Pollywaffle Posted October 22, 2010 ID:331969 Share Posted October 22, 2010 Whenever I search using Google or even just generally browsing the web, my page seems to get redirected and several tabs open whenever I click anything. This is happening on all of our work computers! Help!Let me know if you need any other information. I'm not good with this stuff.DDS (Ver_10-10-21.02) - NTFSx86 Run by Haley at 9:18:30.57 on 23/10/2010Internet Explorer: 8.0.6001.18975MicrosoftAttach.zip Link to post Share on other sites More sharing options...
LDTate Posted October 23, 2010 ID:332008 Share Posted October 23, 2010 DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.Vista and Windows 7 users:1. These tools MUST be run from the executable. (.exe) every time you run them 2. With Admin Rights (Right click, choose "Run as Administrator")Stay with this topic until I give you the all clean post.You might want to print these instructions out.I suggest you do this:XP UsersDouble-click My Computer. Click the Tools menu, and then click Folder Options. Click the View tab.Uncheck "Hide file extensions for known file types." Under the "Hidden files" folder, select "Show hidden files and folders." Uncheck "Hide protected operating system files." Click Apply, and then click OK.Vista UsersTo enable the viewing of hidden and protected system files in Windows Vista please follow these steps:Close all programs so that you are at your desktop.Click on the Start button. This is the small round button with the Windows flag in the lower left corner.Click on the Control Panel menu option.When the control panel opens you can either be in Classic View or Control Panel Home view: If you are in the Classic View do the following: Double-click on the Folder Options icon.Click on the View tab.If you are in the Control Panel Home view do the following: Click on the Appearance and Personalization link.Click on Show Hidden Files or Folders.Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.Remove the checkmark from the checkbox labeled Hide extensions for known file types.Remove the checkmark from the checkbox labeled Hide protected operating system files.Please do not delete anything unless instructed to. Next:Please download ATF Cleaner by Atribune.Download - ATF Cleaner Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333286 Share Posted October 25, 2010 Hi, thanks for your reply. I followed those directions. Malwarebytes didn't seem to find anything malicious. Here is the log. I still seem to be having the problem too.Malwarebytes' Anti-Malware 1.46www.malwarebytes.orgDatabase version: 4052Windows 6.0.6002 Service Pack 2Internet Explorer 8.0.6001.1897525/10/2010 12:31:39 PMmbam-log-2010-10-25 (12-31-39).txtScan type: Quick scanObjects scanned: 121764Time elapsed: 6 minute(s), 33 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected) Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333446 Share Posted October 25, 2010 Please download GooredFix from one of the locations below and save it to your DesktopDownload Mirror #1Download Mirror #2Ensure all Firefox windows are closed.To run the tool, double-click it (XP), or right-click and select Run As Administrator (Vista).When prompted to run the scan, click Yes.It doesn't take long to run, once it is finished move onto the next stepNext:Please read carefully and follow these steps. Please download TDSSKiller.zipExtract it to your desktopDouble click TDSSKiller.exePress Start ScanOnly if Malicious objects are found then ensure Cure is selectedThen click Continue > Reboot now[*]Copy and paste the log in your next replyA copy of the log will be saved automatically to the root directory, root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.please post the contents of that log TDSSKiller and GooredFix log.Also please describe how your computer behaves at the moment. Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333758 Share Posted October 25, 2010 I'm still having the problem after running those scans. The second scan said it found no malicious software again.GooredFix by jpshortstuff (03.07.10.1)Log created at 09:58 on 26/10/2010 (Haley)Firefox version 3.6.11 (en-GB)========== GooredScan ==================== GooredLog ==========C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [07:06 16/09/2009]C:\Users\Haley\Application Data\Mozilla\Firefox\Profiles\3s63c4m3.default\extensions\en-AU@dictionaries.addons.mozilla.org [00:09 09/12/2009]{20a82645-c095-46ed-80e3-08825760534b} [01:56 27/04/2010][HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]"{20a82645-c095-46ed-80e3-08825760534b}"="c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [09:38 11/04/2009]"smartwebprinting@hp.com"="C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn2" [00:38 21/09/2009]"{3f963a5b-e555-4543-90e2-c3908898db71}"="C:\Program Files\AVG\AVG8\Firefox" [07:03 21/09/2009]---------- Old Logs ----------GooredFix[22.54.04_25-10-2010].txtGooredFix[22.57.51_25-10-2010].txtGooredFix[22.58.04_25-10-2010].txt-=E.O.F=-2010/10/26 09:54:28.0936 TDSS rootkit removing tool 2.4.5.0 Oct 25 2010 09:49:042010/10/26 09:54:28.0936 ================================================================================2010/10/26 09:54:28.0936 SystemInfo:2010/10/26 09:54:28.0936 2010/10/26 09:54:28.0936 OS Version: 6.0.6002 ServicePack: 2.02010/10/26 09:54:28.0936 Product type: Workstation2010/10/26 09:54:28.0936 ComputerName: HALEY-PC2010/10/26 09:54:28.0936 UserName: Haley2010/10/26 09:54:28.0936 Windows directory: C:\Windows2010/10/26 09:54:28.0936 System windows directory: C:\Windows2010/10/26 09:54:28.0936 Processor architecture: Intel x862010/10/26 09:54:28.0936 Number of processors: 22010/10/26 09:54:28.0936 Page size: 0x10002010/10/26 09:54:28.0936 Boot type: Normal boot2010/10/26 09:54:28.0936 ================================================================================2010/10/26 09:54:29.0373 Initialize success2010/10/26 09:54:31.0994 ================================================================================2010/10/26 09:54:31.0994 Scan started2010/10/26 09:54:31.0994 Mode: Manual; 2010/10/26 09:54:31.0994 ================================================================================2010/10/26 09:54:33.0117 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys2010/10/26 09:54:33.0179 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys2010/10/26 09:54:33.0226 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys2010/10/26 09:54:33.0273 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys2010/10/26 09:54:33.0304 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys2010/10/26 09:54:33.0367 AFD (a201207363aa900abf1a388468688570) C:\Windows\system32\drivers\afd.sys2010/10/26 09:54:33.0398 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys2010/10/26 09:54:33.0429 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys2010/10/26 09:54:33.0460 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys2010/10/26 09:54:33.0491 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys2010/10/26 09:54:33.0507 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys2010/10/26 09:54:33.0554 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys2010/10/26 09:54:33.0585 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys2010/10/26 09:54:33.0632 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys2010/10/26 09:54:33.0663 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys2010/10/26 09:54:33.0694 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys2010/10/26 09:54:33.0725 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys2010/10/26 09:54:33.0803 AvgLdx86 (bc12f2404bb6f2b6b2ff3c4c246cb752) C:\Windows\System32\Drivers\avgldx86.sys2010/10/26 09:54:33.0866 AvgMfx86 (5903d729d4f0c5bca74123c96a1b29e0) C:\Windows\System32\Drivers\avgmfx86.sys2010/10/26 09:54:33.0913 AvgTdiX (92d8e1e8502e649b60e70074eb29c380) C:\Windows\System32\Drivers\avgtdix.sys2010/10/26 09:54:33.0959 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys2010/10/26 09:54:34.0006 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys2010/10/26 09:54:34.0022 bowser (74b442b2be1260b7588c136177ceac66) C:\Windows\system32\DRIVERS\bowser.sys2010/10/26 09:54:34.0053 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys2010/10/26 09:54:34.0084 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys2010/10/26 09:54:34.0131 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys2010/10/26 09:54:34.0178 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys2010/10/26 09:54:34.0225 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys2010/10/26 09:54:34.0256 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys2010/10/26 09:54:34.0271 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys2010/10/26 09:54:34.0318 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys2010/10/26 09:54:34.0349 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys2010/10/26 09:54:34.0381 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys2010/10/26 09:54:34.0412 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys2010/10/26 09:54:34.0474 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys2010/10/26 09:54:34.0490 Compbatt (4fc0a44da7603229e1a9454126a59efd) C:\Windows\system32\drivers\compbatt.sys2010/10/26 09:54:34.0521 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys2010/10/26 09:54:34.0583 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys2010/10/26 09:54:34.0630 DfsC (218d8ae46c88e82014f5d73d0236d9b2) C:\Windows\system32\Drivers\dfsc.sys2010/10/26 09:54:34.0677 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys2010/10/26 09:54:34.0739 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys2010/10/26 09:54:34.0771 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys2010/10/26 09:54:34.0802 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys2010/10/26 09:54:34.0833 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys2010/10/26 09:54:34.0880 DXGKrnl (5c7e2097b91d689ded7a6ff90f0f3a25) C:\Windows\System32\drivers\dxgkrnl.sys2010/10/26 09:54:34.0942 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys2010/10/26 09:54:34.0989 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys2010/10/26 09:54:35.0020 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys2010/10/26 09:54:35.0098 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys2010/10/26 09:54:35.0145 ErrDev (f2a80de2d1b7116052c09cb4d4ca1416) C:\Windows\system32\drivers\errdev.sys2010/10/26 09:54:35.0207 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys2010/10/26 09:54:35.0254 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys2010/10/26 09:54:35.0285 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys2010/10/26 09:54:35.0332 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys2010/10/26 09:54:35.0348 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys2010/10/26 09:54:35.0379 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys2010/10/26 09:54:35.0410 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys2010/10/26 09:54:35.0473 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys2010/10/26 09:54:35.0504 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys2010/10/26 09:54:35.0535 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys2010/10/26 09:54:35.0644 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys2010/10/26 09:54:35.0691 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys2010/10/26 09:54:35.0738 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys2010/10/26 09:54:35.0769 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys2010/10/26 09:54:35.0816 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys2010/10/26 09:54:35.0894 HSF_DPV (99f85640054ba65190b860d878a7c9ae) C:\Windows\system32\DRIVERS\HSX_DPV.sys2010/10/26 09:54:35.0941 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys2010/10/26 09:54:36.0034 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys2010/10/26 09:54:36.0081 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys2010/10/26 09:54:36.0128 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys2010/10/26 09:54:36.0175 iaStor (8ef427c54497c5f8a7a645990e4278c7) C:\Windows\system32\drivers\iastor.sys2010/10/26 09:54:36.0221 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys2010/10/26 09:54:36.0315 igfx (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys2010/10/26 09:54:36.0377 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys2010/10/26 09:54:36.0455 IntcAzAudAddService (daad0b351a544d3a76770f4bbd75260f) C:\Windows\system32\drivers\RTKVHDA.sys2010/10/26 09:54:36.0518 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys2010/10/26 09:54:36.0533 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys2010/10/26 09:54:36.0658 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys2010/10/26 09:54:36.0721 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys2010/10/26 09:54:36.0736 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys2010/10/26 09:54:36.0783 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys2010/10/26 09:54:36.0814 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys2010/10/26 09:54:36.0845 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys2010/10/26 09:54:36.0861 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys2010/10/26 09:54:36.0892 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys2010/10/26 09:54:36.0923 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys2010/10/26 09:54:36.0955 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys2010/10/26 09:54:37.0001 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys2010/10/26 09:54:37.0142 Lavasoft Kernexplorer (32da3fde01f1bb080c2e69521dd8881e) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys2010/10/26 09:54:37.0204 Lbd (b7c19ec8b0dd7efa58ad41ffeb8b8cda) C:\Windows\system32\DRIVERS\Lbd.sys2010/10/26 09:54:37.0235 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys2010/10/26 09:54:37.0267 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys2010/10/26 09:54:37.0298 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys2010/10/26 09:54:37.0329 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys2010/10/26 09:54:37.0345 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys2010/10/26 09:54:37.0376 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys2010/10/26 09:54:37.0423 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys2010/10/26 09:54:37.0469 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys2010/10/26 09:54:37.0516 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys2010/10/26 09:54:37.0547 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys2010/10/26 09:54:37.0594 motmodem (fe80c18ba448ddd76b7bead9eb203d37) C:\Windows\system32\DRIVERS\motmodem.sys2010/10/26 09:54:37.0641 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys2010/10/26 09:54:37.0672 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys2010/10/26 09:54:37.0688 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys2010/10/26 09:54:37.0719 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys2010/10/26 09:54:37.0750 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys2010/10/26 09:54:37.0781 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys2010/10/26 09:54:37.0813 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys2010/10/26 09:54:37.0844 mrxsmb (454341e652bdf5e01b0f2140232b073e) C:\Windows\system32\DRIVERS\mrxsmb.sys2010/10/26 09:54:37.0875 mrxsmb10 (2a4901aff069944fa945ed5bbf4dcde3) C:\Windows\system32\DRIVERS\mrxsmb10.sys2010/10/26 09:54:37.0922 mrxsmb20 (28b3f1ab44bdd4432c041581412f17d9) C:\Windows\system32\DRIVERS\mrxsmb20.sys2010/10/26 09:54:37.0937 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys2010/10/26 09:54:37.0969 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys2010/10/26 09:54:38.0015 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys2010/10/26 09:54:38.0047 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys2010/10/26 09:54:38.0078 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys2010/10/26 09:54:38.0125 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys2010/10/26 09:54:38.0140 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys2010/10/26 09:54:38.0171 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys2010/10/26 09:54:38.0218 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys2010/10/26 09:54:38.0249 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys2010/10/26 09:54:38.0281 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys2010/10/26 09:54:38.0327 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys2010/10/26 09:54:38.0359 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys2010/10/26 09:54:38.0405 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys2010/10/26 09:54:38.0421 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys2010/10/26 09:54:38.0468 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys2010/10/26 09:54:38.0483 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys2010/10/26 09:54:38.0515 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys2010/10/26 09:54:38.0546 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys2010/10/26 09:54:38.0577 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys2010/10/26 09:54:38.0608 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys2010/10/26 09:54:38.0655 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys2010/10/26 09:54:38.0717 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys2010/10/26 09:54:38.0764 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys2010/10/26 09:54:38.0795 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys2010/10/26 09:54:38.0827 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys2010/10/26 09:54:38.0842 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys2010/10/26 09:54:38.0889 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys2010/10/26 09:54:38.0967 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys2010/10/26 09:54:39.0029 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys2010/10/26 09:54:39.0061 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys2010/10/26 09:54:39.0092 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys2010/10/26 09:54:39.0107 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys2010/10/26 09:54:39.0154 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys2010/10/26 09:54:39.0201 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys2010/10/26 09:54:39.0263 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys2010/10/26 09:54:39.0388 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys2010/10/26 09:54:39.0419 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys2010/10/26 09:54:39.0466 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys2010/10/26 09:54:39.0513 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys2010/10/26 09:54:39.0560 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys2010/10/26 09:54:39.0622 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys2010/10/26 09:54:39.0669 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys2010/10/26 09:54:39.0747 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys2010/10/26 09:54:39.0856 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys2010/10/26 09:54:39.0887 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys2010/10/26 09:54:39.0981 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys2010/10/26 09:54:40.0012 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys2010/10/26 09:54:40.0121 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys2010/10/26 09:54:40.0153 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys2010/10/26 09:54:40.0215 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys2010/10/26 09:54:40.0277 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys2010/10/26 09:54:40.0309 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys2010/10/26 09:54:40.0433 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys2010/10/26 09:54:40.0480 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys2010/10/26 09:54:40.0574 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS2010/10/26 09:54:40.0589 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS2010/10/26 09:54:40.0636 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys2010/10/26 09:54:40.0699 SCDEmu (23aa53256ce05b975398b78a33474265) C:\Windows\system32\drivers\SCDEmu.sys2010/10/26 09:54:40.0761 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys2010/10/26 09:54:40.0792 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys2010/10/26 09:54:40.0823 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys2010/10/26 09:54:40.0855 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys2010/10/26 09:54:40.0886 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys2010/10/26 09:54:40.0933 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys2010/10/26 09:54:40.0948 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys2010/10/26 09:54:40.0964 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys2010/10/26 09:54:41.0011 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys2010/10/26 09:54:41.0042 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys2010/10/26 09:54:41.0089 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys2010/10/26 09:54:41.0135 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys2010/10/26 09:54:41.0229 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys2010/10/26 09:54:41.0307 srv (ff3cbc13db84d81f56931bc922cc37c4) C:\Windows\system32\DRIVERS\srv.sys2010/10/26 09:54:41.0385 srv2 (d15959d9f69f0d39a0153e9c244f20dd) C:\Windows\system32\DRIVERS\srv2.sys2010/10/26 09:54:41.0432 srvnet (faa0d553a49e85008c6bb3781987c574) C:\Windows\system32\DRIVERS\srvnet.sys2010/10/26 09:54:41.0541 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys2010/10/26 09:54:41.0572 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys2010/10/26 09:54:41.0603 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys2010/10/26 09:54:41.0619 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys2010/10/26 09:54:41.0697 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys2010/10/26 09:54:41.0853 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys2010/10/26 09:54:41.0915 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys2010/10/26 09:54:41.0947 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys2010/10/26 09:54:41.0978 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys2010/10/26 09:54:42.0009 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys2010/10/26 09:54:42.0040 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys2010/10/26 09:54:42.0087 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys2010/10/26 09:54:42.0118 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys2010/10/26 09:54:42.0149 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys2010/10/26 09:54:42.0181 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys2010/10/26 09:54:42.0227 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys2010/10/26 09:54:42.0274 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys2010/10/26 09:54:42.0305 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys2010/10/26 09:54:42.0352 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys2010/10/26 09:54:42.0383 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys2010/10/26 09:54:42.0399 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys2010/10/26 09:54:42.0461 USBAAPL (e8c1b9ebac65288e1b51e8a987d98af6) C:\Windows\system32\Drivers\usbaapl.sys2010/10/26 09:54:42.0524 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys2010/10/26 09:54:42.0539 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys2010/10/26 09:54:42.0586 usbehci (8625e96957cb855413628abb306c7b89) C:\Windows\system32\DRIVERS\usbehci.sys2010/10/26 09:54:42.0617 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys2010/10/26 09:54:42.0633 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys2010/10/26 09:54:42.0695 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys2010/10/26 09:54:42.0727 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys2010/10/26 09:54:42.0742 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS2010/10/26 09:54:42.0773 usbuhci (4ba9542f67c63979761f1e0b8ab7141f) C:\Windows\system32\DRIVERS\usbuhci.sys2010/10/26 09:54:42.0820 usb_rndisx (35c9095fa7076466afbfc5b9ec4b779e) C:\Windows\system32\DRIVERS\usb8023x.sys2010/10/26 09:54:42.0851 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys2010/10/26 09:54:42.0867 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys2010/10/26 09:54:42.0898 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys2010/10/26 09:54:42.0929 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys2010/10/26 09:54:42.0961 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys2010/10/26 09:54:42.0992 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys2010/10/26 09:54:43.0023 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys2010/10/26 09:54:43.0070 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys2010/10/26 09:54:43.0101 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys2010/10/26 09:54:43.0132 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys2010/10/26 09:54:43.0179 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys2010/10/26 09:54:43.0210 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys2010/10/26 09:54:43.0257 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys2010/10/26 09:54:43.0304 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys2010/10/26 09:54:43.0382 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys2010/10/26 09:54:43.0460 WmiAcpi (48ca581c12022ac60fe82e2b96fbf5d4) C:\Windows\system32\drivers\wmiacpi.sys2010/10/26 09:54:43.0522 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys2010/10/26 09:54:43.0553 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys2010/10/26 09:54:43.0600 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys2010/10/26 09:54:43.0631 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys2010/10/26 09:54:43.0709 ================================================================================2010/10/26 09:54:43.0709 Scan finished2010/10/26 09:54:43.0709 ================================================================================ Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333764 Share Posted October 25, 2010 Are you using a router? Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333771 Share Posted October 25, 2010 I believe so. It's not a wireless router, but all our computers are connected through a hub. Does that sound right? Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333772 Share Posted October 25, 2010 I believe so. It's not a wireless router, but all our computers are connected through a hub. Does that sound right?Is this a company computer connected to a business network? Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333774 Share Posted October 25, 2010 I'm not sure what a business network is sorry. But we're just a small office with 6 computers networked together. The hub is a D-Link DFE-908Dx if that helps. Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333776 Share Posted October 25, 2010 Is your the only one that's infected? Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333777 Share Posted October 25, 2010 They're all infected. Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333782 Share Posted October 25, 2010 You need outside help.I suggest you call someone to come to your office to clean them up.We could sit here and clean yours over and over again because the others will just keep reinfecting yours.They will all need to be disconnected from the network and cleaned one at a time before being connected back on the network. Link to post Share on other sites More sharing options...
Pollywaffle Posted October 25, 2010 Author ID:333785 Share Posted October 25, 2010 Not a worry. I'll disconnect one of the computers from the network and see if I can clean it up that way or something.Big thanks for your time! I hope people appreciate the time and effort you guys put into helping us. Link to post Share on other sites More sharing options...
LDTate Posted October 25, 2010 ID:333787 Share Posted October 25, 2010 You're more than welcome.Good Luck Link to post Share on other sites More sharing options...
LDTate Posted October 28, 2010 ID:335380 Share Posted October 28, 2010 Glad we could help. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts