Jump to content

Infected

slowcomjim

By slowcomjim
in Resolved Malware Removal Logs

 Share

Recommended Posts

slowcomjim

slowcomjim

Posted
Posted

Hi All,

I think I got a bad one this time. During start up, desktop icons have a hard time coming up. I dont have the "appropriate permission" to run Malwarebytes and my searches on Explorer get hijacked if I search for help. I started the section "I'm infected" and DDS runs but hangs up and doesn't display any log. If you could help I'd appreciate it.

Link to post
Share on other sites
slowcomjim

slowcomjim

Posted
  • Author
Posted

This is the tdsskiller log

12:01:02.0078 3632 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01

12:01:02.0140 3632 ============================================================

12:01:02.0140 3632 Current date / time: 2011/10/29 12:01:02.0140

12:01:02.0140 3632 SystemInfo:

12:01:02.0140 3632

12:01:02.0140 3632 OS Version: 5.1.2600 ServicePack: 3.0

12:01:02.0140 3632 Product type: Workstation

12:01:02.0140 3632 ComputerName: IRICKHOME

12:01:02.0140 3632 UserName: Taylor

12:01:02.0140 3632 Windows directory: C:\WINDOWS

12:01:02.0140 3632 System windows directory: C:\WINDOWS

12:01:02.0140 3632 Processor architecture: Intel x86

12:01:02.0140 3632 Number of processors: 2

12:01:02.0140 3632 Page size: 0x1000

12:01:02.0140 3632 Boot type: Normal boot

12:01:02.0140 3632 ============================================================

12:01:03.0750 3632 Initialize success

12:01:14.0750 1428 ============================================================

12:01:14.0750 1428 Scan started

12:01:14.0750 1428 Mode: Manual;

12:01:14.0750 1428 ============================================================

12:01:15.0343 1428 394172b9 (1d20c7210ad54f70dc9b29bf6e820e88) C:\WINDOWS\3111272761:3334376774.exe

12:01:15.0343 1428 Suspicious file (Hidden): C:\WINDOWS\3111272761:3334376774.exe. md5: 1d20c7210ad54f70dc9b29bf6e820e88

12:01:15.0343 1428 394172b9 ( Rootkit.Win32.PMax.gen ) - infected

12:01:15.0343 1428 394172b9 - detected Rootkit.Win32.PMax.gen (0)

12:01:15.0453 1428 Abiosdsk - ok

12:01:15.0468 1428 abp480n5 - ok

12:01:15.0546 1428 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

12:01:15.0546 1428 ACPI - ok

12:01:15.0562 1428 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

12:01:15.0562 1428 ACPIEC - ok

12:01:15.0578 1428 adpu160m - ok

12:01:15.0640 1428 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

12:01:15.0640 1428 aec - ok

12:01:15.0718 1428 AegisP (12dafd934641dcf61e446313bc261ec2) C:\WINDOWS\system32\DRIVERS\AegisP.sys

12:01:15.0718 1428 AegisP - ok

12:01:15.0781 1428 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys

12:01:15.0796 1428 AFD - ok

12:01:15.0875 1428 AgereSoftModem (b3192376c7a3814b5341efc2202022f8) C:\WINDOWS\system32\DRIVERS\AGRSM.sys

12:01:15.0906 1428 AgereSoftModem - ok

12:01:16.0078 1428 Aha154x - ok

12:01:16.0093 1428 aic78u2 - ok

12:01:16.0125 1428 aic78xx - ok

12:01:16.0171 1428 AliIde - ok

12:01:16.0187 1428 amsint - ok

12:01:16.0281 1428 ApfiltrService (87ec3fdcaf6c5052e2e72b861dedd3d3) C:\WINDOWS\system32\DRIVERS\Apfiltr.sys

12:01:16.0281 1428 ApfiltrService - ok

12:01:16.0328 1428 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys

12:01:16.0328 1428 Arp1394 - ok

12:01:16.0343 1428 asc - ok

12:01:16.0375 1428 asc3350p - ok

12:01:16.0390 1428 asc3550 - ok

12:01:16.0453 1428 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys

12:01:16.0453 1428 ASCTRM - ok

12:01:16.0562 1428 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

12:01:16.0562 1428 AsyncMac - ok

12:01:16.0593 1428 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

12:01:16.0593 1428 atapi - ok

12:01:16.0609 1428 Atdisk - ok

12:01:16.0656 1428 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

12:01:16.0656 1428 Atmarpc - ok

12:01:16.0703 1428 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

12:01:16.0703 1428 audstub - ok

12:01:16.0828 1428 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys

12:01:16.0828 1428 avgio - ok

12:01:17.0015 1428 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\WINDOWS\system32\DRIVERS\avgntflt.sys

12:01:17.0015 1428 avgntflt - ok

12:01:17.0062 1428 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\WINDOWS\system32\DRIVERS\avipbb.sys

12:01:17.0078 1428 avipbb - ok

12:01:17.0093 1428 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

12:01:17.0093 1428 Beep - ok

12:01:17.0187 1428 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

12:01:17.0187 1428 cbidf2k - ok

12:01:17.0203 1428 cd20xrnt - ok

12:01:17.0250 1428 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

12:01:17.0250 1428 Cdaudio - ok

12:01:17.0312 1428 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

12:01:17.0312 1428 Cdfs - ok

12:01:17.0375 1428 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

12:01:17.0375 1428 Cdrom - ok

12:01:17.0406 1428 Changer - ok

12:01:17.0468 1428 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

12:01:17.0484 1428 CmBatt - ok

12:01:17.0656 1428 CmdIde - ok

12:01:17.0687 1428 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

12:01:17.0687 1428 Compbatt - ok

12:01:17.0750 1428 Cpqarray - ok

12:01:17.0781 1428 dac2w2k - ok

12:01:17.0812 1428 dac960nt - ok

12:01:17.0875 1428 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

12:01:17.0875 1428 Disk - ok

12:01:17.0937 1428 DLABOIOM (ee4325becef51b8c32b4329097e4f301) C:\WINDOWS\system32\DLA\DLABOIOM.SYS

12:01:17.0937 1428 DLABOIOM - ok

12:01:17.0953 1428 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS

12:01:17.0953 1428 DLACDBHM - ok

12:01:17.0984 1428 DLADResN (1e6c6597833a04c2157be7b39ea92ce1) C:\WINDOWS\system32\DLA\DLADResN.SYS

12:01:17.0984 1428 DLADResN - ok

12:01:18.0000 1428 DLAIFS_M (752376e109a090970bfa9722f0f40b03) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS

12:01:18.0000 1428 DLAIFS_M - ok

12:01:18.0031 1428 DLAOPIOM (62ee7902e74b90bf1ccc4643fc6c07a7) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS

12:01:18.0031 1428 DLAOPIOM - ok

12:01:18.0046 1428 DLAPoolM (5c220124c5afeaee84a9bb89d685c17b) C:\WINDOWS\system32\DLA\DLAPoolM.SYS

12:01:18.0046 1428 DLAPoolM - ok

12:01:18.0078 1428 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS

12:01:18.0078 1428 DLARTL_N - ok

12:01:18.0109 1428 DLAUDFAM (4ebb78d9bbf072119363b35b9b3e518f) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS

12:01:18.0109 1428 DLAUDFAM - ok

12:01:18.0125 1428 DLAUDF_M (333b770e52d2cea7bd86391120466e43) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS

12:01:18.0125 1428 DLAUDF_M - ok

12:01:18.0218 1428 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

12:01:18.0234 1428 dmboot - ok

12:01:18.0281 1428 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

12:01:18.0281 1428 dmio - ok

12:01:18.0437 1428 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

12:01:18.0437 1428 dmload - ok

12:01:18.0531 1428 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

12:01:18.0531 1428 DMusic - ok

12:01:18.0562 1428 dpti2o - ok

12:01:18.0593 1428 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

12:01:18.0593 1428 drmkaud - ok

12:01:18.0625 1428 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS

12:01:18.0625 1428 DRVMCDB - ok

12:01:18.0671 1428 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS

12:01:18.0671 1428 DRVNDDM - ok

12:01:18.0750 1428 e1express (e1fa10ed8f9f700c1be1eae05a80ef57) C:\WINDOWS\system32\DRIVERS\e1e5132.sys

12:01:18.0750 1428 e1express - ok

12:01:18.0875 1428 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

12:01:18.0875 1428 Fastfat - ok

12:01:18.0921 1428 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

12:01:18.0921 1428 Fdc - ok

12:01:19.0031 1428 FdRedir (5a8f83707c4cf1395312b23e6af4ddd7) C:\Program Files\Common Files\Protector Suite QL\Drivers\FdRedir.sys

12:01:19.0031 1428 FdRedir - ok

12:01:19.0093 1428 FileDisk2 (d7befe501cc041c76e3fa976cfd04127) C:\Program Files\Common Files\Protector Suite QL\Drivers\filedisk.sys

12:01:19.0093 1428 FileDisk2 - ok

12:01:19.0296 1428 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

12:01:19.0296 1428 Fips - ok

12:01:19.0343 1428 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

12:01:19.0343 1428 Flpydisk - ok

12:01:19.0406 1428 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

12:01:19.0406 1428 FltMgr - ok

12:01:19.0484 1428 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

12:01:19.0484 1428 Fs_Rec - ok

12:01:19.0515 1428 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

12:01:19.0515 1428 Ftdisk - ok

12:01:19.0593 1428 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

12:01:19.0593 1428 GEARAspiWDM - ok

12:01:19.0656 1428 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

12:01:19.0656 1428 Gpc - ok

12:01:19.0843 1428 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys

12:01:19.0843 1428 hamachi - ok

12:01:19.0890 1428 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

12:01:19.0906 1428 HDAudBus - ok

12:01:19.0968 1428 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

12:01:19.0968 1428 HidUsb - ok

12:01:20.0015 1428 hpn - ok

12:01:20.0062 1428 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys

12:01:20.0062 1428 HPZid412 - ok

12:01:20.0078 1428 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys

12:01:20.0078 1428 HPZipr12 - ok

12:01:20.0109 1428 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys

12:01:20.0109 1428 HPZius12 - ok

12:01:20.0187 1428 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

12:01:20.0187 1428 HTTP - ok

12:01:20.0343 1428 i2omgmt - ok

12:01:20.0375 1428 i2omp - ok

12:01:20.0437 1428 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

12:01:20.0453 1428 i8042prt - ok

12:01:20.0828 1428 ialm (48846b31be5a4fa662ccfde7a1ba86b9) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys

12:01:21.0140 1428 ialm - ok

12:01:21.0375 1428 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

12:01:21.0375 1428 Imapi - ok

12:01:21.0421 1428 ini910u - ok

12:01:21.0718 1428 IntcAzAudAddService (b12a9fc49cd2765a43829d834f518aed) C:\WINDOWS\system32\drivers\RtkHDAud.sys

12:01:21.0750 1428 IntcAzAudAddService - ok

12:01:21.0921 1428 IntelIde - ok

12:01:21.0968 1428 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

12:01:21.0968 1428 intelppm - ok

12:01:22.0015 1428 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

12:01:22.0015 1428 Ip6Fw - ok

12:01:22.0046 1428 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

12:01:22.0046 1428 IpFilterDriver - ok

12:01:22.0078 1428 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

12:01:22.0093 1428 IpInIp - ok

12:01:22.0140 1428 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

12:01:22.0140 1428 IpNat - ok

12:01:22.0156 1428 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

12:01:22.0156 1428 IPSec - ok

12:01:22.0218 1428 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

12:01:22.0218 1428 IRENUM - ok

12:01:22.0421 1428 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

12:01:22.0421 1428 isapnp - ok

12:01:22.0437 1428 Iviaspi (f59c3569a2f2c464bb78cb1bdcdca55e) C:\WINDOWS\system32\drivers\iviaspi.sys

12:01:22.0437 1428 Iviaspi - ok

12:01:22.0484 1428 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

12:01:22.0484 1428 Kbdclass - ok

12:01:22.0515 1428 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

12:01:22.0515 1428 kmixer - ok

12:01:22.0562 1428 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

12:01:22.0562 1428 KSecDD - ok

12:01:22.0640 1428 LBeepKE (9ffd1cf2a782f2560e78eec4b8b8689e) C:\WINDOWS\system32\Drivers\LBeepKE.sys

12:01:22.0640 1428 LBeepKE - ok

12:01:22.0656 1428 lbrtfdc - ok

12:01:22.0718 1428 LHidFilt (7f9c7b28cf1c859e1c42619eea946dc8) C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys

12:01:22.0718 1428 LHidFilt - ok

12:01:22.0921 1428 LMouFilt (ab33792a87285344f43b5ce23421bab0) C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys

12:01:22.0921 1428 LMouFilt - ok

12:01:23.0000 1428 meiudf (7efac183a25b30fb5d64cc9d484b1eb6) C:\WINDOWS\system32\Drivers\meiudf.sys

12:01:23.0000 1428 meiudf - ok

12:01:23.0062 1428 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys

12:01:23.0062 1428 MHNDRV - ok

12:01:23.0093 1428 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

12:01:23.0093 1428 mnmdd - ok

12:01:23.0187 1428 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

12:01:23.0187 1428 Modem - ok

12:01:23.0203 1428 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

12:01:23.0203 1428 Mouclass - ok

12:01:23.0265 1428 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys

12:01:23.0265 1428 mouhid - ok

12:01:23.0421 1428 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

12:01:23.0421 1428 MountMgr - ok

12:01:23.0453 1428 mraid35x - ok

12:01:23.0500 1428 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

12:01:23.0500 1428 MRxDAV - ok

12:01:23.0593 1428 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

12:01:23.0593 1428 MRxSmb - ok

12:01:23.0640 1428 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

12:01:23.0656 1428 Msfs - ok

12:01:23.0718 1428 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

12:01:23.0718 1428 MSKSSRV - ok

12:01:23.0750 1428 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

12:01:23.0765 1428 MSPCLOCK - ok

12:01:23.0781 1428 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

12:01:23.0781 1428 MSPQM - ok

12:01:23.0828 1428 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

12:01:23.0828 1428 mssmbios - ok

12:01:24.0078 1428 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

12:01:24.0078 1428 Mup - ok

12:01:24.0140 1428 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

12:01:24.0156 1428 NDIS - ok

12:01:24.0203 1428 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

12:01:24.0203 1428 NdisTapi - ok

12:01:24.0265 1428 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

12:01:24.0265 1428 Ndisuio - ok

12:01:24.0281 1428 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

12:01:24.0281 1428 NdisWan - ok

12:01:24.0328 1428 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

12:01:24.0328 1428 NDProxy - ok

12:01:24.0359 1428 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

12:01:24.0359 1428 NetBIOS - ok

12:01:24.0421 1428 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

12:01:24.0421 1428 NetBT - ok

12:01:24.0453 1428 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys

12:01:24.0468 1428 Netdevio - ok

12:01:24.0546 1428 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys

12:01:24.0546 1428 NIC1394 - ok

12:01:24.0750 1428 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

12:01:24.0750 1428 Npfs - ok

12:01:24.0828 1428 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

12:01:24.0828 1428 Ntfs - ok

12:01:24.0921 1428 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

12:01:24.0921 1428 Null - ok

12:01:24.0968 1428 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

12:01:24.0968 1428 NwlnkFlt - ok

12:01:25.0015 1428 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

12:01:25.0015 1428 NwlnkFwd - ok

12:01:25.0062 1428 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys

12:01:25.0062 1428 NwlnkIpx - ok

12:01:25.0078 1428 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys

12:01:25.0093 1428 NwlnkNb - ok

12:01:25.0296 1428 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys

12:01:25.0296 1428 NwlnkSpx - ok

12:01:25.0375 1428 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys

12:01:25.0375 1428 NWRDR - ok

12:01:25.0406 1428 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys

12:01:25.0406 1428 ohci1394 - ok

12:01:25.0468 1428 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

12:01:25.0484 1428 Parport - ok

12:01:25.0500 1428 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

12:01:25.0500 1428 PartMgr - ok

12:01:25.0546 1428 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

12:01:25.0546 1428 ParVdm - ok

12:01:25.0609 1428 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

12:01:25.0609 1428 PCI - ok

12:01:25.0625 1428 PCIDump - ok

12:01:25.0656 1428 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

12:01:25.0656 1428 PCIIde - ok

12:01:25.0687 1428 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys

12:01:25.0687 1428 Pcmcia - ok

12:01:25.0718 1428 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\WINDOWS\system32\Drivers\pcouffin.sys

12:01:25.0718 1428 pcouffin - ok

12:01:25.0875 1428 PDCOMP - ok

12:01:25.0890 1428 PDFRAME - ok

12:01:25.0921 1428 PDRELI - ok

12:01:25.0937 1428 PDRFRAME - ok

12:01:25.0968 1428 perc2 - ok

12:01:26.0000 1428 perc2hib - ok

12:01:26.0093 1428 Pfc (444f122e68db44c0589227781f3c8b3f) C:\WINDOWS\system32\drivers\pfc.sys

12:01:26.0093 1428 Pfc - ok

12:01:26.0156 1428 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

12:01:26.0156 1428 PptpMiniport - ok

12:01:26.0187 1428 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

12:01:26.0187 1428 PSched - ok

12:01:26.0218 1428 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

12:01:26.0218 1428 Ptilink - ok

12:01:26.0296 1428 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys

12:01:26.0296 1428 PxHelp20 - ok

12:01:26.0312 1428 ql1080 - ok

12:01:26.0328 1428 Ql10wnt - ok

12:01:26.0359 1428 ql12160 - ok

12:01:26.0375 1428 ql1240 - ok

12:01:26.0406 1428 ql1280 - ok

12:01:26.0453 1428 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

12:01:26.0453 1428 RasAcd - ok

12:01:26.0515 1428 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

12:01:26.0515 1428 Rasl2tp - ok

12:01:26.0562 1428 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

12:01:26.0562 1428 RasPppoe - ok

12:01:26.0593 1428 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

12:01:26.0593 1428 Raspti - ok

12:01:26.0656 1428 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

12:01:26.0656 1428 Rdbss - ok

12:01:26.0796 1428 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

12:01:26.0796 1428 RDPCDD - ok

12:01:26.0859 1428 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

12:01:26.0859 1428 rdpdr - ok

12:01:26.0937 1428 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys

12:01:26.0937 1428 RDPWD - ok

12:01:27.0000 1428 redbook (58a907e2fe338024a19d9d33909b4dab) C:\WINDOWS\system32\DRIVERS\redbook.sys

12:01:27.0000 1428 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\redbook.sys. Real md5: 58a907e2fe338024a19d9d33909b4dab, Fake md5: f828dd7e1419b6653894a8f97a0094c5

12:01:27.0000 1428 redbook ( Rootkit.Win32.ZAccess.aml ) - infected

12:01:27.0000 1428 redbook - detected Rootkit.Win32.ZAccess.aml (0)

12:01:27.0062 1428 RimUsb - ok

12:01:27.0109 1428 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys

12:01:27.0125 1428 RimVSerPort - ok

12:01:27.0140 1428 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys

12:01:27.0140 1428 ROOTMODEM - ok

12:01:27.0265 1428 s24trans (1cc074e0d48383d4e9bffc6a26c2a58a) C:\WINDOWS\system32\DRIVERS\s24trans.sys

12:01:27.0265 1428 s24trans - ok

12:01:27.0515 1428 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys

12:01:27.0515 1428 sdbus - ok

12:01:27.0593 1428 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

12:01:27.0593 1428 Secdrv - ok

12:01:27.0671 1428 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys

12:01:27.0671 1428 Serial - ok

12:01:27.0734 1428 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys

12:01:27.0734 1428 sffdisk - ok

12:01:27.0765 1428 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys

12:01:27.0765 1428 sffp_sd - ok

12:01:27.0812 1428 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys

12:01:27.0812 1428 Sfloppy - ok

12:01:27.0843 1428 Simbad - ok

12:01:28.0015 1428 smihlp (b9de57348d93b28739c70b04eee9d133) C:\Program Files\Protector Suite QL\smihlp.sys

12:01:28.0015 1428 smihlp - ok

12:01:28.0187 1428 Sparrow - ok

12:01:28.0234 1428 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

12:01:28.0234 1428 splitter - ok

12:01:28.0343 1428 sptd (d15da1ba189770d93eea2d7e18f95af9) C:\WINDOWS\system32\Drivers\sptd.sys

12:01:28.0343 1428 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: d15da1ba189770d93eea2d7e18f95af9

12:01:28.0343 1428 sptd ( LockedFile.Multi.Generic ) - warning

12:01:28.0343 1428 sptd - detected LockedFile.Multi.Generic (1)

12:01:28.0375 1428 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

12:01:28.0375 1428 sr - ok

12:01:28.0484 1428 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

12:01:28.0484 1428 Srv - ok

12:01:28.0750 1428 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys

12:01:28.0750 1428 ssmdrv - ok

12:01:28.0828 1428 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

12:01:28.0828 1428 swenum - ok

12:01:28.0859 1428 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

12:01:28.0859 1428 swmidi - ok

12:01:28.0906 1428 symc810 - ok

12:01:28.0937 1428 symc8xx - ok

12:01:28.0953 1428 sym_hi - ok

12:01:29.0000 1428 sym_u3 - ok

12:01:29.0062 1428 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

12:01:29.0062 1428 sysaudio - ok

12:01:29.0109 1428 tap0801 (f6587c800ce0ad14e755c4605febf3f9) C:\WINDOWS\system32\DRIVERS\tap0801.sys

12:01:29.0109 1428 tap0801 - ok

12:01:29.0171 1428 tbiosdrv (7147b0575bcc93a6ab7d5c90f47c0b9f) C:\WINDOWS\system32\DRIVERS\tbiosdrv.sys

12:01:29.0171 1428 tbiosdrv - ok

12:01:29.0265 1428 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

12:01:29.0265 1428 Tcpip - ok

12:01:29.0484 1428 Tcpip6 (4e53bbcc4be37d7a4bd6ef1098c89ff7) C:\WINDOWS\system32\DRIVERS\tcpip6.sys

12:01:29.0484 1428 Tcpip6 - ok

12:01:29.0515 1428 TcUsb (fc6fe02f400308606a911640e72326b5) C:\WINDOWS\system32\Drivers\tcusb.sys

12:01:29.0515 1428 TcUsb - ok

12:01:29.0578 1428 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

12:01:29.0578 1428 TDPIPE - ok

12:01:29.0593 1428 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

12:01:29.0593 1428 TDTCP - ok

12:01:29.0640 1428 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

12:01:29.0640 1428 TermDD - ok

12:01:29.0734 1428 tifm21 (244cfbffdefb77f3df571a8cd108fc06) C:\WINDOWS\system32\drivers\tifm21.sys

12:01:29.0750 1428 tifm21 - ok

12:01:29.0812 1428 tmactmon (e04de937c85925bae1feb0fb41d28621) C:\WINDOWS\system32\drivers\tmactmon.sys

12:01:29.0812 1428 tmactmon - ok

12:01:30.0046 1428 tmcomm (fffe56696b0f8980e652ccb58632b318) C:\WINDOWS\system32\drivers\tmcomm.sys

12:01:30.0062 1428 tmcomm - ok

12:01:30.0093 1428 tmevtmgr (acbaa02aa2c4fccd07246d42cf3154db) C:\WINDOWS\system32\drivers\tmevtmgr.sys

12:01:30.0093 1428 tmevtmgr - ok

12:01:30.0234 1428 TmFilter (44b4a683b8de31b709d1e5fc5d01dcc6) C:\Program Files\Trend Micro\OfficeScan Client\TmXPFlt.sys

12:01:30.0234 1428 TmFilter - ok

12:01:30.0265 1428 TmPreFilter (1615eb81a09c3c36ba8b4a1b1d525d8f) C:\Program Files\Trend Micro\OfficeScan Client\TmPreFlt.sys

12:01:30.0265 1428 TmPreFilter - ok

12:01:30.0359 1428 tmtdi (0d943f6afa8bd3cfc6fdb5d5a5c17e91) C:\WINDOWS\system32\DRIVERS\tmtdi.sys

12:01:30.0359 1428 tmtdi - ok

12:01:30.0531 1428 TosIde - ok

12:01:30.0562 1428 TPwSav (9ffffb4c5b06c7b75e8159f1106006ac) C:\WINDOWS\system32\Drivers\TPwSav.sys

12:01:30.0562 1428 TPwSav - ok

12:01:30.0640 1428 tunmp (8f861eda21c05857eb8197300a92501c) C:\WINDOWS\system32\DRIVERS\tunmp.sys

12:01:30.0640 1428 tunmp - ok

12:01:30.0718 1428 Tvs (cc6763889198ef975b143d49789bcfa9) C:\WINDOWS\system32\DRIVERS\Tvs.sys

12:01:30.0718 1428 Tvs - ok

12:01:30.0765 1428 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

12:01:30.0781 1428 Udfs - ok

12:01:30.0781 1428 ultra - ok

12:01:30.0843 1428 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

12:01:30.0859 1428 Update - ok

12:01:30.0906 1428 USBAAPL - ok

12:01:30.0968 1428 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

12:01:30.0968 1428 usbccgp - ok

12:01:31.0015 1428 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

12:01:31.0015 1428 usbehci - ok

12:01:31.0046 1428 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

12:01:31.0046 1428 usbhub - ok

12:01:31.0234 1428 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys

12:01:31.0250 1428 usbprint - ok

12:01:31.0281 1428 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys

12:01:31.0281 1428 usbscan - ok

12:01:31.0312 1428 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

12:01:31.0312 1428 USBSTOR - ok

12:01:31.0375 1428 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

12:01:31.0375 1428 usbuhci - ok

12:01:31.0390 1428 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

12:01:31.0390 1428 VgaSave - ok

12:01:31.0406 1428 ViaIde - ok

12:01:31.0453 1428 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

12:01:31.0453 1428 VolSnap - ok

12:01:31.0671 1428 VSApiNt (84b4bfc6808adfdeb0716af857dd9519) C:\Program Files\Trend Micro\OfficeScan Client\VSApiNt.sys

12:01:31.0671 1428 VSApiNt - ok

12:01:31.0968 1428 w39n51 (b1f126e7e28877106d60e6ff3998d033) C:\WINDOWS\system32\DRIVERS\w39n51.sys

12:01:32.0000 1428 w39n51 - ok

12:01:32.0062 1428 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

12:01:32.0078 1428 Wanarp - ok

12:01:32.0125 1428 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys

12:01:32.0125 1428 wanatw - ok

12:01:32.0312 1428 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys

12:01:32.0312 1428 wceusbsh - ok

12:01:32.0390 1428 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

12:01:32.0390 1428 Wdf01000 - ok

12:01:32.0406 1428 WDICA - ok

12:01:32.0468 1428 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

12:01:32.0468 1428 wdmaud - ok

12:01:32.0640 1428 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys

12:01:32.0640 1428 WpdUsb - ok

12:01:32.0828 1428 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys

12:01:32.0828 1428 WS2IFSL - ok

12:01:32.0906 1428 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

12:01:32.0906 1428 WudfPf - ok

12:01:32.0953 1428 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

12:01:32.0953 1428 WudfRd - ok

12:01:33.0046 1428 MBR (0x1B8) (09ce7397af23d4c0b331b89d0297cc7e) \Device\Harddisk0\DR0

12:01:33.0156 1428 \Device\Harddisk0\DR0 - ok

12:01:33.0171 1428 Boot (0x1200) (dd567a5ed3a54afa17729a3e5658fbea) \Device\Harddisk0\DR0\Partition0

12:01:33.0171 1428 \Device\Harddisk0\DR0\Partition0 - ok

12:01:33.0187 1428 ============================================================

12:01:33.0187 1428 Scan finished

12:01:33.0187 1428 ============================================================

12:01:33.0234 1148 Detected object count: 3

12:01:33.0234 1148 Actual detected object count: 3

12:02:31.0625 1148 HKLM\SYSTEM\ControlSet001\services\394172b9 - will be deleted on reboot

12:02:31.0656 1148 HKLM\SYSTEM\ControlSet002\services\394172b9 - will be deleted on reboot

12:02:31.0671 1148 C:\WINDOWS\3111272761:3334376774.exe - will be deleted on reboot

12:02:31.0671 1148 394172b9 ( Rootkit.Win32.PMax.gen ) - User select action: Delete

12:02:32.0953 1148 Backup copy found, using it..

12:02:32.0968 1148 C:\WINDOWS\system32\DRIVERS\redbook.sys - will be cured on reboot

12:02:32.0968 1148 redbook ( Rootkit.Win32.ZAccess.aml ) - User select action: Cure

12:02:32.0968 1148 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot

12:02:32.0968 1148 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot

12:02:32.0984 1148 C:\WINDOWS\system32\Drivers\sptd.sys - will be deleted on reboot

12:02:32.0984 1148 sptd ( LockedFile.Multi.Generic ) - User select action: Delete

12:03:01.0093 3320 Deinitialize success

Link to post
Share on other sites
slowcomjim

slowcomjim

Posted
  • Author
Posted

this is the quick scan

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

Database version: 8041

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

10/29/2011 12:45:26 PM

mbam-log-2011-10-29 (12-45-26).txt

Scan type: Quick scan

Objects scanned: 229266

Time elapsed: 35 minute(s), 14 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 1

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites
  • 2 weeks later...
  • 2 weeks later...
  • Staff
screen317

screen317

Posted
  • Staff
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.