Jump to content

when Copying Youtube URLS they paste as http://www.savetubevideo.com/....


Recommended Posts

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29

Run by Stephen Clark at 17:58:35 on 2011-11-18

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1015.163 [GMT 0:00]

.

AV: AVG Internet Security 2012 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}

FW: AVG Firewall *Disabled*

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup

svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe

C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe

C:\WINDOWS\System32\svchost.exe -k Akamai

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\AVG\AVG2012\avgfws.exe

C:\Program Files\AVG\AVG2012\avgwdsvc.exe

C:\Program Files\Bonjour\mDNSResponder.exe

svchost.exe

C:\Program Files\COMODO\COMMON\COSService.exe

C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\lxcfcoms.exe

C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe

C:\Program Files\COMODO\COMMON\SynchronizationService.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\AVG\AVG2012\avgnsx.exe

C:\Program Files\AVG\AVG2012\avgemcx.exe

C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe

C:\Program Files\AVG\AVG2012\avgrsx.exe

C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe

C:\Program Files\AVG\AVG2012\avgcsrvx.exe

C:\Program Files\AVG\AVG2012\avgcsrvx.exe

svchost.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\EeePC\ACPI\AsTray.exe

C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe

C:\WINDOWS\system32\igfxext.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files\EeePC\ACPI\AsEPCMon.exe

C:\Program Files\Elantech\ETDCtrl.exe

C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

C:\WINDOWS\system32\hkcmd.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\WINDOWS\RTHDCPL.EXE

C:\Program Files\AVG\AVG2012\avgtray.exe

C:\Program Files\Taskbar Shuffle\taskbarshuffle.exe

C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe

C:\Program Files\YoutubeDownloader.org\YouTubeDownloader\YouTube Mini.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application Data\Akamai\netsession_win.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application Data\Akamai\netsession_win.exe

C:\Program Files\Asus\EeePC\Super Hybrid Engine\SuperHybridEngine.exe

c:\progra~1\common~1\instal~1\update~1\isuspm.exe

C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\agent.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files\AVG\AVG2012\avgui.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\system32\msiexec.exe

C:\Documents and Settings\Stephen Clark\Local Settings\Application

Data\Google\Chrome\Application\chrome.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\system32\SearchProtocolHost.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.starwebsearch.com/index.php?from=3

uInternet Connection Wizard,ShellNext = hxxp://eeepc.asus.com/global

uInternet Settings,ProxyServer = 192.104.67.250:8080

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: H - No File

uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} -

c:\progra~1\mcafee\sitead~1\mcieplg.dll

uURLSearchHooks: ZoneAlarm Toolbar: {66f2e20d-0da8-4c11-a9c8-dd8477b88acd} - c:\program

files\zonealarm\tbZon1.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program

files\avg\avg2012\avgssie.dll

uRun: [Taskbar Shuffle] c:\program files\taskbar shuffle\taskbarshuffle.exe

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

uRun: [Google Update] "c:\documents and settings\stephen clark\local settings\application

data\google\update\GoogleUpdate.exe" /c

uRun: [Advanced SystemCare 4] c:\program files\iobit\advanced systemcare 4\ASCTray.exe

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

uRun: [YouTube Mini] c:\program files\youtubedownloader.org\youtubedownloader\YouTube Mini.exe

uRun: [Akamai NetSession Interface] c:\documents and settings\stephen clark\local settings\application

data\akamai\netsession_win.exe

mRun: [AsusTray] c:\program files\eeepc\acpi\AsTray.exe

mRun: [AsusACPIServer] c:\program files\eeepc\acpi\AsAcpiSvr.exe

mRun: [AsusEPCMonitor] c:\program files\eeepc\acpi\AsEPCMon.exe

mRun: [ETDWare] c:\program files\elantech\ETDCtrl.exe

mRun: [iSUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup

mRun: [iSUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device

support\AppleSyncNotifier.exe

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime

mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"

mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [HTC Sync Loader] "c:\program files\htc\htc sync 3.0\htcUPCTLoader.exe" -startup

mRun: [RTHDCPL] RTHDCPL.EXE

mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\superh~1.lnk - c:\program

files\asus\eeepc\super hybrid engine\SuperHybridEngine.exe

uPolicies-explorer: NoInstrumentation = 1 (0x1)

IE: Download with GetRight - d:\program files\getright\GRdownload.htm

IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000

IE: Free YouTube Download - c:\documents and settings\stephen clark\application

data\dvdvideosoftiehelpers\freeyoutubedownload.htm

IE: Free YouTube to MP3 Converter - c:\documents and settings\stephen clark\application

data\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm

IE: Open with GetRight Browser - d:\program files\getright\GRdownload.htm

DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} -

file:///C:/Program%20Files/SCRABBLE/Images/stg_drm.ocx

DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} -

hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.4.8.cab

DPF: {5727FF4C-EF4E-4d96-A96C-03AD91910448} - hxxp://www.srtest.com/srl_bin/sysreqlab_ind.cab

DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} -

hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1230224

567844

DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -

hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1230224

538234

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} -

hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-27-0.cab

DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -

hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} -

file:///C:/Program%20Files/SCRABBLE/Images/armhelper.ocx

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -

hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -

hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 192.168.0.10

TCP: Interfaces\{E767158F-78DB-4F3C-BCAC-45B3DCD881CE} : DhcpNameServer = 192.168.0.10

Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} -

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program

files\avg\avg2012\avgpp.dll

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} -

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -

c:\progra~1\common~1\skype\SKYPE4~1.DLL

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} -

c:\windows\system32\WPDShServiceObj.dll

SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} -

c:\program files\windows desktop search\MSNLNamespaceMgr.dll

Hosts: 127.0.0.1 www.spywareinfo.com

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\stephen clark\application

data\mozilla\firefox\profiles\337rvsjf.default\

FF - prefs.js: browser.search.selectedEngine - Custom search

FF - prefs.js: browser.startup.homepage - hxxp://www.starwebsearch.com/index.php?from=3

FF - prefs.js: keyword.URL - hxxp://www.starwebsearch.com/results.php?q=

FF - prefs.js: network.proxy.ftp - 194.36.10.156

FF - prefs.js: network.proxy.ftp_port - 3127

FF - prefs.js: network.proxy.gopher - 194.36.10.156

FF - prefs.js: network.proxy.gopher_port - 3127

FF - prefs.js: network.proxy.http - 194.36.10.156

FF - prefs.js: network.proxy.http_port - 3127

FF - prefs.js: network.proxy.socks - 194.36.10.156

FF - prefs.js: network.proxy.socks_port - 3127

FF - prefs.js: network.proxy.ssl - 194.36.10.156

FF - prefs.js: network.proxy.ssl_port - 3127

FF - prefs.js: network.proxy.type - 4

FF - component: c:\program files\avg\avg2012\firefox\components\avgssff.dll

FF - plugin: c:\documents and settings\stephen clark\local settings\application

data\google\update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll

FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll

FF - plugin: c:\program files\google\update\1.2.133.37\npGoogleOneClick7.dll

FF - plugin: c:\program files\google\update\1.2.141.5\npGoogleOneClick7.dll

FF - plugin: c:\program files\google\update\1.2.183.13\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.2.183.17\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.2.183.23\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.2.183.29\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll

FF - plugin: c:\program files\google\update\1.3.21.53\npGoogleUpdate3.dll

FF - plugin: c:\program files\google\update\1.3.21.65\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\program files\microsoft\office live\npOLW.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll

FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

FF - plugin: d:\program files\divx\divx player\npDivxPlayerPlugin.dll

FF - plugin: d:\program files\divx\divx web player\npdivx32.dll

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - c:\program files\mozilla

firefox\extensions\{CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA}

FF - Ext: AVG Safe Search: {3f963a5b-e555-4543-90e2-c3908898db71} - c:\program

files\avg\avg2012\Firefox

.

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]

R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592]

R0 bdisk;COMODO Disk Raw Access Filter;c:\windows\system32\drivers\bdisk.sys [2011-10-25 76496]

R0 CBUfs;CBUFS;c:\windows\system32\drivers\cbufs.sys [2011-10-25 182464]

R0 cbvd;CBVD;c:\windows\system32\drivers\CBVD.sys [2011-10-25 453872]

R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2010-1-5 385536]

R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys

[2011-7-10 13496]

R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608]

R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys

[2011-8-8 40016]

R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]

R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [2010-4-7 82952]

R1 ts_lb;ts_lb;c:\windows\system32\drivers\ts_lb.sys [2009-7-2 24376]

R2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\iobit\advanced

systemcare 4\ASCService.exe [2011-4-15 328536]

R2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2008-7-3 14336]

R2 avgfws;AVG Firewall;c:\program files\avg\avg2012\avgfws.exe [2011-10-24 2398512]

R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]

R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]

R2 CodeMeter.exe;CodeMeter Runtime Server;c:\program files\codemeter\runtime\bin\CodeMeter.exe

[2011-1-19 2078096]

R2 COSService.exe;Comodo Online Storage Service;c:\program files\comodo\common\COSService.exe

[2011-10-25 1933104]

R2 IMFservice;IMF Service;c:\program files\iobit\iobit malware fighter\IMFsrv.exe [2011-7-23 820568]

R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\common

files\mcafee\systemcore\mfevtps.exe [2010-4-7 141792]

R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet

pass-through\PassThruSvr.exe [2011-8-12 87040]

R2 SynchronizationService.exe;Comodo BackUp Service;c:\program

files\comodo\common\SynchronizationService.exe [2011-10-25 1617200]

R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2011-5-23 30944]

R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134608]

R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272]

R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720]

R3 CamdAudio;CamdAudio;c:\windows\system32\drivers\CamdAudio.sys [2011-9-24 23608]

R3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\drivers\ETD.sys [2008-7-24 129024]

R3 vdbus;Virtual Disk Bus Enumerator;c:\windows\system32\drivers\vdbus.sys [2011-10-25 599992]

S2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe

[2010-4-7 188136]

S3 AF05BDA;AF9005 BDA Device;c:\windows\system32\drivers\AF05BDA.sys [2011-9-1 133504]

S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-8-13 1691480]

S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2011-5-23 30944]

S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-4-7 55456]

S3 CV2K1;CommView Network Monitor;c:\windows\system32\drivers\cv2k1.sys [2009-7-2 19496]

S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2011-6-2 13224]

S3 GSService;GSService;c:\windows\system32\GSService.exe [2011-9-24 450048]

S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2010-5-31 24576]

S3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\drivers\htcnprot.sys [2010-6-22 21248]

S3 L6TPortB;Service - Line 6 TonePort UX2;c:\windows\system32\drivers\l6tportb.sys -->

c:\windows\system32\drivers\L6TPortB.sys [?]

S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys -->

c:\windows\system32\drivers\mbamswissarmy.sys [?]

S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [2010-4-7

88480]

S3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [2010-4-7 88480]

S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-1-25 42000]

S3 RegFilter;RegFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\RegFilter.sys

[2011-7-23 30368]

S3 reparse;Reparse;c:\windows\system32\drivers\cbreparse.sys [2011-10-25 444072]

S3 RTL8192cu;Realtek RTL8192CU Wireless LAN 802.11n USB 2.0 Network

Adapter;c:\windows\system32\drivers\rtl8192cu.sys [2011-5-24 894696]

S3 SMServer;SMServer;c:\windows\system32\snmvtsvc.exe [2011-9-24 244736]

S3 UrlFilter;UrlFilter;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\UrlFilter.sys [2011-7-23

16080]

S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k

WINRM [2008-7-3 14336]

S4 FileMonitor;FileMonitor;c:\program files\iobit\iobit malware fighter\drivers\wxp_x86\FileMonitor.sys

[2011-7-23 239600]

.

=============== Created Last 30 ================

.

2011-11-18 17:49:14 388096 ----a-r- c:\documents and settings\stephen clark\application

data\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe

2011-11-18 17:48:41 -------- d-----w- c:\program files\Trend Micro

2011-11-18 03:58:45 -------- d-----w- c:\documents and settings\stephen clark\application

data\Malwarebytes

2011-11-18 03:58:12 -------- d-----w- c:\documents and settings\all users\application

data\Malwarebytes

2011-11-18 03:58:02 22216 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-11-18 03:58:02 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-11-18 00:48:32 -------- d--h--w- C:\$AVG

2011-11-17 22:55:57 -------- d-----w- c:\documents and settings\stephen clark\application

data\AVG2012

2011-11-17 22:55:39 -------- d--h--w- c:\documents and settings\all users\application

data\Common Files

2011-11-17 22:49:14 -------- d-----w- c:\windows\system32\drivers\AVG

2011-11-17 22:49:09 -------- d-----w- c:\documents and settings\all users\application

data\AVG2012

2011-11-17 22:46:41 -------- d-----w- c:\program files\AVG

2011-11-17 22:41:58 -------- d-----w- c:\documents and settings\all users\application

data\MFAData

2011-11-05 03:42:40 30840618 ---ha-w- c:\windows\cbufsscansysdmp.bin

2011-11-04 02:07:24 -------- d-----w- c:\documents and settings\stephen clark\My Backups

2011-11-04 01:34:58 -------- d-----w- c:\program files\COMODO

2011-11-04 01:34:32 1060864 ----a-w- c:\windows\system32\mfc71.dll

2011-11-03 22:32:04 -------- d-----w- c:\windows\system32\NtmsData

2011-11-03 00:47:17 -------- d-----w- c:\documents and settings\stephen clark\local

settings\application data\Akamai

2011-11-02 00:39:31 16836 ----a-w- c:\windows\system32\drivers\RTAIODAT.DAT

2011-10-31 05:41:52 -------- d-----w- c:\program files\YoutubeDownloader.org

2011-10-25 05:03:08 599992 ----a-w- c:\windows\system32\drivers\vdbus.sys

2011-10-25 05:03:08 1460016 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll

2011-10-25 05:03:02 453872 ----a-w- c:\windows\system32\drivers\CBVD.sys

2011-10-25 05:02:52 182464 ----a-w- c:\windows\system32\drivers\cbufs.sys

2011-10-25 05:02:46 444072 ----a-w- c:\windows\system32\drivers\cbreparse.sys

2011-10-25 05:02:38 76496 ----a-w- c:\windows\system32\drivers\bdisk.sys

2011-10-21 01:39:06 -------- d-----w- c:\documents and settings\stephen clark\local

settings\application data\Htc

.

==================== Find3M ====================

.

2011-11-18 08:28:21 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-10-18 19:53:14 6439528 ----a-w- c:\windows\system32\drivers\RtkHDAud.sys

2011-10-18 18:10:30 64616 ----a-w- c:\windows\system32\RtkCoInstXP.dll

2011-10-14 18:58:12 20064872 ----a-w- c:\windows\RTHDCPL.EXE

2011-10-10 14:22:41 692736 ----a-w- c:\windows\system32\inetcomm.dll

2011-10-07 06:23:48 230608 ----a-w- c:\windows\system32\drivers\avgldx86.sys

2011-10-04 06:21:42 16720 ----a-w- c:\windows\system32\drivers\AVGIDSShim.sys

2011-10-03 04:06:03 472808 ----a-w- c:\windows\system32\deployJava1.dll

2011-10-03 01:37:52 73728 ----a-w- c:\windows\system32\javacpl.cpl

2011-09-28 07:06:50 599040 ----a-w- c:\windows\system32\crypt32.dll

2011-09-26 10:41:20 611328 ----a-w- c:\windows\system32\uiautomationcore.dll

2011-09-26 10:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll

2011-09-26 10:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll

2011-09-19 23:54:58 5688 ----a-w- c:\windows\system32\CamdVideo.sys

2011-09-19 23:54:58 14392 ----a-w- c:\windows\system32\CamdVideo.dll

2011-09-19 23:54:52 23608 ----a-w- c:\windows\system32\drivers\CamdAudio.sys

2011-09-19 23:54:52 23608 ----a-w- c:\windows\system32\CamdAudio.sys

2011-09-19 07:12:04 244736 ----a-w- c:\windows\system32\snmvtsvc.exe

2011-09-19 06:29:20 450048 ----a-w- c:\windows\system32\GSService.exe

2011-09-13 06:30:10 32592 ----a-w- c:\windows\system32\drivers\avgrkx86.sys

2011-09-06 13:20:51 1858944 ----a-w- c:\windows\system32\win32k.sys

2011-09-01 01:02:58 14 ----a-w- c:\windows\system32\systeminfo.dll

2011-08-31 19:12:00 1698408 ----a-w- c:\windows\RtlExUpd.dll

2011-08-30 22:05:04 83816 ----a-w- c:\windows\system32\dns-sd.exe

2011-08-30 22:05:04 73064 ----a-w- c:\windows\system32\dnssd.dll

2011-08-29 16:20:00 1493608 ----a-w- c:\windows\RtlUpd.exe

2011-08-22 23:48:55 916480 ----a-w- c:\windows\system32\wininet.dll

2011-08-22 23:48:54 43520 ----a-w- c:\windows\system32\licmgr10.dll

2011-08-22 23:48:54 1469440 ----a-w- c:\windows\system32\inetcpl.cpl

2011-08-22 11:56:39 385024 ----a-w- c:\windows\system32\html.iec

.

============= FINISH: 18:01:50.31 ===============

attach.zip

Link to post
Share on other sites

Hello sclark34! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/paste in your next reply.

Step 1

Please uninstall the following application: SweetIM Toolbar for Internet Explorer 4.1

Step 2

  • Launch Malwarebytes' Anti-Malware
  • Go to Update" tab and select Check for Updates.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

In your next reply, please post the following log files:

  • Malwarebytes' Anti-Malware log
  • a new fresh DDS log only

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.