxxp://www.dell.com uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://www.google.com/hws/sb/dell-usuk/en/side.html?channel=us-smb TB: {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [Apoint] c:\program files\apoint\Apoint.exe mRun: [nwiz] nwiz.exe /installquiet mRun: [broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe" mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min StartupFolder: c:\docume~1\m9e23~1.bur\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\m. burbidge\application data\dropbox\bin\Dropbox.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab Notify: gemsafe - c:\program files\gemplus\gemsafe libraries\bin\WLEventNotify.dll Notify: LMIinit - LMIinit.dll SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\wifd1f~1\MpShHook.dll SEH: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - No File LSA: Authentication Packages = msv1_0 wvauth nnolkk.dll LSA: Notification Packages = scecli scecli Hosts: 127.0.0.1 www.spywareinfo.com ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\m9e23~1.bur\applic~1\mozilla\firefox\profiles\9uluwjnc.default\ FF - prefs.js: browser.startup.homepage - hxxp://mail.google.com/mail FF - component: c:\documents and settings\m. burbidge\application data\mozilla\firefox\profiles\9uluwjnc.default\extensions\{e3f6c2cc-d8db-498c-af6c-499fb211db97}\platform\winnt_x86-msvc\components\pagespeed.dll FF - plugin: c:\documents and settings\m. burbidge\application data\mozilla\firefox\profiles\9uluwjnc.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll FF - plugin: c:\progra~1\palm\packag~1\NPInstal.dll FF - plugin: c:\windows\system32\tvuax\npTVUAx.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\ ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pr ef", true); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", ""); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false); c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com"); ============= SERVICES / DRIVERS =============== R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2010-7-16 11608] R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2008-5-17 213768] R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [2010-1-26 142928] R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [2010-1-26 41744] R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2010-7-16 135336] R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-7-16 267432] R2 ASFIPmon;Broadcom ASF IP and SMBIOS Mailbox Monitor;c:\program files\broadcom\asfipmon\AsfIpMon.exe [2006-12-19 79432] R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2010-7-16 60936] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-9-26 47640] R2 Wave UCSPlus;Wave UCSPlus;c:\windows\system32\dllhost.exe [2004-8-10 5120] R2 WinDefend;Windows Defender;c:\program files\windows defender\MsMpEng.exe [2006-11-3 13592] R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2006-11-2 97536] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2009-12-17 100496] R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\drivers\VBoxNetFlt.sys [2010-5-9 111312] S2 LMIInfo;LogMeIn Kernel Information Provider;\??\c:\program files\logmein\x86\rainfo.sys --> c:\program files\logmein\x86\RaInfo.sys [?] S3 dkab_device;dkab_device;c:\windows\system32\dkabcoms.exe -service --> c:\windows\system32\DKabcoms.exe -service [?] S3 MfeAVFK;McAfee Inc. MfeAVFK;c:\windows\system32\drivers\MfeAVFK.sys [2008-5-17 79880] S3 MfeBOPK;McAfee Inc. MfeBOPK;c:\windows\system32\drivers\MfeBOPK.sys [2008-5-17 35272] S3 MfeRKDK;McAfee Inc. MfeRKDK;c:\windows\system32\drivers\MfeRKDK.sys [2008-5-17 34216] S3 SWNC8U12;Sierra Wireless MUX NDIS Driver (UMTS12);c:\windows\system32\drivers\swnc8u12.sys [2009-3-24 101248] S3 SWUMX12;Sierra Wireless USB MUX Driver (UMTS12);c:\windows\system32\drivers\swumx12.sys [2009-3-24 73856] S4 LMIRfsClientNP;LMIRfsClientNP; [x] =============== Created Last 30 ================ 2010-07-17 02:42:38 0 ----a-w- c:\documents and settings\m. burbidge\defogger_reenable 2010-07-17 00:44:49 221568 ------w- c:\windows\system32\MpSigStub.exe 2010-07-16 23:44:29 0 d-----w- c:\windows\SxsCaPendDel 2010-07-16 20:03:49 54016 ----a-w- c:\windows\system32\drivers\teqo.sys 2010-07-16 18:27:01 150 ----a-w- c:\windows\system32\spupdsvc.inf 2010-07-16 18:06:32 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-07-16 18:06:30 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-07-16 18:06:30 0 d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-07-16 18:06:30 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes 2010-07-16 16:52:32 0 d-----w- c:\windows\system32\NtmsData 2010-07-16 16:52:11 0 d-----w- c:\docume~1\m9e23~1.bur\applic~1\Avira 2010-07-16 16:46:31 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2010-07-16 16:46:31 0 d-----w- c:\program files\Avira 2010-07-16 16:46:31 0 d-----w- c:\docume~1\alluse~1\applic~1\Avira 2010-07-16 16:23:05 272128 ------w- c:\windows\system32\dllcache\bthport.sys 2010-07-16 16:22:52 353792 ------w- c:\windows\system32\dllcache\srv.sys 2010-07-16 16:22:07 455680 ------w- c:\windows\system32\dllcache\mrxsmb.sys 2010-07-16 16:21:29 730112 ------w- c:\windows\system32\dllcache\lsasrv.dll 2010-07-16 16:21:28 2146304 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe 2010-07-16 16:21:27 2189952 ------w- c:\windows\system32\dllcache\ntoskrnl.exe 2010-07-16 16:21:26 2024448 ------w- c:\windows\system32\dllcache\ntkrpamp.exe 2010-07-16 16:20:47 203136 ------w- c:\windows\system32\dllcache\rmcast.sys 2010-07-16 16:18:56 337408 ------w- c:\windows\system32\dllcache\netapi32.dll 2010-07-16 14:56:35 0 d-sha-r- C:\cmdcons 2010-07-16 14:39:49 98816 ----a-w- c:\windows\sed.exe 2010-07-16 14:39:49 77312 ----a-w- c:\windows\MBR.exe 2010-07-16 14:39:49 256512 ----a-w- c:\windows\PEV.exe 2010-07-16 14:39:49 161792 ----a-w- c:\windows\SWREG.exe 2010-07-16 14:00:02 0 d-s---w- C:\ComboFix 2010-07-16 07:59:12 0 d-----w- c:\docume~1\alluse~1\applic~1\Alwil Software 2010-07-16 07:54:10 0 d-----w- c:\docume~1\m9e23~1.bur\applic~1\Malwarebytes 2010-07-15 09:03:25 552 ----a-w- c:\windows\system32\d3d8caps.dat 2010-07-15 02:14:34 0 d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com 2010-07-14 22:31:27 95024 ----a-w- c:\windows\system32\drivers\SBREDrv.sys 2010-07-14 22:26:39 0 d-----w- c:\windows\ServicePackFiles 2010-07-09 02:07:31 0 d-----w- c:\program files\Linksys 2010-07-09 01:29:00 0 d-----w- c:\program files\Qwest 2010-07-09 01:20:53 0 d-----w- c:\docume~1\alluse~1\applic~1\Qwest 2010-07-09 01:20:33 0 d-----w- c:\program files\Xenocode 2010-07-09 01:20:26 0 d-----w- c:\windows\XSxS 2010-07-08 15:22:26 0 d--h--w- C:\VritualRoot 2010-07-07 18:52:26 0 d-----w- c:\docume~1\alluse~1\applic~1\Comodo Downloader 2010-07-07 13:16:16 664 ----a-w- c:\windows\system32\d3d9caps.dat 2010-07-06 04:55:43 0 d-----w- c:\program files\Logia 2010-07-06 04:55:43 0 d-----w- c:\docume~1\m9e23~1.bur\applic~1\Logia 2010-07-06 04:28:15 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_WinUSB_01007.Wdf 2010-07-06 04:27:41 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf 2010-07-06 04:27:38 14640 ------w- c:\windows\system32\spmsgXP_2k3.dll 2010-07-06 04:26:18 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll 2010-07-06 04:22:49 0 d-----w- c:\documents and settings\m. burbidge\.android 2010-07-04 04:05:31 0 d-----w- c:\docume~1\alluse~1\applic~1\TVU Networks 2010-07-04 04:05:30 0 d-----w- c:\documents and settings\m. burbidge\LocalLow 2010-07-04 04:04:18 0 d-----w- c:\windows\system32\TVUAx ==================== Find3M ==================== 2010-07-14 21:39:39 54669 ----a-w- c:\windows\system32\nvModes.dat 2010-07-06 04:26:18 581192 ----a-w- c:\windows\system32\WinUSBCoInstaller.dll 2010-06-08 19:30:16 41744 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys 2010-06-08 19:30:16 142928 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys 2010-06-08 19:30:16 111312 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys 2010-06-08 19:30:16 100496 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys 2010-06-08 19:30:14 133648 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll 2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys 2010-05-02 05:22:50 1851264 ------w- c:\windows\system32\dllcache\win32k.sys 2010-04-20 05:51:20 285696 ----a-w- c:\windows\system32\atmfd.dll 2010-04-20 05:51:20 285696 ------w- c:\windows\system32\dllcache\atmfd.dll ============= FINISH: 20:51:09.43 =============== Attach.txt ark.txt mbam_log_2010_07_16__19_49_52_.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.