briang3

Hi, a couple days ago my computer began openning popups every minute or so on internet explorer. My cpu is also constantly running at around 50%.

I will admit that I used bittorent the day before to download something.. so I think I might have finally gotten this from there... since then I have deleted that and will not use it again.

I have attached dds.txt and attach.txt

can somebody help me out with this? I'd appreciate any help



DDS (Version 1.0) - NTFSx86
Run by Govier at 1711.71 on Sun 11/16/2008
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2046.1561 [GMT -8:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\dldtserv.exe
C:\WINDOWS\system32\dldtcoms.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
svchost.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\stsystra.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Dell V305\dldtmon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Dell V305\dldtMsdMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Govier\Application Data\gadcom\gadcom.exe
C:\Program Files\GetPack\GetPack24.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\Govier\Desktop\dds.scr

============== Psuedo HJT Report ===============

uStart Page = hxxp://www.google.com/
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mStart Page = hxxp://www.google.com
uInternet Connection Wizard,ShellNext = iexplore
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
BHO: {7EDB9A15-ED71-439E-8EF9-1F4737264A37} - c:\windows\system32\urqOhecd.dll
BHO: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\rqRhiFxx.dll
BHO: {ed8ac534-220c-43cf-a3a4-d95f8885eda6} - c:\windows\system32\byaaun.dll
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [gadcom] "c:\documents and settings\govier\application data\gadcom\gadcom.exe" 61A847B5BBF72815308B2B27128065E9C084320161C4661227A755E9C2933154389A
uRun: [GetPack24] "c:\program files\getpack\GetPack24.exe"
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [DLCFCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\DLCFtime.dll,_RunDLLEntry@16
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [dldtmon.exe] "c:\program files\dell v305\dldtmon.exe"
mRun: [dldtamon] "c:\program files\dell v305\dldtamon.exe"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_07\bin\jusched.exe"
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office10\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Notify: rqRhiFxx - rqRhiFxx.dll
AppInit_DLLs: byaaun.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: {A63E645F-13BD-45ED-B15F-6E8C1BD57279} - c:\windows\system32\rqRhiFxx.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, msansspc.dll
LSA: Authentication Packages = msv1_0 c:\windows\system32\urqOhecd

============= SERVICES / DRIVERS ===============

R2 dldt_device;dldt_device;c:\windows\system32\dldtcoms.exe -service
R2 dldtCATSCustConnectService;dldtCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\\dldtserv.exe

=============== Created Last 30 ================

2008-11-16 17:05 124,928 a------- c:\windows\system32\byaaun.dll
2008-11-16 17:05 124,928 a------- c:\windows\system32\gwmmhtpu.dll
2008-11-16 16:56 250 a------- c:\windows\gmer.ini
2008-11-16 15:05 <DIR> --d----- c:\program files\iCheck
2008-11-16 15:05 <DIR> --d----- c:\program files\GetPack
2008-11-16 14:41 687,592 a------- c:\windows\system32\atmtd.dll._
2008-11-16 14:41 <DIR> --d----- c:\program files\Network Monitor
2008-11-16 14:25 894,038 a--sh--- c:\windows\system32\dcehOqru.ini2
2008-11-16 14:25 894,038 a--sh--- c:\windows\system32\dcehOqru.ini
2008-11-16 14:25 313,856 a------- c:\windows\system32\urqOhecd.dll
2008-11-16 14:21 <DIR> --d----- c:\program files\Mjcore
2008-11-16 14:21 <DIR> --d----- c:\docume~1\govier\applic~1\gadcom
2008-11-16 14:20 25,600 a------- c:\windows\system32\rqRhiFxx.dll
2008-11-16 14:20 25,600 a------- c:\windows\system32\fcccdARh.dll
2008-11-16 14:20 26,624 a------- c:\windows\system32\msansspc.dll
2008-11-10 11:55 <DIR> --d----- C:\BEES40e
2008-11-10 11:53 <DIR> --d----- C:\BEES40eSetup
2008-11-09 17:02 <DIR> --d----- c:\docume~1\govier\applic~1\ShoppingReport
2008-10-30 11:54 6,144 a------- c:\windows\system32\karna.dat
2008-10-30 11:54 6,144 a------- c:\windows\karna.dat
2008-10-25 20:17 <DIR> --d----- c:\windows\system32\scripting
2008-10-25 20:17 <DIR> --d----- c:\windows\l2schemas
2008-10-25 20:15 <DIR> --d----- c:\windows\ServicePackFiles
2008-10-25 20:13 <DIR> --d----- c:\windows\network diagnostic
2008-10-25 19:53 586,240 a------- c:\windows\system32\SET2E7.tmp
2008-10-25 19:41 337,408 -------- c:\windows\system32\SET1484.tmp
2008-10-25 19:08 1,956 a------- c:\windows\default.htm
2008-10-25 19:05 216,363 a------- c:\windows\system32\wpv964.cpx
2008-10-25 19:05 216,363 a------- c:\windows\system32\wpv274.cpx
2008-10-25 19:05 <DIR> --d----- c:\docume~1\govier\applic~1\GetModule
2008-10-19 20:02 <DIR> --d----- c:\program files\MSECache

==================== Find3M ====================

2008-11-16 16:48 <DIR> --d----- c:\program files\LimeWire
2008-11-16 15:00 <DIR> --d----- c:\docume~1\govier\applic~1\BitTorrent
2008-11-12 15:20 56,321 a------- c:\windows\system32\nvModes.dat
2008-10-30 13:12 <DIR> --d----- c:\program files\Dl_cats
2008-10-30 12:05 <DIR> --d----- c:\program files\Windows NT
2008-10-30 12:05 <DIR> --d----- c:\program files\Messenger
2008-10-25 20:20 89,015 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-10-19 14:53 <DIR> --d----- c:\docume~1\govier\applic~1\LimeWire
2008-10-15 08:57 332,800 a------- c:\windows\system32\netapi32(3).dll
2008-10-15 08:57 332,800 a------- c:\windows\system32\netapi32(2).dll
2008-08-13 12:31 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Viewpoint
2008-08-07 12:12 <DIR> --d----- c:\docume~1\govier\applic~1\Dell Imaging Toolbox
2008-08-06 09:37 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Trend Micro
2008-07-30 19:40 <DIR> --d----- c:\docume~1\govier\applic~1\DassaultSystemes
2008-07-30 19:40 <DIR> --d----- c:\docume~1\alluse~1\applic~1\DassaultSystemes
2008-07-09 20:36 <DIR> --d----- c:\docume~1\govier\applic~1\SolidWorks
2008-07-07 23:23 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2008-05-20 13:29 <DIR> --d----- c:\docume~1\govier\applic~1\Diskeeper Corporation
2008-04-10 13:06 <DIR> --d----- c:\docume~1\govier\applic~1\DNA
2008-04-10 12:28 <DIR> --d----- c:\docume~1\govier\applic~1\Malwarebytes
2008-04-10 12:28 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2008-04-08 17:15 <DIR> --d----- c:\docume~1\govier\applic~1\DWGeditor
2008-03-13 06:54 <DIR> --d----- c:\docume~1\govier\applic~1\BitTorrent DNA
2008-01-30 16:40 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SupportSoft
2008-01-30 16:39 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Dell
2007-11-13 14:04 <DIR> --d----- c:\docume~1\govier\applic~1\SlySoft
2007-01-22 23:37 <DIR> --d----- c:\docume~1\govier\applic~1\Viewpoint
2006-12-31 00:19 <DIR> --d----- c:\docume~1\govier\applic~1\Atari
2006-12-14 23:29 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Symantec
2006-10-23 15:17 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Trymedia
2006-09-08 21:49 <DIR> --d----- c:\docume~1\govier\applic~1\Corel Photo Album
2006-08-22 09:31 <DIR> --d----- c:\docume~1\govier\applic~1\Symantec
2007-02-14 15:53 56 ---shr-- c:\windows\system32\6929A60EE9.sys
2007-01-14 18:54 88 ---shr-- c:\windows\system32\E90EA62969.sys
2007-02-14 15:53 5,382 a--sh--- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 17:07:39.09 ===============

Attached Files

	DDS.txt (9.3 KB, 2 views)
	Attach.txt (16.2 KB, 2 views)