Kenneth56 Posted June 11, 2011 ID:439673 Share Posted June 11, 2011 Since last night, I been having random IP blocks from Malwarebytes. Also, it's bring up different websites and redirect my google searches.Malwarebytes' Anti-Malware 1.51.0.1200www.malwarebytes.orgDatabase version: 6830Windows 5.1.2600 Service Pack 3Internet Explorer 8.0.6001.187026/10/2011 6:26:12 PMmbam-log-2011-06-10 (18-26-12).txtScan type: Quick scanObjects scanned: 183256Time elapsed: 28 minute(s), 47 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected).DDS (Ver_2011-06-11.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_14Run by KJ at 18:57:15 on 2011-06-10Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.894.67 [GMT -5:00].AV: AVG Internet Security 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}FW: AVG Firewall *Disabled* .============== Running Processes ===============.C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exec:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exeC:\WINDOWS\System32\svchost.exe -k netsvcsC:\WINDOWS\system32\svchost.exe -k WudfServiceGroupsvchost.exesvchost.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\RTHDCPL.EXEC:\Program Files\CyberLink\PowerDVD\PDVDServ.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Program Files\Logitech\Logitech WebCam Software\LWS.exeC:\Program Files\Microsoft Security Client\msseces.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exeC:\Program Files\ShortKeys2\shklite.exeC:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exesvchost.exeC:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exeC:\Program Files\AVG\AVG10\avgfws.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\System32\svchost.exe -k HTTPFilterC:\Program Files\Java\jre6\bin\jqs.exeC:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exeC:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exeC:\WINDOWS\system32\nvsvc32.exeC:\Program Files\CyberLink\Shared Files\RichVideo.exeC:\WINDOWS\system32\svchost.exe -k imgsvcC:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Java\jre6\bin\jucheck.exe.============== Pseudo HJT Report ===============.uStart Page = hxxp://www.yahoo.com/uInternet Settings,ProxyOverride = *.localBHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dllBHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dllBHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dllBHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No FileBHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dllBHO: Skype add-on for Internet Explorer: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dllBHO: Java Link to post Share on other sites More sharing options...
Kenneth56 Posted June 11, 2011 Author ID:439718 Share Posted June 11, 2011 I'm sorry, but I been posting topics since yesterday and have not got help yet. I'm running ComboFix and it keep saying that a Rootkit is present. However, I ran it again after it found it. It again said it found a Rootkit. Can I get some help. :\ Link to post Share on other sites More sharing options...
Staff screen317 Posted June 14, 2011 Staff ID:440995 Share Posted June 14, 2011 I've already responded to your other topics. Please do not start any new ones. Link to post Share on other sites More sharing options...
Recommended Posts