Tech Support Forum banner
Status
Not open for further replies.

windows live messenger virus, messenger keeps on sending link

880 views 0 replies 1 participant last post by  ndymiaw 
#1 ·
Hi, I stupidly clicked on one of the link a friend sent me through msn.
The link derected me to this website and asked me to log in, since then my messenger logs off on its own with a notice saying that i've loged off to another device and sent ppl in my contact list this link: hxxp://thatzz.awesomeofferz.com

i've tried to scan the my computer with AVG-free and it did not help at all. Also try one of the software msn virus removal, and the software couldnt find any malfunction.

Could someone help me please.... Many many thanks

Here's the DDS.txt log:

DDS (Ver_09-01-07.01) - NTFSx86
Run by Cindy at 7:21:59.09 on 12/01/2009
Internet Explorer: 7.0.6001.18000
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.65.1033.18.3068.1761 [GMT -8:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\rundll32.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\Network Utility\NSUService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Sony\Network Utility\LANUtil.exe
C:\Program Files\Sony\VAIO Power Management\SPMService.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
C:\Windows\system32\DllHost.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\Cindy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GH04GJQX\dds[1].com
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uDefault_Page_URL = hxxp://vaio-online.sony.com/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_06\bin\ssv.dll
TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [NSUFloatingUI] "c:\program files\sony\network utility\LANUtil.exe"
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [ISBMgr.exe] "c:\program files\sony\isb utility\ISBMgr.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0006-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_06\bin\ssv.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: igfxcui - igfxdev.dll
Notify: VESWinlogon - VESWinlogon.dll
AppInit_DLLs: avgrsstx.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-12-23 97928]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\drivers\ArcSoftKsUFilter.sys [2008-8-20 17408]
R3 NETw5v32;Intel(R) Wireless WiFi Link Adapter Driver for Windows Vista 32 Bit ;c:\windows\system32\drivers\NETw5v32.sys [2008-4-28 3658752]
R3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\drivers\SFEP.sys [2008-7-22 9344]
R4 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2008-12-23 231704]
R4 BcmSqlStartupSvc;Business Contact Manager SQL Server Startup Service;c:\program files\microsoft small business\business contact manager\BcmSqlStartupSvc.exe [2008-1-11 30312]
R4 NSUService;NSUService;c:\program files\sony\network utility\NSUService.exe [2008-8-20 299008]
R4 regi;regi;c:\windows\system32\drivers\regi.sys [2007-4-17 11032]
R4 uCamMonitor;CamMonitor;c:\program files\arcsoft\magic-i visual effects\uCamMonitor.exe [2008-8-20 104960]
R4 VAIO Power Management;VAIO Power Management;c:\program files\sony\vaio power management\SPMService.exe [2008-7-22 411488]
R4 VCFw;VAIO Content Folder Watcher;c:\program files\common files\sony shared\vaio content folder watcher\VCFw.exe [2008-6-20 415744]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2008-7-22 29736]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);c:\program files\microsoft sql server\mssql.1\mssql\binn\sqlservr.exe [2008-8-5 29184016]
S3 SOHCImp;VAIO Media plus Content Importer;c:\program files\sony\vaio media plus\SOHCImp.exe [2008-8-20 103712]
S3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\sony\vaio media plus\SOHDms.exe [2008-8-20 353568]
S3 SOHDs;VAIO Media plus Device Searcher;c:\program files\sony\vaio media plus\SOHDs.exe [2008-8-20 62752]
S3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\sony\vcm intelligent analyzing manager\VcmIAlzMgr.exe [2008-8-20 337184]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\common files\sony shared\vcmxml\VcmXmlIfHelper.exe [2008-8-20 83232]

=============== Created Last 30 ================

2009-01-11 20:23 <DIR> --d----- c:\users\cindy\Tracing
2009-01-11 20:06 <DIR> --d----- c:\program files\Microsoft Office Outlook Connector
2009-01-11 20:03 3,426,072 a------- c:\windows\system32\d3dx9_32.dll
2009-01-11 20:03 712,704 a------- c:\windows\system32\WindowsCodecs.dll
2009-01-11 20:03 347,648 a------- c:\windows\system32\WindowsCodecsExt.dll
2009-01-11 20:01 <DIR> --d----- c:\program files\Microsoft
2009-01-11 19:53 <DIR> --d----- c:\program files\common files\Windows Live
2009-01-11 14:05 <DIR> --d----- c:\program files\AxBx
2009-01-11 12:54 <DIR> a-d----- c:\programdata\TEMP
2009-01-11 12:54 <DIR> --d----- c:\program files\Eusing Free Registry Cleaner
2008-12-25 21:46 <DIR> --d-h--- C:\$AVG8.VAULT$
2008-12-23 10:24 10,520 a------- c:\windows\system32\avgrsstx.dll
2008-12-23 10:24 97,928 a------- c:\windows\system32\drivers\avgldx86.sys
2008-12-23 10:24 <DIR> --d----- c:\windows\system32\drivers\Avg
2008-12-23 10:23 <DIR> --d----- c:\programdata\avg8
2008-12-23 10:23 <DIR> --d----- c:\program files\AVG
2008-12-23 10:23 <DIR> --d----- c:\progra~2\avg8
2008-12-23 09:28 <DIR> --d----- c:\users\cindy\appdata\roaming\LimeWire
2008-12-23 09:27 <DIR> --d----- c:\program files\LimeWire
2008-12-20 20:11 0 a---h--- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_05_00.Wdf
2008-12-20 20:10 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01007.Wdf
2008-12-20 20:03 <DIR> --d----- c:\programdata\PC Suite
2008-12-20 20:03 <DIR> --d----- c:\program files\common files\PCSuite
2008-12-20 20:03 <DIR> --d----- c:\program files\common files\Nokia
2008-12-20 20:03 18,816 a------- c:\windows\system32\drivers\pccsmcfd.sys
2008-12-20 20:02 <DIR> --d----- c:\program files\PC Connectivity Solution
2008-12-20 20:00 91,136 a------- c:\windows\system32\nmwcdcls.dll
2008-12-20 20:00 <DIR> --d----- c:\program files\Nokia
2008-12-20 19:59 <DIR> --d----- c:\programdata\Installations
2008-12-18 12:03 1,383,424 a------- c:\windows\system32\mshtml.tlb
2008-12-18 12:00 <DIR> --d----- c:\windows\SQL9_KB954606_ENU
2008-12-17 02:22 12,240,896 a------- c:\windows\system32\NlsLexicons0007.dll
2008-12-17 02:22 2,644,480 a------- c:\windows\system32\NlsLexicons0009.dll
2008-12-17 02:22 801,280 a------- c:\windows\system32\NaturalLanguage6.dll
2008-12-13 23:30 107,368 a------- c:\windows\system32\GEARAspi.dll
2008-12-13 23:30 15,464 a------- c:\windows\system32\drivers\GEARAspiWDM.sys
2008-12-13 23:29 <DIR> --d----- c:\program files\iPod
2008-12-13 23:29 <DIR> --d----- c:\programdata\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-12-13 23:29 <DIR> --d----- c:\program files\iTunes
2008-12-13 23:29 <DIR> --d----- c:\progra~2\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-12-13 22:11 <DIR> --d----- c:\program files\Bonjour
2008-12-13 22:10 <DIR> --d----- c:\programdata\Apple Computer
2008-12-13 22:09 <DIR> --d----- c:\programdata\Apple
2008-12-13 20:52 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf

==================== Find3M ====================

2009-01-12 06:37 64,415 a------- c:\programdata\nvModes.dat
2009-01-12 06:37 64,415 a------- c:\progra~2\nvModes.dat
2008-12-21 08:28 143,360 a------- c:\windows\inf\infstrng.dat
2008-12-21 08:28 51,200 a------- c:\windows\inf\infpub.dat
2008-12-20 20:04 86,016 a------- c:\windows\inf\infstor.dat
2008-12-09 00:19 0 a---hr-- c:\windows\system32\drivers\Sony_VGN-CS16GQ.mrk
2008-10-31 19:44 52,736 a------- c:\windows\apppatch\iebrshim.dll
2008-10-31 19:44 2,154,496 a------- c:\windows\apppatch\AcGenral.dll
2008-10-31 19:44 541,696 a------- c:\windows\apppatch\AcLayers.dll
2008-10-31 19:44 460,288 a------- c:\windows\apppatch\AcSpecfc.dll
2008-10-31 19:44 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2008-10-31 19:44 28,672 a------- c:\windows\system32\Apphlpdm.dll
2008-10-31 17:21 4,240,384 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2008-10-28 22:29 2,927,104 a------- c:\windows\explorer.exe
2008-10-28 20:24 831,048 a------- c:\windows\system32\WudfUpdate_01005.dll
2008-10-21 17:22 2,048 a------- c:\windows\system32\tzres.dll
2008-10-20 21:25 296,960 a------- c:\windows\system32\gdi32.dll
2008-10-16 12:56 1,524,736 a------- c:\windows\system32\wucltux.dll
2008-10-16 12:55 83,456 a------- c:\windows\system32\wudriver.dll
2008-10-15 22:08 162,064 a------- c:\windows\system32\wuwebv.dll
2008-10-15 21:56 31,232 a------- c:\windows\system32\wuapp.exe
2008-10-15 20:47 827,392 a------- c:\windows\system32\wininet.dll
2008-07-22 13:17 665,600 a------- c:\windows\inf\drvindex.dat
2008-01-20 18:43 174 a--sh--- c:\program files\desktop.ini
2006-11-02 04:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 04:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 04:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 04:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 01:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 01:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 01:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 01:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 7:22:24.63 ===============
 

Attachments

See less See more
Status
Not open for further replies.
You have insufficient privileges to reply here.
Top