Search redirect

[vixentd]

Have tried everything to solve this. tdskiller, rkill, avast, AVG, Hope this info will be of assistance

From Malawarbytes log

Malwarebytes' Anti-Malware 1.51.1.1800

www.malwarebytes.org

Database version: 7529

Windows 6.0.6002 Service Pack 2

Internet Explorer 9.0.8112.16421

21/08/2011 5:59:45 PM

mbam-log-2011-08-21 (17-59-45).txt

Scan type: Quick scan

Objects scanned: 167367

Time elapsed: 19 minute(s), 50 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

From Avira

Avira AntiVir Personal

Report file date: August-21-11 17:34

Scanning for 3282002 virus strains and unwanted programs.

The program is running as an unrestricted full version.

Online services are available:

Licensee : Avira AntiVir Personal - Free Antivirus

Serial number : 0000149996-ADJIE-0000001

Platform : Windows Vista

Windows version : (Service Pack 2) [6.0.6002]

Boot mode : Normally booted

Username : 5961

Computer name : TOSHIBA

Version information:

BUILD.DAT : 10.0.0.652 31824 Bytes 20/07/2011 16:49:00

AVSCAN.EXE : 10.0.4.2 442024 Bytes 20/07/2011 18:30:06

AVSCAN.DLL : 10.0.3.0 46440 Bytes 20/07/2011 18:30:45

LUKE.DLL : 10.0.3.2 104296 Bytes 20/07/2011 18:30:32

LUKERES.DLL : 10.0.0.1 12648 Bytes 11/02/2010 07:40:49

VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 17:05:36

VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 14:53:55

VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 14:53:56

VBASE003.VDF : 7.11.5.225 1980416 Bytes 07/04/2011 18:30:38

VBASE004.VDF : 7.11.8.178 2354176 Bytes 31/05/2011 18:30:40

VBASE005.VDF : 7.11.10.251 1788416 Bytes 07/07/2011 18:30:41

VBASE006.VDF : 7.11.13.60 6411776 Bytes 16/08/2011 00:32:11

VBASE007.VDF : 7.11.13.61 2048 Bytes 16/08/2011 00:32:12

VBASE008.VDF : 7.11.13.62 2048 Bytes 16/08/2011 00:32:12

VBASE009.VDF : 7.11.13.63 2048 Bytes 16/08/2011 00:32:13

VBASE010.VDF : 7.11.13.64 2048 Bytes 16/08/2011 00:32:13

VBASE011.VDF : 7.11.13.65 2048 Bytes 16/08/2011 00:32:13

VBASE012.VDF : 7.11.13.66 2048 Bytes 16/08/2011 00:32:13

VBASE013.VDF : 7.11.13.95 166400 Bytes 17/08/2011 00:32:14

VBASE014.VDF : 7.11.13.125 209920 Bytes 18/08/2011 00:32:14

VBASE015.VDF : 7.11.13.126 2048 Bytes 18/08/2011 00:32:14

VBASE016.VDF : 7.11.13.127 2048 Bytes 18/08/2011 00:32:15

VBASE017.VDF : 7.11.13.128 2048 Bytes 18/08/2011 00:32:15

VBASE018.VDF : 7.11.13.129 2048 Bytes 18/08/2011 00:32:15

VBASE019.VDF : 7.11.13.130 2048 Bytes 18/08/2011 00:32:15

VBASE020.VDF : 7.11.13.131 2048 Bytes 18/08/2011 00:32:16

VBASE021.VDF : 7.11.13.132 2048 Bytes 18/08/2011 00:32:16

VBASE022.VDF : 7.11.13.133 2048 Bytes 18/08/2011 00:32:16

VBASE023.VDF : 7.11.13.134 2048 Bytes 18/08/2011 00:32:16

VBASE024.VDF : 7.11.13.135 2048 Bytes 18/08/2011 00:32:16

VBASE025.VDF : 7.11.13.136 2048 Bytes 18/08/2011 00:32:17

VBASE026.VDF : 7.11.13.137 2048 Bytes 18/08/2011 00:32:17

VBASE027.VDF : 7.11.13.138 2048 Bytes 18/08/2011 00:32:17

VBASE028.VDF : 7.11.13.139 2048 Bytes 18/08/2011 00:32:17

VBASE029.VDF : 7.11.13.140 2048 Bytes 18/08/2011 00:32:17

VBASE030.VDF : 7.11.13.141 2048 Bytes 18/08/2011 00:32:18

VBASE031.VDF : 7.11.13.155 181248 Bytes 21/08/2011 00:32:18

Engineversion : 8.2.6.32

AEVDF.DLL : 8.1.2.1 106868 Bytes 21/04/2011 14:53:28

AESCRIPT.DLL : 8.1.3.74 1622393 Bytes 22/08/2011 00:32:26

AESCN.DLL : 8.1.7.2 127349 Bytes 21/04/2011 14:53:27

AESBX.DLL : 8.2.1.34 323957 Bytes 20/07/2011 18:29:54

AERDL.DLL : 8.1.9.13 639349 Bytes 20/07/2011 18:29:53

AEPACK.DLL : 8.2.9.5 676214 Bytes 20/07/2011 18:29:53

AEOFFICE.DLL : 8.1.2.13 201083 Bytes 22/08/2011 00:32:24

AEHEUR.DLL : 8.1.2.155 3617144 Bytes 22/08/2011 00:32:23

AEHELP.DLL : 8.1.17.7 254327 Bytes 22/08/2011 00:32:20

AEGEN.DLL : 8.1.5.7 401778 Bytes 22/08/2011 00:32:19

AEEMU.DLL : 8.1.3.0 393589 Bytes 21/04/2011 14:53:14

AECORE.DLL : 8.1.22.4 196983 Bytes 20/07/2011 18:29:42

AEBB.DLL : 8.1.1.0 53618 Bytes 21/04/2011 14:53:14

AVWINLL.DLL : 10.0.0.0 19304 Bytes 21/04/2011 14:53:36

AVPREF.DLL : 10.0.0.0 44904 Bytes 20/07/2011 18:30:04

AVREP.DLL : 10.0.0.8 62209 Bytes 20/07/2011 18:30:04

AVREG.DLL : 10.0.3.2 53096 Bytes 20/07/2011 18:30:04

AVSCPLR.DLL : 10.0.4.2 84840 Bytes 20/07/2011 18:30:06

AVARKT.DLL : 10.0.22.6 231784 Bytes 20/07/2011 18:29:58

AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 20/07/2011 18:30:03

SQLITE3.DLL : 3.6.19.0 355688 Bytes 20/07/2011 23:40:24

AVSMTP.DLL : 10.0.0.17 63848 Bytes 21/04/2011 14:53:36

NETNT.DLL : 10.0.0.0 11624 Bytes 21/04/2011 14:53:46

RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 20/07/2011 18:30:48

RCTEXT.DLL : 10.0.58.0 97128 Bytes 20/07/2011 18:30:48

Configuration settings for the scan:

Jobname.............................: Short system scan after installation

Configuration file..................: c:\program files\avira\antivir desktop\setupprf.dat

Logging.............................: low

Primary action......................: interactive

Secondary action....................: ignore

Scan master boot sector.............: on

Scan boot sector....................: on

Process scan........................: on

Scan registry.......................: on

Search for rootkits.................: off

Integrity checking of system files..: off

Scan all files......................: Intelligent file selection

Scan archives.......................: on

Recursion depth.....................: 20

Smart extensions....................: on

Macro heuristic.....................: on

File heuristic......................: medium

Start of the scan: August-21-11 17:34

The scan of running processes will be started

Scan process 'UnHackMe.exe' - '1' Module(s) have been scanned

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'avshadow.exe' - '1' Module(s) have been scanned

Scan process 'avguard.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'avconfig.exe' - '1' Module(s) have been scanned

Scan process 'avgnt.exe' - '1' Module(s) have been scanned

Scan process 'sched.exe' - '1' Module(s) have been scanned

Scan process 'setup.exe' - '1' Module(s) have been scanned

Scan process 'presetup.exe' - '1' Module(s) have been scanned

Scan process 'avira_antivir_personal_en.exe' - '1' Module(s) have been scanned

Scan process 'iexplore.exe' - '1' Module(s) have been scanned

Scan process 'AvastUI.exe' - '1' Module(s) have been scanned

Scan process 'AvastSvc.exe' - '1' Module(s) have been scanned

Scan process 'iexplore.exe' - '1' Module(s) have been scanned

Scan process 'googletalkplugin.exe' - '1' Module(s) have been scanned

Scan process 'wuauclt.exe' - '1' Module(s) have been scanned

Scan process 'FlashUtil10o_ActiveX.exe' - '1' Module(s) have been scanned

Scan process 'iPodService.exe' - '1' Module(s) have been scanned

Scan process 'conime.exe' - '1' Module(s) have been scanned

Scan process 'Apntex.exe' - '1' Module(s) have been scanned

Scan process 'iexplore.exe' - '1' Module(s) have been scanned

Scan process 'iexplore.exe' - '1' Module(s) have been scanned

Scan process 'ehmsas.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'ApMsgFwd.exe' - '1' Module(s) have been scanned

Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned

Scan process 'unsecapp.exe' - '1' Module(s) have been scanned

Scan process 'Dropbox.exe' - '1' Module(s) have been scanned

Scan process 'SSScheduler.exe' - '1' Module(s) have been scanned

Scan process 'ehtray.exe' - '1' Module(s) have been scanned

Scan process 'CmTray.exe' - '1' Module(s) have been scanned

Scan process 'mobsync.exe' - '1' Module(s) have been scanned

Scan process 'InfoCenter.exe' - '1' Module(s) have been scanned

Scan process 'jusched.exe' - '1' Module(s) have been scanned

Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned

Scan process 'ltmoh.exe' - '1' Module(s) have been scanned

Scan process 'Apoint.exe' - '1' Module(s) have been scanned

Scan process 'igfxsrvc.exe' - '1' Module(s) have been scanned

Scan process 'igfxpers.exe' - '1' Module(s) have been scanned

Scan process 'hkcmd.exe' - '1' Module(s) have been scanned

Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned

Scan process 'WLIDSvcM.exe' - '1' Module(s) have been scanned

Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned

Scan process 'WLIDSVC.EXE' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned

Scan process 'TosCoSrv.exe' - '1' Module(s) have been scanned

Scan process 'TODDSrv.exe' - '1' Module(s) have been scanned

Scan process 'TNaviSrv.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned

Scan process 'SeaPort.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'NMSAccessU.exe' - '1' Module(s) have been scanned

Scan process 'lxczcoms.exe' - '1' Module(s) have been scanned

Scan process 'HPSIsvc.exe' - '1' Module(s) have been scanned

Scan process 'CFSvcs.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned

Scan process 'hackmon.exe' - '1' Module(s) have been scanned

Scan process 'SmartDefrag.exe' - '1' Module(s) have been scanned

Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned

Scan process 'agrsmsvc.exe' - '1' Module(s) have been scanned

Scan process 'taskeng.exe' - '1' Module(s) have been scanned

Scan process 'rundll32.exe' - '1' Module(s) have been scanned

Scan process 'taskeng.exe' - '1' Module(s) have been scanned

Scan process 'Explorer.EXE' - '1' Module(s) have been scanned

Scan process 'IMFsrv.exe' - '1' Module(s) have been scanned

Scan process 'Dwm.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'spoolsv.exe' - '1' Module(s) have been scanned

Scan process 'taskeng.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'SLsvc.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'PresentationFontCache.exe' - '1' Module(s) have been scanned

Scan process 'a2service.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'lsm.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'wininit.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

Starting master boot sector scan:

Master boot sector HD0

[iNFO] No virus was found!

Start scanning boot sectors:

Starting to scan executable files (registry).

The registry was scanned ( '2461' files ).

End of the scan: August-21-11 17:37

Used time: 02:52 Minute(s)

The scan has been done completely.

0 Scanned directories

3717 Files were scanned

0 Viruses and/or unwanted programs were found

0 Files were classified as suspicious

0 files were deleted

0 Viruses and unwanted programs were repaired

0 Files were moved to quarantine

0 Files were renamed

0 Files cannot be scanned

3717 Files not concerned

9 Archives were scanned

0 Warnings

0 Notes

[daledoc1]

Hello, and welcome to Malwarebytes, vixentd:

Sorry to hear that your computer may be infected.

Alas, we cannot review scan logs or work on malware detection/removal in this part of the General MBAM forum.

The following information will help you get started on the cleaning process.

Excellent, self-help troubleshooting info for getting MBAM to run on an infected machine can be found here.

And there are specific, self-help malware removal instructions here.

If you would like expert assistance with cleaning your system, there are 3 support options from which to choose:

• Option 1 -- Free, Expert advice in the Malware Removal Forum
  
• Option 2 -- Free support for paying customers using MBAM PRO -- Contact MBAM Support via email
  
• Option 3 -- Premium, Fee-Based Support
  

OPTION 1

As we don't deal with malware removal in this General Malwarebytes' Anti-Malware Forum, you need to start a topic in the Malware Removal forum so that a qualified helper can help you fix any malware related problems/infections you may have.

• First, please print out, read and follow the directions here, skipping any steps you are unable to complete.
  
• If the infection has so crippled the computer that you cannot follow most/all of the requested steps, then please just proceed as advised below:
  
• Then please post a NEW topic here.
  
• When posting your new thread, please make sure that, under "options", you select Track this topic and choose Immediate Email Notification, so that you're alerted when someone has replied to your post.
  
• One of the expert helpers there will give you free, one-on-one assistance when one becomes available.
  
• Please refrain from making any further changes to your computer such as (Install/Uninstall programs, use special fix tools, delete files, edit the registry, etc...) unless advised by a malware removal helper. Doing so can result in system changes which may hinder the attempts by a helper to clean your machine.
  

IMPORTANT NOTE:Please DO NOT post back to your topic or "bump" it within the first 48 hours.

Replying to your own posts changes the post count from zero. Helpers are looking for topics with zero replies. If you reply to your own post, helpers may think that you're already being helped and thus may overlook your post. This will only delay your obtaining assistance.

• 
  o If there is no reply from any experts after 48 hours, you can reply to the topic, asking for help again.
  Or
  o You may send a Private Message to a Moderator asking for assistance.
  

OPTION 2

Alternatively, as a paying customer using MBAM PRO, you can contact the help desk at support@malwarebytes.org or here.

OPTION 3

If you would like to use the Malwarebytes Premium Services (Comprehensive solutions to all your computer support needs -- from installation and set-up to troubleshooting and tune-ups), please go to the Malwarebytes Premium Services support site.

Please be patient -- someone will assist you as soon as it is possible.

Thanks very much!

daledoc1

PS: Please use the button instead of other ones when you reply here and at the other forums, so that it will be easier to read.