tadpole90

Hallo

I tried to use my webcam, but no program ie yahoo, msn messenger was picking up the camera, although it appeared fine on my screen. I tried to run
chkdsk/f but it kept telling me there was an "unspecified error" I then checked my security settings, which had changed and I found were not working properly. I could not turn my firewall on and was given the option to do it manually. My laptop was also sounding busy, when I was not surfing. when I turned the laptop on I got messages saying "server busy" This action cannot be completed because the other program is busy. I downloaded and ran malawarebyte's Anti Malware. It found 35 infections. These were vundo, worm.agent, errorfix.installer.exe which the programme removed. (Sorry, had I known I would need to ask you for help in the end, I would not have done so) Every time I click on a link, or open a web site, AVG8 Free is removing spyware like Webtrends etc and my laptop is slow. I have installed IE8.

Here are the required files, I would appreciate your help.


DDS (Ver_09-05-14.01) - NTFSx86
Run by tadpole at 16:33:57.18 on 23/06/2009
Internet Explorer: 8.0.6001.18783 BrowserJavaVersion: 1.6.0_14
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.44.1033.18.2046.980 [GMT 2:00]

SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\System32\svchost.exe -k Cognizance
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
C:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k apphost
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\CISVC.EXE
C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Windows\system32\locator.exe
C:\Windows\System32\tcpsvcs.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\System32\snmp.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k iissvcs
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\SearchFilterHost.exe
C:\PROGRA~1\COFFEE~1\FreeZip\cczip.exe
C:\Users\tadpole\Desktop\dds.scr
C:\Windows\system32\conime.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.hotmail.com/
uDefault_Page_URL = hxxp://www.msn.com
mStart Page = hxxp://www.msn.com
mDefault_Page_URL = hxxp://www.msn.com
uInternet Settings,ProxyOverride = localhost;*.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File
BHO: VeriSoft Access Manager: {df21f1db-80c6-11d3-9483-b03d0ec10000} - c:\program files\bioscrypt\verisoft\bin\ItIEAddIn.dll
TB: {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - No File
TB: {A58686ED-FC46-44C3-95C6-4A812AB776F1} - No File
TB: {855F3B16-6D32-4FE6-8A56-BBB695989046} - No File
TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [Messenger (Yahoo!)] "c:\progra~1\yahoo!\messen~1\YAHOOM~1.EXE" -quiet
uRun: [ManyCam] "c:\program files\manycam 2.4\ManyCam.exe"
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [HP Health Check Scheduler] c:\program files\hewlett-packard\hp health check\HPHC_Scheduler.exe
mRun: [CognizanceTS] rundll32.exe c:\progra~1\bioscr~1\verisoft\bin\ASTSVCC.dll,RegisterModule
mRun: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe"
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam10\QuickCam10.exe" /hide
dRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
StartupFolder: c:\users\tadpole\appdata\roaming\micros~1\windows\startm~1\programs\startup\platin~1.lnk - c:\users\tadpole\appdata\roaming\microsoft\installer\{56b29499-a2b7-44f4-834e-ec5c18c47311}\_16496df1.exe
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC}
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - {552781AF-37E4-4FEE-920A-CED9E648EADD} - c:\program files\common files\microsoft shared\encarta search bar\ENCSBAR.DLL
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {678940D3-080C-4FCE-A54D-D443E1177F01} - hxxps://www.coolroom.com/ActiveX/ax.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Name-Space Handler: ftp\* - {419A0123-4312-1122-A0C0-434FDA6DA542} - c:\program files\coreftp\pftpns.dll
AppInit_DLLs: APSHook.dll,avgrsstx.dll
LSA: Notification Packages = scecli ASWLNPkg

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-4-23 325896]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-4-23 108552]
R2 ASBroker;Logon Session Broker;c:\windows\system32\svchost.exe -k Cognizance [2008-10-4 21504]
R2 ASChannel;Local Communication Channel;c:\windows\system32\svchost.exe -k Cognizance [2008-10-4 21504]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-4-23 298776]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-12-1 47640]
R3 dc3d;USBCCGP filter driver (dc3d);c:\windows\system32\drivers\dc3d.sys [2009-1-15 15360]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;c:\windows\system32\drivers\ManyCam.sys [2008-1-14 21632]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2008-11-17 3668480]
S2 gupdate1c986b953cc5593;Google Update Service (gupdate1c986b953cc5593); [x]
S3 F;F; [x]
S3 FHLZXIGU;FHLZXIGU; [x]
S3 GBSPXVLBRC;GBSPXVLBRC; [x]
S3 mirrorv3;mirrorv3;c:\windows\system32\drivers\rminiv3.sys [2006-11-1 3328]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-6 34064]
S3 WMSvc;Web Management Service;c:\windows\system32\inetsrv\WMSvc.exe [2008-10-4 11264]
S3 WWQMFRMI;WWQMFRMI; [x]

=============== Created Last 30 ================

2009-06-23 16:33 <DIR> --d----- C:\My Zip Files
2009-06-23 16:33 <DIR> --d----- c:\program files\CoffeeCup Software
2009-06-23 16:32 2,415,480 a------- c:\program files\CoffeeFreeZipInstaller.exe
2009-06-23 16:26 3,430,674 a------- c:\program files\jZipV1.exe
2009-06-23 15:57 13,722,952 a------- c:\program files\winzip121.exe
2009-06-23 14:04 <DIR> --d----- c:\program files\Ken Ward's Zipper
2009-06-23 13:51 1,143,656 a------- c:\program files\wlsetup-web.exe
2009-06-22 19:18 <DIR> --d----- c:\program files\CCleaner
2009-06-22 19:16 3,247,736 a------- c:\program files\ccsetup220.exe
2009-06-22 18:01 <DIR> --d----- c:\users\tadpole\appdata\roaming\Malwarebytes
2009-06-22 18:01 <DIR> --d----- c:\programdata\Malwarebytes
2009-06-22 18:01 <DIR> --d----- c:\progra~2\Malwarebytes
2009-06-22 18:00 3,561,744 a------- c:\program files\mbam-setup.exe
2009-06-21 19:52 714,136 a------- c:\program files\JavaSetup6u14.exe
2009-06-21 14:07 124,264 a------- c:\program files\estool_CDROM.zip
2009-06-21 13:28 <DIR> --d----- c:\programdata\DAEMON Tools Lite
2009-06-21 13:28 <DIR> --d----- c:\progra~2\DAEMON Tools Lite
2009-06-21 13:18 721,904 a------- c:\windows\system32\drivers\sptd.sys
2009-06-20 10:50 <DIR> -cd-h--- c:\programdata\{7D4B3D1D-104E-4507-9123-568BC721B7E2}
2009-06-20 10:50 <DIR> -cd-h--- c:\progra~2\{7D4B3D1D-104E-4507-9123-568BC721B7E2}
2009-06-20 10:49 <DIR> --d----- c:\programdata\Transparent
2009-06-20 10:49 <DIR> --d----- c:\program files\Transparent
2009-06-20 10:49 <DIR> --d----- c:\progra~2\Transparent
2009-06-19 15:01 239,480 a------- c:\program files\BYKIDownloaderPC.exe
2009-06-19 12:52 83,479 a------- c:\windows\system32\wbem\ServiceModel.mof
2009-06-19 12:52 896 a------- c:\windows\system32\wbem\ServiceModel.mof.uninstall
2009-06-19 12:52 <DIR> --d----- c:\windows\system32\XPSViewer
2009-06-19 12:44 196,608 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf
2009-06-19 12:44 65,536 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx
2009-06-17 18:53 23,510,720 a------- c:\program files\dotnetfx.exe
2009-06-15 13:17 2,611,200 a------- C:\Image.iso
2009-06-14 13:58 <DIR> --dsh--- C:\found.001
2009-06-14 13:18 1,846,632 a------- c:\windows\system32\D3DCompiler_41.dll
2009-06-14 13:18 453,456 a------- c:\windows\system32\d3dx10_41.dll
2009-06-14 13:17 4,178,264 a------- c:\windows\system32\D3DX9_41.dll
2009-06-14 13:17 69,448 a------- c:\windows\system32\XAPOFX1_3.dll
2009-06-14 13:17 517,448 a------- c:\windows\system32\XAudio2_4.dll
2009-06-14 13:17 235,352 a------- c:\windows\system32\xactengine3_4.dll
2009-06-14 13:17 22,360 a------- c:\windows\system32\X3DAudio1_6.dll
2009-06-14 13:16 2,036,576 a------- c:\windows\system32\D3DCompiler_40.dll
2009-06-14 13:16 452,440 a------- c:\windows\system32\d3dx10_40.dll
2009-06-14 13:16 4,379,984 a------- c:\windows\system32\D3DX9_40.dll
2009-06-14 13:16 70,992 a------- c:\windows\system32\XAPOFX1_2.dll
2009-06-14 13:16 514,384 a------- c:\windows\system32\XAudio2_3.dll
2009-06-14 13:16 235,856 a------- c:\windows\system32\xactengine3_3.dll
2009-06-14 13:15 23,376 a------- c:\windows\system32\X3DAudio1_5.dll
2009-06-14 13:15 68,616 a------- c:\windows\system32\XAPOFX1_1.dll
2009-06-14 13:15 509,448 a------- c:\windows\system32\XAudio2_2.dll
2009-06-14 13:15 238,088 a------- c:\windows\system32\xactengine3_2.dll
2009-06-14 13:15 1,493,528 a------- c:\windows\system32\D3DCompiler_39.dll
2009-06-14 13:15 467,984 a------- c:\windows\system32\d3dx10_39.dll
2009-06-14 13:14 3,851,784 a------- c:\windows\system32\D3DX9_39.dll
2009-06-14 13:14 507,400 a------- c:\windows\system32\XAudio2_1.dll
2009-06-14 13:14 65,032 a------- c:\windows\system32\XAPOFX1_0.dll
2009-06-14 13:14 238,088 a------- c:\windows\system32\xactengine3_1.dll
2009-06-14 13:14 25,608 a------- c:\windows\system32\X3DAudio1_4.dll
2009-06-14 13:13 1,491,992 a------- c:\windows\system32\D3DCompiler_38.dll
2009-06-14 13:13 467,984 a------- c:\windows\system32\d3dx10_38.dll
2009-06-14 13:13 3,850,760 a------- c:\windows\system32\D3DX9_38.dll
2009-06-14 13:13 479,752 a------- c:\windows\system32\XAudio2_0.dll
2009-06-14 13:12 238,088 a------- c:\windows\system32\xactengine3_0.dll
2009-06-14 13:12 25,608 a------- c:\windows\system32\X3DAudio1_3.dll
2009-06-14 13:12 1,420,824 a------- c:\windows\system32\D3DCompiler_37.dll
2009-06-14 13:12 462,864 a------- c:\windows\system32\d3dx10_37.dll
2009-06-14 13:12 3,786,760 a------- c:\windows\system32\D3DX9_37.dll
2009-06-14 13:12 267,272 a------- c:\windows\system32\xactengine2_10.dll
2009-06-14 13:11 17,928 a------- c:\windows\system32\X3DAudio1_2.dll
2009-06-14 13:11 444,776 a------- c:\windows\system32\d3dx10_36.dll
2009-06-14 13:11 1,374,232 a------- c:\windows\system32\D3DCompiler_36.dll
2009-06-14 13:10 3,734,536 a------- c:\windows\system32\d3dx9_36.dll
2009-06-14 13:10 267,112 a------- c:\windows\system32\xactengine2_9.dll
2009-06-14 13:10 1,358,192 a------- c:\windows\system32\D3DCompiler_35.dll
2009-06-14 13:10 444,776 a------- c:\windows\system32\d3dx10_35.dll
2009-06-14 13:10 3,727,720 a------- c:\windows\system32\d3dx9_35.dll
2009-06-14 13:09 266,088 a------- c:\windows\system32\xactengine2_8.dll
2009-06-14 13:09 1,124,720 a------- c:\windows\system32\D3DCompiler_34.dll
2009-06-14 13:09 443,752 a------- c:\windows\system32\d3dx10_34.dll
2009-06-14 13:09 3,497,832 a------- c:\windows\system32\d3dx9_34.dll
2009-06-14 13:08 81,768 a------- c:\windows\system32\xinput1_3.dll
2009-06-14 13:08 261,480 a------- c:\windows\system32\xactengine2_7.dll
2009-06-14 13:08 15,128 a------- c:\windows\system32\x3daudio1_1.dll
2009-06-14 13:08 1,123,696 a------- c:\windows\system32\D3DCompiler_33.dll
2009-06-14 13:08 443,752 a------- c:\windows\system32\d3dx10_33.dll
2009-06-14 13:08 3,495,784 a------- c:\windows\system32\d3dx9_33.dll
2009-06-14 13:07 255,848 a------- c:\windows\system32\xactengine2_6.dll
2009-06-14 13:07 251,672 a------- c:\windows\system32\xactengine2_5.dll
2009-06-14 13:07 440,080 a------- c:\windows\system32\d3dx10.dll
2009-06-14 13:07 237,848 a------- c:\windows\system32\xactengine2_4.dll
2009-06-14 13:06 2,414,360 a------- c:\windows\system32\d3dx9_31.dll
2009-06-14 13:06 236,824 a------- c:\windows\system32\xactengine2_3.dll
2009-06-14 13:06 62,744 a------- c:\windows\system32\xinput1_2.dll
2009-06-14 13:03 2,297,552 a------- c:\windows\system32\d3dx9_26.dll
2009-06-14 13:01 <DIR> --d----- c:\program files\common files\Logitech
2009-06-14 12:54 0 a------- C:\Debug.QC6
2009-06-14 12:02 <DIR> --d----- c:\windows\system32\directx
2009-06-14 12:02 301,384 a------- c:\program files\dxwebsetup.exe
2009-06-14 10:15 <DIR> --d----- c:\program files\Samsung Diagnostics C Drive
2009-06-12 18:47 428,544 a------- c:\windows\system32\EncDec.dll
2009-06-12 18:47 293,376 a------- c:\windows\system32\psisdecd.dll
2009-06-12 18:47 217,088 a------- c:\windows\system32\psisrndr.ax
2009-06-12 18:47 177,664 a------- c:\windows\system32\mpg2splt.ax
2009-06-12 18:47 80,896 a------- c:\windows\system32\MSNP.ax
2009-06-12 17:12 0 a------- c:\windows\system32\ES
2009-06-12 16:44 <DIR> --d----- c:\program files\Bonjour
2009-06-11 16:16 862 a------- c:\windows\system32\termcap
2009-06-11 12:08 784,896 a------- c:\windows\system32\rpcrt4.dll
2009-06-11 10:51 2,033,152 a------- c:\windows\system32\win32k.sys
2009-06-11 10:48 636,928 a------- c:\windows\system32\localspl.dll
2009-06-10 18:52 <DIR> --d----- c:\program files\ManyCam 2.4
2009-06-10 17:41 <DIR> --d----- C:\found.000
2009-06-10 13:30 0 a------- c:\windows\LVtest.INI
2009-06-09 08:59 32,061 a------- c:\programdata\nvModes.dat
2009-06-09 08:59 32,061 a------- c:\progra~2\nvModes.dat
2009-06-09 08:59 <DIR> --d----- c:\programdata\NVIDIA
2009-06-08 22:49 119,458,744 a------- c:\program files\185.85_notebook_winvista_32bit_whql.exe
2009-06-08 19:55 18,895,728 a------- C:\Install_Messenger.exe
2009-06-08 15:48 <DIR> --d----- c:\program files\Bonjour(0)
2009-06-08 10:50 108,395 a------- c:\program files\ZapMessenger.zip
2009-06-05 19:42 93,978,624 a------- c:\windows\ocsetup_install_NetFx3.etl
2009-05-31 16:43 <DIR> -cd-h--- c:\programdata\{92E7A367-8E12-4830-AA70-29C32E331A81}
2009-05-31 16:43 <DIR> -cd-h--- c:\progra~2\{92E7A367-8E12-4830-AA70-29C32E331A81}
2009-05-29 20:32 107,864 a------- c:\windows\system32\tsccvid.dll
2009-05-29 20:32 <DIR> --d----- c:\windows\system32\QuickTime
2009-05-28 16:20 550,560 a------- c:\program files\WinPcap_4_0_2.exe
2009-05-27 17:19 2,945,816 a------- c:\program files\dotnetfx3setup.exe
2009-05-26 19:02 <DIR> --d----- c:\program files\WinPcap
2009-05-26 18:53 286 a------- C:\HP_RECOVERY (D) - Shortcut.lnk

==================== Find3M ====================

2009-06-22 17:10 143,360 a------- c:\windows\inf\infstrng.dat
2009-06-22 17:10 86,016 a------- c:\windows\inf\infpub.dat
2009-06-21 14:48 4,404 a------- c:\users\tadpole\appdata\roaming\wklnhst.dat
2009-06-21 14:08 442,080 a------- c:\program files\msgr9us.exe
2009-06-16 14:23 143,360 a------- c:\windows\inf\infstor.dat
2009-06-14 12:58 81,920 -------- c:\windows\bwUnin-6.1.4.36-8876480L.exe
2009-06-13 16:46 2,855 a------- c:\windows\pif\ESTOOL.PIF
2009-05-30 17:56 353,792 a------- c:\program files\DhtmlEd.msi
2009-05-09 07:50 915,456 a------- c:\windows\system32\wininet.dll
2009-05-09 07:34 71,680 a------- c:\windows\system32\iesetup.dll
2009-05-09 01:14 1,418,120 a------- c:\windows\system32\wdfcoinstaller01005.dll
2009-05-09 01:14 14,736 a------- c:\windows\system32\drivers\nuidfltr.sys
2009-05-08 08:30 14,839,864 a------- c:\program files\ManyCam.exe
2009-05-07 17:03 6,110,366 a------- c:\program files\Joomla_1.5.10-Stable-Full_Package.zip
2009-05-05 08:58 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-05-05 08:58 325,896 a------- c:\windows\system32\drivers\avgldx86.sys
2009-05-05 08:58 108,552 a------- c:\windows\system32\drivers\avgtdix.sys
2009-05-04 14:57 1,345,024 a------- c:\program files\iview423_setup.exe
2009-05-03 09:00 44,944 a------- c:\windows\system32\drivers\pxhelp20.sys
2009-05-02 15:10 135,168 a------- c:\program files\cagent.exe
2009-05-01 00:08 1,505,824 a------- c:\windows\system32\nvcpluir.dll
2009-05-01 00:08 1,194,528 a------- c:\windows\system32\nvcplui.exe
2009-05-01 00:08 1,358,368 a------- c:\windows\system32\nvsvsr.dll
2009-05-01 00:08 1,292,832 a------- c:\windows\system32\nvsvs.dll
2009-04-30 22:02 10,366,976 a------- c:\windows\system32\nvoglv32.dll
2009-04-30 22:02 9,850,016 a------- c:\windows\system32\drivers\nvlddmkm.sys
2009-04-30 22:02 7,593,472 a------- c:\windows\system32\nvd3dum.dll
2009-04-30 22:02 3,128,320 a------- c:\windows\system32\nvwgf2um.dll
2009-04-30 22:02 1,704,960 a------- c:\windows\system32\nvcuda.dll
2009-04-30 22:02 1,314,816 a------- c:\windows\system32\nvcuvenc.dll
2009-04-30 22:02 983,552 a------- c:\windows\system32\nvapi.dll
2009-04-30 22:02 795,104 a------- c:\windows\system32\dpinst.exe
2009-04-30 22:02 663,552 a------- c:\windows\system32\nvcuvid.dll
2009-04-30 22:02 457,248 a------- c:\windows\system32\nvudisp.exe
2009-04-30 22:02 143,360 a------- c:\windows\system32\nvcod146.dll
2009-04-30 22:02 143,360 a------- c:\windows\system32\nvcod.dll
2009-04-30 22:02 4,224 a------- c:\windows\system32\drivers\nvBridge.kmd
2009-04-30 12:30 13,119 a------- c:\users\tadpole\appdata\roaming\nvModes.dat
2009-04-26 09:32 457,248 a------- c:\windows\system32\nvuninst.exe
2009-04-24 14:40 11,887,061 a------- c:\program files\AllWebMenusSetup.exe
2009-04-23 21:30 63,049,904 a------- c:\program files\avg_free_stf_en_85_285a1462.exe
2009-04-23 15:17 625,011 a------- c:\program files\Windows6.0-KB917607-x64.msu
2009-04-23 14:21 815,096 a------- c:\program files\gzip-1.3.12-1-setup.exe
2009-04-21 19:22 1,144,168 a------- c:\program files\wlsetup-custom.exe
2009-04-19 18:15 20,480,808 a------- c:\program files\SkypeSetupFull.exe
2009-04-19 17:27 1,976,104 a------- c:\program files\SkypeSetup.exe
2009-04-07 16:11 5,434,488 a------- c:\program files\gimp_9281.exe
2009-04-07 15:05 1,005,270 a------- c:\program files\instzip3.exe
2009-03-21 18:26 6,650,368 a------- c:\program files\EyeballChat30.msi
2009-03-17 18:05 799,360 a------- c:\program files\search-engine-submitter.zip
2009-03-11 16:13 6,865,757 a------- c:\program files\IBP-Installer.exe
2009-02-28 18:09 1,064,736 a------- c:\program files\VB6.0-KB290887-X86.exe
2009-02-26 18:02 1,708,432 a------- c:\program files\install_easyshare.exe
2009-02-17 13:11 34,194,944 a------- c:\program files\AdbeRdr812_en_US.msi
2009-02-15 14:46 359,656 a------- c:\program files\msicuu2.exe
2009-02-15 14:01 13,257,640 a------- c:\program files\mpas-fe.exe
2009-02-11 17:50 6,084,312 a------- c:\program files\JustCamIt-1.1.0.exe
2009-02-10 15:25 476,696 a------- c:\program files\RealPlayer11GOLD.exe
2009-02-03 12:14 35,124,856 a------- c:\program files\AdbeRdr90_en_US.exe
2009-01-03 15:03 5,279,879 a------- c:\program files\JustCamIt-0.80.2.exe
2008-12-24 15:00 1,958,864 a------- c:\program files\TrendMicro_Downloader.exe
2008-12-21 18:50 769,824 a------- c:\program files\WebFerret6Setup.exe
2008-12-19 13:54 5,852,472 a------- c:\program files\ip-tools.exe
2008-12-15 17:24 2,945,816 a------- c:\users\tadpole\dotnetfx3setup.exe
2008-12-14 14:10 3,491,859 a------- c:\users\tadpole\coreftplite.exe
2008-12-13 14:24 6,117,192 a------- c:\users\tadpole\sp36812.exe
2008-12-11 18:13 5,852,472 a------- c:\users\tadpole\ip-tools.exe
2008-12-08 17:38 15,336,495 a------- c:\users\tadpole\alien-ip-setup.exe
2008-11-24 18:29 112,872 a------- c:\users\tadpole\appdata\roaming\GDIPFONTCACHEV1.DAT
2008-10-27 16:39 174 a--sh--- c:\program files\desktop.ini
2008-10-27 16:21 665,600 a------- c:\windows\inf\drvindex.dat
2008-04-02 23:01 32 a------- c:\programdata\ezsid.dat
2008-04-02 23:01 32 a------- c:\progra~2\ezsid.dat
2006-11-02 14:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 14:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 14:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 14:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 11:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 11:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2004-03-17 17:13 1,028,368 a------- c:\program files\vbrun60sp6.exe
2008-12-17 15:08 32,768 a--sh--- c:\windows\serviceprofiles\localservice\appdata\local\microsoft\windows\history\history.ie5\mshist012008121720081218\index.dat
2008-12-13 10:51 16 a--sh--- c:\windows\sminst\HPCD.sys
2009-03-06 17:20 1,384 a--sh--- c:\windows\system32\GroupPolicy000.dat

============= FINISH: 16:34:31.73 ===============

Attached Files

techsupport.zip (3.5 KB, 0 views)

tadpole90

Hallo

I need to add, that I had uninstalled the malawarebytes program, but not deleted it, I have just had a look and I got the full names of the problems it found , they are:-

rogue.ErrorFix
worm.Archive
rogue.Regtool
rogue.Installer
rogue.Trace
Trojan.vundo

My computer is very slow, my task manager has changed, instead of showing the running programs, it is showing the image and user name, CPU, memory and description, so I cannot end the "server busy" which is using my webcam icon to hide behind.

This morning I was unable to get any web pages until I turned off the firewall, which I had manually enabled.

I hope I havn't mucked things up

tadpole90

Hallo

Apologies, I see the forum is very busy.

It seems that some one or something is taking control of my firewall ,settings and laptop, as they keep being changed, almost as fast as I change them in order to be able to use it.

I have also found the following additional infections :

win32:Neptunia-ACL [trj]
Microsoft.Windows.SecurityCentre_disabled
Microsoft.Windows.Internetexplorer
virtumondo.sdn
Mediaplex

I cannot connect to any website, apart from messenger when my firewall is manually enabled, and when I turn it off, to access the net the connection keeps dropping. I have checked with my ISP and my satellite connection has been constant throughout the day.

tadpole90

Hallo,

Please can you close this post, I did send you an e mail a number of days ago requesting closure.

Thankyou