Tech Support Forum banner
Status
Not open for further replies.
1 - 3 of 3 Posts

·
Registered
Joined
·
1 Posts
Discussion Starter · #1 ·
hi my name is joe
i believe i have a virus every so often when im am browsing the web 40 pop ups will apear all at once, also sometimes when im am visiting a website it will redirect me to an other site.
i believe i have a few viruses, i found what they are called but i might have more than this "diwuzisi.dll" "jaduzumi.dll" "zusidebi.dll" but i might have more than that. please help. below is the DDS file





DDS (Ver_09-05-14.01) - NTFSx86
Run by joe at 17:17:14.79 on 23/05/2009
Internet Explorer: 7.0.6000.16809
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.44.1033.18.3070.1956 [GMT 1:00]

SP: Windows Defender *enabled* (Outdated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Kontiki\KService.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\snmp.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\TODDSrv.exe
C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files\IDM\Desktop SMS\DesktopSMS.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Kontiki\KHost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\TOSHIBA\Bluetooth Monitor\BtMon2.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Apoint2K\ApMsgFwd.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wuauclt.exe
C:\Users\joe\Documents\Autoruns[1]\autoruns.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\uTorrent\uTorrent.exe
c:\program files\windows defender\MpCmdRun.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\joe\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\32G1Y3FR\dds[1].scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.co.uk
mDefault_Page_URL = hxxp://www.google.co.uk
uInternet Settings,ProxyServer = http=127.0.0.1:9090
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: SearchSettings Class: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\search settings\kb127\SearchSettings.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0\bin\ssv.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.1.1309.3572\swg.dll
BHO: Windows Live Toolbar Helper: {bdbd1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
BHO: 1 (0x1) - No File
BHO: SearchSettings Class: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\search settings\kb127\SearchSettings.dll
TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
TB: {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - No File
TB: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - No File
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\TOSCDSPD.exe
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [kdx] c:\program files\kontiki\KHost.exe -all
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\StartRegistryBooster.exe
uRun: [nukewosato] Rundll32.exe "c:\programdata\diwuzisi\diwuzisi.dll",s
uRun: [94f75772] rundll32.exe "c:\programdata\zusidebi\zusidebi.dll",b
uRun: [CPM97c464ee] Rundll32.exe "c:\programdata\jaduzumi\jaduzumi.dll",a
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~1.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618; InfoPath.2)" -"http://www.miniclip.com/games/rule-the-beach-volleyball/en/"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [KeNotify] c:\program files\toshiba\utilities\KeNotify.exe
mRun: [SVPWUTIL] c:\program files\toshiba\utilities\SVPWUTIL.exe SVPwUTIL
mRun: [HWSetup] \HWSetup.exe hwSetUP
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
mRun: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
mRun: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
mRun: [NDSTray.exe] NDSTray.exe
mRun: [Desktop SMS] c:\program files\idm\desktop sms\DesktopSMS.exe /auto
mRun: [topi] c:\program files\toshiba\toshiba online product information\topi.exe -startup
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe"
mRun: [Camera Assistant Software] "c:\program files\camera assistant software for toshiba\traybar.exe"
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [Toshiba Registration] c:\program files\toshiba\registration\ToshibaRegistration.exe
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [Symantec PIF AlertEng] "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\pifsvc.exe" /a /m "c:\program files\common files\symantec shared\pif\{b8e1dd85-8582-4c61-b58f-2f227fca9a08}\AlertEng.dll"
mRun: [SearchSettings] c:\program files\search settings\SearchSettings.exe
mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe"
mRun: [PhilipsSA33XXDM] c:\program files\philips\sa33xx\philips device manager\bin\LaunchDM.exe OS_STARTUP
mRun: [Performance Center] c:\program files\ascentive\performance center\APCMain.exe -m
mRun: [ActiveSpeed] c:\program files\ascentive\activespeed\AS.exe -b
mRun: [Skytel] Skytel.exe
dRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
StartupFolder: c:\users\joe\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\toshiba\bluetooth monitor\BtMon2.exe
IE: {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/710-44557-9400-3/4
IE: {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home
IE: {C08CAF1D-C0A3-40D5-9970-06D067EAC017} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?EN
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
TCP: NameServer = 85.255.112.65,85.255.112.230
TCP: {14E7FAFB-E0E3-4E14-BCC9-C13EB353E4B0} = 85.255.112.65,85.255.112.230
TCP: {82BCC8BF-B8FB-4A14-8193-A5AC512F67C0} = 85.255.112.65,85.255.112.230
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Notify: igfxcui - igfxdev.dll

============= SERVICES / DRIVERS ===============

R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2008-7-24 12856]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2008-11-9 47640]
S4 CplIR;Embedded IR Driver;c:\windows\system32\drivers\CplIR.sys [2007-3-6 14848]

=============== Created Last 30 ================

2009-05-22 14:29 <DIR> --d----- c:\programdata\jaduzumi
2009-05-22 14:29 <DIR> --d----- c:\programdata\dimadadu
2009-05-22 14:29 <DIR> --d----- c:\progra~2\jaduzumi
2009-05-22 14:29 <DIR> --d----- c:\progra~2\dimadadu
2009-05-21 21:49 <DIR> --d----- c:\programdata\zusidebi
2009-05-21 21:49 <DIR> --d----- c:\programdata\zegofadu
2009-05-21 21:49 <DIR> --d----- c:\progra~2\zusidebi
2009-05-21 21:49 <DIR> --d----- c:\progra~2\zegofadu
2009-05-20 17:17 <DIR> --d----- c:\programdata\surujesu
2009-05-20 17:17 <DIR> --d----- c:\programdata\bivayuye
2009-05-20 17:17 <DIR> --d----- c:\progra~2\surujesu
2009-05-20 17:17 <DIR> --d----- c:\progra~2\bivayuye
2009-05-19 19:05 <DIR> --d----- c:\programdata\bujivisi
2009-05-19 19:05 <DIR> --d----- c:\progra~2\bujivisi
2009-05-19 19:04 <DIR> --d----- c:\programdata\fujegifu
2009-05-19 19:04 <DIR> --d----- c:\progra~2\fujegifu
2009-05-19 19:04 <DIR> --d----- c:\programdata\piwinala
2009-05-19 19:04 <DIR> --d----- c:\progra~2\piwinala
2009-05-18 18:34 <DIR> --d----- c:\programdata\gokegubo
2009-05-18 18:34 <DIR> --d----- c:\progra~2\gokegubo
2009-05-18 18:34 <DIR> --d----- c:\programdata\huginoke
2009-05-18 18:34 <DIR> --d----- c:\progra~2\huginoke
2009-05-17 16:04 <DIR> --d----- c:\programdata\wutakizu
2009-05-17 16:04 <DIR> --d----- c:\programdata\pusupuro
2009-05-17 16:04 <DIR> --d----- c:\progra~2\wutakizu
2009-05-17 16:04 <DIR> --d----- c:\progra~2\pusupuro
2009-05-16 22:09 <DIR> --d----- c:\programdata\tejoluze
2009-05-16 22:09 <DIR> --d----- c:\programdata\mazihihe
2009-05-16 22:09 <DIR> --d----- c:\progra~2\tejoluze
2009-05-16 22:09 <DIR> --d----- c:\progra~2\mazihihe
2009-05-16 12:21 <DIR> --d----- c:\program files\HOTLLAMA Media
2009-05-16 12:20 368,912 a------- c:\windows\system32\vbar332.dll
2009-05-16 12:20 326,656 a------- c:\windows\system32\temp.000
2009-05-15 17:35 <DIR> --d----- c:\programdata\milufuro
2009-05-15 17:35 <DIR> --d----- c:\progra~2\milufuro
2009-05-15 17:35 <DIR> --d----- c:\programdata\jurevewa
2009-05-15 17:35 <DIR> --d----- c:\programdata\bihomimo
2009-05-15 17:35 <DIR> --d----- c:\progra~2\jurevewa
2009-05-15 17:35 <DIR> --d----- c:\progra~2\bihomimo
2009-05-14 21:00 <DIR> --d----- c:\programdata\vajoneyo
2009-05-14 21:00 <DIR> --d----- c:\programdata\temekatu
2009-05-14 21:00 <DIR> --d----- c:\progra~2\vajoneyo
2009-05-14 21:00 <DIR> --d----- c:\progra~2\temekatu
2009-05-13 16:46 <DIR> --d----- c:\programdata\yonevena
2009-05-13 16:46 <DIR> --d----- c:\progra~2\yonevena
2009-05-13 16:46 <DIR> --d----- c:\programdata\fapawozi
2009-05-13 16:46 <DIR> --d----- c:\progra~2\fapawozi
2009-05-12 18:08 <DIR> --d----- c:\programdata\tukejavi
2009-05-12 18:08 <DIR> --d----- c:\programdata\rokonuge
2009-05-12 18:08 <DIR> --d----- c:\progra~2\tukejavi
2009-05-12 18:08 <DIR> --d----- c:\progra~2\rokonuge
2009-05-11 19:17 <DIR> --d----- c:\programdata\movanama
2009-05-11 19:17 <DIR> --d----- c:\programdata\kudafane
2009-05-11 19:17 <DIR> --d----- c:\progra~2\movanama
2009-05-11 19:17 <DIR> --d----- c:\progra~2\kudafane
2009-05-10 17:39 <DIR> --d----- c:\programdata\tapeyeni
2009-05-10 17:39 <DIR> --d----- c:\programdata\barihuye
2009-05-10 17:39 <DIR> --d----- c:\progra~2\tapeyeni
2009-05-10 17:39 <DIR> --d----- c:\progra~2\barihuye
2009-05-09 12:13 <DIR> --d----- c:\programdata\jebojope
2009-05-09 12:13 <DIR> --d----- c:\programdata\buzozati
2009-05-09 12:13 <DIR> --d----- c:\progra~2\jebojope
2009-05-09 12:13 <DIR> --d----- c:\progra~2\buzozati
2009-05-08 13:11 <DIR> --d----- c:\programdata\miyahewe
2009-05-08 13:11 <DIR> --d----- c:\progra~2\miyahewe
2009-05-08 13:11 <DIR> --d----- c:\programdata\pojavihu
2009-05-08 13:11 <DIR> --d----- c:\progra~2\pojavihu
2009-05-07 17:52 <DIR> --d----- c:\programdata\pozapevi
2009-05-07 17:52 <DIR> --d----- c:\programdata\diwuzisi
2009-05-07 17:52 <DIR> --d----- c:\programdata\banupuyo
2009-05-07 17:52 <DIR> --d----- c:\progra~2\pozapevi
2009-05-07 17:52 <DIR> --d----- c:\progra~2\diwuzisi
2009-05-07 17:52 <DIR> --d----- c:\progra~2\banupuyo
2009-05-07 17:52 <DIR> --d----- c:\programdata\wokozupi
2009-05-07 17:52 <DIR> --d----- c:\programdata\vijohato
2009-05-07 17:52 <DIR> --d----- c:\programdata\bisepufi
2009-05-07 17:52 <DIR> --d----- c:\progra~2\wokozupi
2009-05-07 17:52 <DIR> --d----- c:\progra~2\vijohato
2009-05-07 17:52 <DIR> --d----- c:\progra~2\bisepufi
2009-05-06 19:05 <DIR> --d----- c:\programdata\komabagi
2009-05-06 19:05 <DIR> --d----- c:\programdata\kimupabe
2009-05-06 19:05 <DIR> --d----- c:\progra~2\komabagi
2009-05-06 19:05 <DIR> --d----- c:\progra~2\kimupabe
2009-05-05 11:54 <DIR> --d----- c:\programdata\repeseza
2009-05-05 11:54 <DIR> --d----- c:\programdata\biyupufe
2009-05-05 11:54 <DIR> --d----- c:\progra~2\repeseza
2009-05-05 11:54 <DIR> --d----- c:\progra~2\biyupufe
2009-05-04 11:56 <DIR> --d----- c:\programdata\jibilidi
2009-05-04 11:56 <DIR> --d----- c:\programdata\fobunayi
2009-05-04 11:56 <DIR> --d----- c:\progra~2\jibilidi
2009-05-04 11:56 <DIR> --d----- c:\progra~2\fobunayi
2009-05-03 22:08 <DIR> --d----- c:\programdata\fikisezi
2009-05-03 22:08 <DIR> --d----- c:\progra~2\fikisezi
2009-05-03 21:48 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-05-03 21:47 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-05-03 19:37 850 a------- c:\windows\system32\ProductTweaks.xml
2009-05-03 19:37 385 a------- c:\windows\system32\user_gensett.xml
2009-05-03 19:33 <DIR> --d----- c:\windows\system32\logs
2009-05-03 19:33 <DIR> --d----- c:\program files\common files\MSSoap
2009-05-03 19:02 <DIR> --d----- c:\windows\system32\URTTEMP
2009-05-03 10:08 <DIR> --d----- c:\programdata\yoduseya
2009-05-03 10:08 <DIR> --d----- c:\programdata\yajulose
2009-05-03 10:08 <DIR> --d----- c:\programdata\soyopuvo
2009-05-03 10:08 <DIR> --d----- c:\progra~2\yoduseya
2009-05-03 10:08 <DIR> --d----- c:\progra~2\yajulose
2009-05-03 10:08 <DIR> --d----- c:\progra~2\soyopuvo
2009-05-03 10:07 <DIR> --d----- c:\programdata\yibavisu
2009-05-03 10:07 <DIR> --d----- c:\programdata\wesofege
2009-05-03 10:07 <DIR> --d----- c:\programdata\vunogenu
2009-05-03 10:07 <DIR> --d----- c:\progra~2\yibavisu
2009-05-03 10:07 <DIR> --d----- c:\progra~2\wesofege
2009-05-03 10:07 <DIR> --d----- c:\progra~2\vunogenu
2009-05-03 10:07 <DIR> --d----- c:\programdata\mujuluro
2009-05-03 10:07 <DIR> --d----- c:\progra~2\mujuluro
2009-05-02 18:26 <DIR> --d----- c:\programdata\lenidure
2009-05-02 18:26 <DIR> --d----- c:\progra~2\lenidure
2009-05-02 18:26 <DIR> --d----- c:\programdata\masutora
2009-05-02 18:26 <DIR> --d----- c:\progra~2\masutora
2009-05-02 18:26 <DIR> --d----- c:\programdata\fubabebu
2009-05-02 18:26 <DIR> --d----- c:\progra~2\fubabebu
2009-05-02 18:20 <DIR> --d----- c:\programdata\zahutova
2009-05-02 18:20 <DIR> --d----- c:\programdata\kababaga
2009-05-02 18:20 <DIR> --d----- c:\programdata\duzowufe
2009-05-02 18:20 <DIR> --d----- c:\progra~2\zahutova
2009-05-02 18:20 <DIR> --d----- c:\progra~2\kababaga
2009-05-02 18:20 <DIR> --d----- c:\progra~2\duzowufe
2009-04-29 18:36 <DIR> --d----- c:\program files\BreakPoint Software

==================== Find3M ====================

2009-05-03 21:56 174 a--sh--- c:\program files\desktop.ini
2009-05-03 21:49 51,200 a------- c:\windows\inf\infpub.dat
2009-05-03 21:49 143,360 a------- c:\windows\inf\infstrng.dat
2009-05-03 21:49 86,016 a------- c:\windows\inf\infstor.dat
2009-05-03 21:42 101,376 a------- c:\windows\system32\ifxcardm.dll
2009-05-03 21:42 79,872 a------- c:\windows\system32\axaltocm.dll
2009-05-03 21:30 665,600 a------- c:\windows\inf\drvindex.dat
2009-05-03 19:27 81,984 a------- c:\windows\system32\bdod.bin
2008-11-09 20:59 712 a------- c:\users\joe\appdata\roaming\wklnhst.dat
2006-11-02 13:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 13:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 13:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 13:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 10:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 10:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 10:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 10:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2008-10-14 16:20 16,384 a--sh--- c:\windows\temp\cookies\index.dat
2008-10-14 16:20 16,384 a--sh--- c:\windows\temp\history\history.ie5\index.dat
2008-10-14 16:20 32,768 a--sh--- c:\windows\temp\temporary internet files\content.ie5\index.dat

============= FINISH: 17:19:33.20 ===============
 

Attachments

·
Premium Member
Joined
·
29,790 Posts
Hello and Welcome to TSF.

Please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

Please explain why this computer has no antivirus program installed and running. This is an open invitation for infection.

It can take as little as eight seconds to infect an unprotected computer.

Please keep this computer offline except when downloading tools and posting in the forum until we get one installed.

------------------------------------------------------

It appears you attached a shortcut to the gmer log, instead of the log itself. Please attach the ark.txt file to your next reply. If you didn't save it, you will have to run gmer again.

------------------------------------------------------
 

·
Premium Member
Joined
·
29,790 Posts
Due to lack of response, this topic will now be closed. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

IMPORTANT - Read This Before Posting For Malware Removal Help

------------------------------------------------------
 
1 - 3 of 3 Posts
Status
Not open for further replies.
Top