Jump to content

This one's got me, it seems

Thatguyx

By Thatguyx
in Resolved Malware Removal Logs

 Share

Recommended Posts

Thatguyx

Thatguyx

Posted
Posted

Normally i have no problems removing stuff on my own but this one is massive.

I'll post the DSS.

Not sure if i should post it in the post, so i just attached the text files.

Can anyone help me please? I really need to fix this.. I can't afford to loose some of my recent work that isn't backed up..

DDS (Ver_2011-08-26.01) - NTFSAMD64 NETWORK

Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_25

Run by Baustin at 10:34:42 on 2011-11-11

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3839.2642 [GMT -5:00]

.

AV: Lavasoft Ad-Watch Live! Anti-Virus *Enabled/Updated* {9FF26384-70D4-CE6B-3ECB-E759A6A40116}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Lavasoft Ad-Watch Live! *Enabled/Updated* {24938260-56EE-C1E5-047B-DC2BDD234BAB}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\Explorer.EXE

C:\Windows\system32\ctfmon.exe

C:\Windows\TEMP\ckiqeg\setup.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AWSC.exe

C:\Windows\system32\REGSVR32.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.search.yahoo.com/?fr=w3i&type=W3i_SP,204,0_0,StartPage,20110728,16897,0,6,0

mStart Page = hxxp://asus.msn.com

uInternet Settings,ProxyOverride = *.local

uURLSearchHooks: NetAssistant: {e38fa08e-f56a-4169-abf5-5c71e3c153a1} - C:\Program Files (x86)\Freeze.com\NetAssistant\NetAssistant.dll

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: NetAssistant: {e38fa08e-f56a-4169-abf5-5c71e3c153a1} - C:\Program Files (x86)\Freeze.com\NetAssistant\NetAssistant.dll

BHO: Social Extras Plugin: {ff4e1d1d-705b-4379-ab33-22d98c1abf55} - C:\Program Files (x86)\SocialExtras\socialx.dll

TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll

uRun: [Dyyno Launcher] "C:\Program Files (x86)\Dyyno\Dyyno Broadcaster\dyyno_launcher.exe" 30100 30101 30102 30103 30104

uRun: [Google Update] "C:\Users\Baustin\AppData\Local\Google\Update\GoogleUpdate.exe" /c

uRun: [Pando Media Booster] C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe

uRun: [TpScrex] C:\ProgramData\TpScrex\TpScrex.exe /somering

uRun: [AtiTrayTools] "C:\Program Files (x86)\Ray Adams\ATI Tray Tools\atitray.exe"

uRun: [MsnMsgr] "C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe" /background

uRun: [vbp5JWf9XUkrN] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [CrNAvi3na6KRgqC] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fQd8YUltNAvoF] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [f9tFfl2WTr3RV] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [EC5.exe] C:\Users\Baustin\AppData\Roaming\Microsoft\8797\EC5.exe

uRun: [V2ibD3pnGaHsKfL] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [gZhwUVltzc1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [zJ6K8fRZ9wClBzN] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [ufRZ9hXUlrPyAu2] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [HBzPNyxA1v2b3m] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [HlBzPNyA1v2b3m] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [HlBzPyA1uSoFpG] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [VgXjeVOtxuSi3GQ] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [QLjVxSpHWf9ZjO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [NDn4HWf9ZjCIlt0] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [kjCIlNPu1Dna6JE] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [iG6EqCUVrBPy1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [pqYkUVrBPc1D] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [AkUVrOxy1Dna5Wd] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [sna5sWd8ZhX] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [F4pmH5sQJdKgZhX] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [DgRZ9hYXwUetPy] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [eRZ9hYXwjVBPyA] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [eRZ9hYXwjVlzNc] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WGQ6sWKEgqYkVOx] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [N6sWKLTjYwIlxu1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [HgqYkVOxu1DnaHs] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [O6sWKLTjYwIlxu1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [bQ6sKEgqYwVOxu1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WnaQ6sKEgqYwVlt] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [N6sWKf9ZjwrNPui] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [JH6sWJ7fE8qCkVO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [jtPci2nFms] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [gWd8RqXlP1o] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [N6sKEgqYwVlt0Sb] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [jP1omQ7KR9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [nIBrzONyx0vi] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [zuvS2oF3pGaJWf9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WnaQ6sWKLTjwIlx] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [YD3na6KfLTjCkVl] C:\Users\Baustin\AppData\Roaming\dwme.exe

Attach.txt

DDS.txt

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

uRun: [yLTjCwkIVlN] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [dONx0Sb34] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Yb34Q6KEgqYwIlN] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [GUVl0v4QK9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [a3G5aQJdWfTjCIr] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [waQJWfhqCIrOx0v] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [VQJdWfTjCIrOyAv] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [rIBrzONyAv2p5HW] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LaHd7LgTqCIrOx] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LaH7gerxAui3Ga] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [qIVrlONtx0c1boG] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [r35Jd8LTj] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [rGdLTjeBO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [n1bGdLTjeBOxu2F] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [nxS3Q89TjeBOx0S] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [hFn5a6KRgXYkrN0] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WlONtxP0uSbo4Hs] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [ueBPcA1Dnp5JEg9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Win5EZkBcDQYzp9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [mCPnEkAHZIodTzb] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WlONtxP0uSb4sgU] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [WnEkAHZIodTzbdq] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [uAHZIodTzbdqy5X] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [plvQYN4Kjyp8C0H] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LYeP1HZIbfBbfBS] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [pe1Qjc5TPm9rFRz] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [KSHZV0o7YPnJqe0] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [owtbHgri5gkP1D] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [azNxu2Fn5HWf9XY] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [ex0Sbpn5HWf9XYk] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [nQJd8LTeOxFH9kA] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [aySpHfXeVOxu2Dn] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [bf9XYkrcn6EqYIl] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [iTeOxFH9kADH9] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [yn5HWf9XYkrNAc] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Gibo4HWf8ZYwUrO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [exu2bp5HWf9XYkr] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [KWf8ZYwVrO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [xamH5sWJ7E8RqYw] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [aOxFH9kADH9Yrt0] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [P8ZYwVrOBxy1v3] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [D8gRZqhYXUe] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Gibo4HWf8ZYwVOx] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [D8gRhYXwUeO] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [RqkBcDaJgXl0Avo] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [iaJgXl0Avo4m5Q7] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [iXl0Avo4m5Q7EgZ] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [dAoH7RwIy1o4] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fhl1b56Kf9TqCIz] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [YNoG6RwUP2aRCO2] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [faQH6dWK7R] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [bzNyAviF5Q6W7R] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fE9ZYkrNPc] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fEgqCIlt01] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fZrPb4sJf88234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [dZYkrBP0c8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [fZrcG7gCl0] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [fZrcGJqlS4] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Ntz0c1iD2FpHQ78234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Qc1iD2onFpHQ7Eg8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [svD2onF4pHQ7E9j8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [ohwjUeIBPyAvo4G8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Ho4G5sQJ6EfZTje8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Ho4G5sQJ6E8ZTje8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Ho4G5sQJ6ERhXjl8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Ho4GQJ6dEfZTje18234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jTXjeBPxuSb3G8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jTXjeBPyxSb3a8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [j9TjeBPxu2FGQ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [NPyx1SbF3a6KRhq8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jXjCIzyx1SbGJ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jhXjClrN1Sb3a8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zBPxuSbF3GQdKRh8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jTjePbQRjOv5f8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [ibF3GQdKRhqC8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [bi3GQsW7LTYkrNP8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [RA2Fp5Qd8LTjCIz8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [w0uc2Dp4Q6WfLgZ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [js7EgTZqwIrxu] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [sx0Svo4m7R8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Ep5JEg9YjeBPc8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [E5gYjIPcAv2Fp8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OjIPcAv2Fp8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [mPuFpsQJ6KR9X8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [TRZ9hTXwjlBzNx18234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [fBzy1vo3G68234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Lrzy1vo3G6W8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Gy1vo3G56Wf9T8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [nv2ibF3GQd7L8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [x2ibF3GQd7LgqC8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [gkNv3QKgYkVzt0S8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [xFna6KRgCIzt0S8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jna6KRgCeIzt0Si8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Lzt0S2ibDpGaHW78234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [wxP0cS1D34m5W8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [yUeBPci2Fp5Jd8Z8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Pvo4H5sd8ZY8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Yo45sd8ZYjeIt8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [bjelIBtzPyAvo8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [wtzPNycAvoFms6K8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [wtzPNycAvoFms6K] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [cUezySpJf] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [HwCerxSpQ8hCz0i] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [t2afjO14fhlyi3F8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [tcA1ivDnpHsJd8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [b5sQJ7dEKRhXjVl8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [DuvD2obF4m58234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zD2obF4pm5Q6E8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [TF4pmG5sQ6E8R9T8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [k6dEK8fRZhXjClB8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eJ6dEK8fR9TwUeI8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [O2obF4pmGsJdK8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [gbF4pmG5sJdKfZ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [vsQJ6dEK8R9TwUe8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sHdWK7fRLg8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eH6dW7fRLXY8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eH6dW7fRLgq8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eH6dW7fRLTq8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eHdWK7fRLgq8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sHdW7fRLTj8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sH6dW7fRLT8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eHdW7fRL9XY8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sH6dW7fRLX8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sH6dW7fRLg8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eHdW7fRLTje8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [EkIVrOtuSb3n4Qs8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [EkIrzOxu2b3n4Qs8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [eHdW7fRL9XY] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [sHdW7fRL9X8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [N1Do4ms7LTh8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [dkrBPciDna5J8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [dwVOxy1Dna5J8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [dkrBPySDna5J8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [dVxSoH7d8Zhw8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Kxu1Do4W8YrPD5g8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [N1Do4HWf8ZY] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [N1Do4W8YrPD8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [Nbo4HWf8ZYw] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [dkrBPciDna5J] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [drPD5gwOtPc18234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [drPD5gwOtPc1] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [dkrBPySDna5J] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [N1Do4ms7LTh] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Ni3m7gqYkrB] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Q2obF4pmGsJ] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Q2obF4pG5Q6] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [QobF4pGQJEf] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [QobF4pGQd8Z] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Q2obF4pG5Q68234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [YeBPcu2ob4GsJEf8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [l4pGQd8ZTweBPy18234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [rfRL9hTXq8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zRL9hTXqjC8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [rfRhTqCIz8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [W6dWK8fRhqCIzy08234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [rfRhTjeBO8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zRhTqCIzy08234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [YaQJ6dWK8RhjeBO8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zRhTjeBOxu8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [W6dWK8fRTjeBOx08234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zRTjeBOx0v8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [zRTjeBOxuS8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [AS2i3pG5a8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [fucS2ibDp4HsKfL8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [fucS2ibDpGaHs7E8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [f2DnaH6sWf9ZYkr8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OEL9TjwIlNPci3G8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OETjwIrOx0ci3Ga8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OELYrxu1Dna6JE88234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OE9jVx1n6ETwO0S8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [sIrOx0ci3Ga6JfL] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [TZPci2Fm5] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [wi3Ga6JfLThCUOy] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [OE9Zw3T1Ly7B5lS8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [OE9Zw3T1Ly7B5lS] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Ai3GQH6WKRgq] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [JexDQEgTq] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [JTet3WZVu] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [Fms7EgqCU] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LuDna6JEgqCUlB] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [L1aECtiaEYBimK] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [G0D5gkz2sRVyo568234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [cjYwIrNtPc1D8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [NvDoFp5sQ6E8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [NvDoFm5sQ6E8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [QF4pmG5QJdKfZh8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [f6dEK8fRZhXjClB8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [pK8fRZ9hTwUeIrP8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [m8fRZ9hTXjClBzN8234A] C:\Windows\system32\AV Security 2012v121.exe

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

uRun: [ETjeBzNAvin6Rqk8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [jzvnWXrSHT8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [mHWf9ZjwVlt0SiD] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [sngN3WgClPc] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [iNPci3Gms7LgZYk8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [EhqCIzi6qNDWjxn8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [xeBApd9YADWTI0o8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [iNPci3Gms7LgZYk] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [VxngN3WgClPc1Do8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [KOzy1DnFps] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [KOz0AvoFps] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [it0SibDnasJf8ZY8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [qjBx1SbFp5JW] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LZjBx1SbF5JWf9X] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [LZjBbdqOSpdgkti] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [uZjkrlONtPc] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [uZjkVlONtPu] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [hlONtxPucDo4HsJ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [hlONtxPucDo4HsJ] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [hlONtxPuci3GmsJ8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [hlONtPcbo4HsJE8] C:\Users\Baustin\AppData\Roaming\dwme.exe

uRun: [psJ7fEL8ThUO8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [p4HsJ7EL8TqY8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [hc4sJ7fELThUOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [hlONtPcbo4HsJE88234A] C:\Windows\system32\AV Security 2012v121.exe

uRun: [QBPci2Fms7K8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r

mRun: [RunAIShell] C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot

mRun: [<NO NAME>]

mRun: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [PlusService] C:\Program Files (x86)\Messenger Plus! Live\PlusService.exe

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

mRun: [F2ibF3pnGaHdKfL8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [RjYCwkIVrOt] C:\Windows\system32\config\systemprofile\AppData\Roaming\dwme.exe

mRun: [LVelIBtzPyAuDoF8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [k9gTZqjYCkV8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [nWK8fRL9hXjCkBz8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [EC5.exe] C:\Program Files (x86)\LP\8797\EC5.exe

mRun: [aycA1uvD2b4m58234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [iS2ibD3pn4Q6W7E8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [DUCelIBrzNx1v2b8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [u3onG4amHsJfLgZ8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [w1uvS2obFpGaJ8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [zonF4amH5W7E8Rq8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [mUCekIBrzNx0v2b8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [RgRZqhYXwUeOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [jqjYCekIVzNx0c28234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [vnF4pmH5sJdKgZh8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [OONtxA0uc28234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [kuvD2obF4m5Q6E8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [gwkIVrlONx0c1b38234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [b8gRZ9hYXjVlBz8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [EcS2ibD3pGaHsKf8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VzPNycA1uDoF8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [aTZqjYCwkVlNx0c8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HfRL9gTXqYeIrOt8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [PP0ycA1iv2n4m5Q8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [NuvS2ibF3n5Q6W8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [w5sWJ7dELg8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FTXqjUCekBzNx0v8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [dJ7dEL8gRqYwUeO8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [QIBrzONyx0v2b38234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FL8gRZqhYwUeOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [vL9hTXqjUe8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ytxP0ucS1b3n4m68234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [uD2obF4pm5Q6E8R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [sqjYCwkIVlNx0c18234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HK8fRZ9hTwUeIr8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [J1ibD3onGaHsJfL8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [D4pmG5sQJdK8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [N2ibD3pnGaH8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [s0ycA1ivDoF8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [bBrzONyxAuS8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [PCwkUVrlOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [JTXwjUCelBzN8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [donG4amH6W7E8Tq8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [vXwjUCelIrPyAuS8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [eZqhYCwkUrOtPy8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [t4pmG5sQJdKfZhX8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [eTZqjYCwkVlNx0c8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [KD2obF4pm5Q6E8R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HfEL9gTZqYwIrOt8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [DobF4pmG5Q6E8R98234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [AL9gTZqjYwIrOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [TycA1uvD2b4m5Q68234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [gucS2ibD3n48234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [QtzP0ycA1v28234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [DekIBrzONx08234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [LycS1ivD3n4m5W78234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [gL9hTXqjUeIrOyA8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HkUVrlOBtPySiDo8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [JQJ6dWK8fLhXjCl8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [uONtxP0uc1b3n4m8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [cwjUCelIBzNx1v28234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [JG4amH6sW7E8TqY8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [CelIBrzPNx1v2b38234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [D0ucS1ibDoGaHsJ8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [y5sQJ6dEKfZhXj8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [rYCwkIVrlNx08234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [fobF4pmG5Q6E88234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [vZqjYCwkIrOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VD2obF4pm5Q6E8R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [QL9gTZqjYwIrOt8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [W2obF4pmGsJdKfZ8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HL9gTZqjYwIrOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [WD2onF4pm5Q7E8R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [c9gTXqjYCkVzNx08234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ZsQJ7dEK8R9YwUe8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [zrzONtxA0c2b3n48234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [RH5sQJ7dE8R9YwU8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [OrzONtxA0c2b3n48234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FQJ7dEK8gZhXjVl8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [uibD3pnG4Q6W7E8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [QRZ9hYXwjVlBzN8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ntxA0ucS2b3n8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [lQJ7dEK8gZhX8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [nNtxA0ucSiDpGaH8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [e5sQJ7dEKgZhXj8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [CkIBrzONyAuSiF8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [bWJ7dEL8gZhXkVl8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [aS2ibF3pn58234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [t8gRZqhYXk8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [YUCekIBrzNx0v2b8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [wvD2onF4pHsJd8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [DjYCekIVrOtAuSi8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FmH5sQJ7dKgZhXj8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [obD3pnG4aHsKfLg8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FvD2obF4pGsJdKf8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [oxP0ucS1iDo8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [R8fRZ9hTXjClBz8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [eaQH6sWK7E9TqYw8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [iIBtzPNyc18234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VH6sWK7fE9Tq8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [rtzPNycA1v2b4m58234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [pG4amH6sW8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [PdEK8fRZ9TwUeIr8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [RONtxP0uc1b3n4m8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [TK8fRZ9hTwUeIrP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HqjYCwkIVlNx0c8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [rsQJ6dEK8R9TwUe8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [GZqjYCwkIrOtPuS8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [f6dEK8fRZh8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [N0ucS1ibDoGaHs8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VQJ7dEK8gZhX8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [faQH6sWK7E8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [iUVelIBtzN8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [w3pnG4aQHs8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [DVelIBtzPyAuDo8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [TEL9gTZqjCkVlNx8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VIBtzPNyc1v2b4m8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [r6sWK7fELgZjCkV8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [xcA1uvD2oFp8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [b0ucS2ibDpGaHs8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [kdEK8gRZ9YwUeI8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [saQH6sWK7E8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [wJ7dEK8gR9YwUeI8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [szONyxA0uSiFpGa8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [yH5sWJ7dE8RqYwU8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [XBrzONyxAuSiFpG8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [i8gRZqhYXk8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [fvS2ibF3pGaHd8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [s7dEL8gRZhX8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [LkIBrzONyAuSiFp8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [egRZqhYXwUeOtPy8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [aaQH6dWK7R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [uRZqhYXwkVlBz0c8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [JuvS2ibF3n5Q6W78234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [mWJ7dEL8gZhXkVl8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [f3pnG5aQHdKfL8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [XOBtxP0yc1v3n4m8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [vzONyxA0uSiFpGa8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [FL8gRZqhY8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [iyxA0uvS28234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ssWJ7dEL8RqYwUe8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ouvS2ibF3n5Q6W8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [lL8gRZqhYwUeOtP8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [J5aQH6dWK8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [HsWJ7dEL8RqYwU8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [qBrzONyxAuSiFpG8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [ysWJ7dEL8RqYwUe8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [u6dWK7fRLgXjCkV8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [QlOBtzP0yAiDoFp8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [z9hTXqjUCk8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [rdEL8gRZqYwUeOt8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [dpnG5aQH6W7R9Tq8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [VelOBtzP0c1v2n48234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [kqjYCekIVzNx0c8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [XF4pmG5sQ6E8R8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [CVrlONtxPuSiDoG8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [qTXwjUCelBzN8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [uTZqhYCwkVl8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [Q1uvS2obFpG8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [xfEL8gTZqYw8234A] C:\Windows\system32\AV Security 2012v121.exe

mRun: [PZ9hTXwjUeIrPyA8234A] C:\Windows\system32\AV Security 2012v121.exe

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

IE-X64: {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Baustin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk

STS-X64: CAveStartButtonChangerObject Class: {F791A188-699D-4FD4-955A-EB59E89B1907} - C:\Program Files (x86)\The Skins Factory\Hyperdesk\Common\AveStartButtonChangerInProc.dll

Hosts: 94.63.240.127 www.google.com

Hosts: 94.63.240.128 www.bing.com

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Baustin\AppData\Roaming\Mozilla\Firefox\Profiles\cvufu74e.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.startskins.com/startpage/8471467355/

FF - prefs.js: network.proxy.type - 0

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

FF - plugin: C:\ProgramData\Best Buy pc app\npBestBuyPcAppDetector.dll

FF - plugin: C:\Users\Baustin\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

.

============= SERVICES / DRIVERS ===============

.

R0 Lbd;Lbd;C:\Windows\system32\DRIVERS\Lbd.sys --> C:\Windows\system32\DRIVERS\Lbd.sys [?]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R3 amdiox64;AMD IO Driver;C:\Windows\system32\DRIVERS\amdiox64.sys --> C:\Windows\system32\DRIVERS\amdiox64.sys [?]

R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

R3 usbfilter;AMD USB Filter Driver;C:\Windows\system32\DRIVERS\usbfilter.sys --> C:\Windows\system32\DRIVERS\usbfilter.sys [?]

S2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]

S2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]

S2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-7-28 361984]

S2 AODDriver4.01;AODDriver4.01;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2011-6-24 55424]

S2 AODService;AODService;C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe [2011-5-25 136616]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]

S2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]

S2 Device Handle Service;Device Handle Service;C:\Windows\SysWOW64\AsHookDevice.exe [2010-11-2 203392]

S2 Dyyno Launcher;Dyyno Service;C:\Program Files (x86)\Dyyno\Dyyno Broadcaster\launcherd.exe [2011-1-14 415072]

S2 HyperDeskCustomThemeEnabler;HyperDesk's Custom Theme Enabler;C:\Windows\Installer\MSIA6DB.tmp [2011-9-5 102400]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2011-11-9 2152152]

S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-6-15 366152]

S2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-9-14 508264]

S3 ahcix64s;ahcix64s;C:\Windows\system32\DRIVERS\ahcix64s.sys --> C:\Windows\system32\DRIVERS\ahcix64s.sys [?]

S3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]

S3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]

S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\system32\drivers\AtihdW76.sys --> C:\Windows\system32\drivers\AtihdW76.sys [?]

S3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;C:\Games\Dragon Age\bin_ship\daupdatersvc.service.exe [2009-12-15 25832]

S3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\system32\DRIVERS\vrtaucbl.sys --> C:\Windows\system32\DRIVERS\vrtaucbl.sys [?]

S3 Lavasoft Kernexplorer;Lavasoft helper driver;C:\Program Files (x86)\Lavasoft\Ad-Aware\kernexplorer64.sys [2011-11-10 17152]

S3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\Windows\system32\DRIVERS\ManyCam_x64.sys --> C:\Windows\system32\DRIVERS\ManyCam_x64.sys [?]

S3 netr28x;Ralink 802.11n Wireless Driver for Windows Vista;C:\Windows\system32\DRIVERS\netr28x.sys --> C:\Windows\system32\DRIVERS\netr28x.sys [?]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 RDID1053;CASIO WK-110;C:\Windows\system32\Drivers\rdwm1053.sys --> C:\Windows\system32\Drivers\rdwm1053.sys [?]

S3 Sftfs;Sftfs;C:\Windows\system32\DRIVERS\Sftfslh.sys --> C:\Windows\system32\DRIVERS\Sftfslh.sys [?]

S3 Sftplay;Sftplay;C:\Windows\system32\DRIVERS\Sftplaylh.sys --> C:\Windows\system32\DRIVERS\Sftplaylh.sys [?]

S3 Sftredir;Sftredir;C:\Windows\system32\DRIVERS\Sftredirlh.sys --> C:\Windows\system32\DRIVERS\Sftredirlh.sys [?]

S3 Sftvol;Sftvol;C:\Windows\system32\DRIVERS\Sftvollh.sys --> C:\Windows\system32\DRIVERS\Sftvollh.sys [?]

S3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-9-14 219496]

S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;C:\Windows\system32\drivers\viahduaa.sys --> C:\Windows\system32\drivers\viahduaa.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?]

.

=============== Created Last 30 ================

.

2011-11-11 15:31:59 -------- d-----w- C:\Users\Baustin\AppData\Roaming\fjVAbaHW7E9ZjwI

2011-11-11 15:30:59 -------- d-----w- C:\Users\Baustin\AppData\Roaming\zp5Q6E8Z9TwUe

2011-11-11 15:29:59 -------- d-----w- C:\Users\Baustin\AppData\Roaming\wxc1DnF4as7LR

2011-11-11 15:28:59 -------- d-----w- C:\Users\Baustin\AppData\Roaming\XsWK7fEL9TqYwIr

2011-11-11 15:21:49 -------- d-sh--w- C:\found.000

2011-11-11 12:38:43 2945024 ----a-w- C:\Windows\SysWow64\AV Security 2012v121.exe

2011-11-11 07:24:23 -------- d-----w- C:\Users\Baustin\AppData\Roaming\DA856

2011-11-11 07:19:58 -------- d-----w- C:\Users\Baustin\AppData\Roaming\7E3DA

2011-11-11 06:33:10 16432 ---ha-w- C:\Windows\System32\lsdelete.exe

2011-11-11 03:10:16 -------- d-----w- C:\Program Files (x86)\DA856

2011-11-11 03:09:51 -------- d-----w- C:\Program Files (x86)\LP

2011-11-10 22:29:14 55384 ---ha-w- C:\Windows\System32\drivers\SBREDrv.sys

2011-11-10 22:10:01 69376 ---ha-w- C:\Windows\System32\drivers\Lbd.sys

2011-11-10 22:09:51 -------- d--h--w- C:\Program Files (x86)\Lavasoft

2011-11-10 20:50:49 -------- d-----we C:\Windows\system64

2011-11-10 11:49:24 992368 ---ha-w- C:\Windows\System32\VIAPropPageExt.dll

2011-11-10 11:49:24 91760 ---ha-w- C:\Windows\System32\Dts2PropPageExt.dll

2011-11-10 11:49:24 83056 ---ha-w- C:\Windows\System32\ViaMicArrayPropPageExt.dll

2011-11-10 11:49:24 549488 ---ha-w- C:\Windows\System32\VIASysFx.dll

2011-11-10 11:49:24 199280 ---ha-w- C:\Windows\System32\ViaMicArrayAPO.dll

2011-11-10 11:49:24 1342064 ---ha-w- C:\Windows\System32\drivers\viahduaa.sys

2011-11-10 11:49:23 248944 ---ha-w- C:\Windows\System32\Dts2APO.dll

2011-11-10 11:27:28 -------- d--h--w- C:\Program Files (x86)\AMD APP

2011-11-09 01:16:49 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll

2011-11-09 01:16:49 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll

2011-11-09 01:16:49 1897328 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2011-11-09 01:16:47 3141120 ----a-w- C:\Windows\System32\win32k.sys

2011-11-09 01:15:25 8570192 ---ha-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2998B77-2AFA-40BC-8EF2-005E3649A916}\mpengine.dll

2011-11-08 20:52:49 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\SYYXXwkkUV

2011-11-08 20:52:48 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\v555sWWJ7dE8gZq

2011-11-08 20:52:45 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\hEEKK8ffR

2011-11-08 20:52:44 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\W7dddEK8gRZ9

2011-11-06 05:29:24 14744 ---ha-w- C:\Users\Baustin\AppData\Roaming\Microsoft\IdentityCRL\Production\ppcrlconfig.dll

2011-11-06 05:24:10 -------- d--h--w- C:\Program Files (x86)\Messenger Plus! Live

2011-11-06 05:21:20 -------- d--h--w- C:\ProgramData\WindowsLiveInstaller

2011-11-06 05:03:47 -------- d--h--w- C:\Users\Baustin\AppData\Local\{CE42D758-3F85-4FC6-AF6D-F9902FF76D7D}

2011-11-06 05:03:37 -------- d--h--w- C:\Users\Baustin\AppData\Local\{6F3CA361-9F86-4C9D-9218-C23CF480A9B8}

2011-11-06 05:01:36 -------- d--h--w- C:\Users\Baustin\AppData\Local\{E541B15A-DFA6-4F30-B0BE-8D7665EB886E}

2011-11-06 05:01:26 -------- d--h--w- C:\Users\Baustin\AppData\Local\{70AB425A-355B-4746-994E-5F27B907874E}

2011-11-05 20:14:22 -------- d--h--w- C:\Fallout 3

2011-11-03 22:54:35 -------- d--h--w- C:\ProgramData\BioWare

2011-11-03 01:39:56 -------- d--h--w- C:\ProgramData\VirtualizedApplications

2011-11-02 22:50:03 -------- d--h--w- C:\Users\Baustin\AppData\Local\Microsoft Help

2011-11-02 22:49:24 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\SoftGrid Client

2011-11-02 22:49:24 -------- d--h--w- C:\Users\Baustin\AppData\Local\SoftGrid Client

2011-11-02 22:48:29 -------- d--h--w- C:\Program Files (x86)\Microsoft Application Virtualization Client

2011-11-02 22:48:15 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\TP

2011-11-02 22:25:51 -------- d--h--w- C:\Program Files\LucasArts

2011-11-02 01:30:49 -------- d--h--w- C:\Users\Baustin\AppData\Roaming\ooVoo Details

2011-11-02 01:30:46 -------- d--h--w- C:\Program Files (x86)\ooVoo

2011-10-30 18:15:51 -------- d--h--w- C:\Users\Baustin\AppData\Local\{4730E413-D9BC-4E26-90FC-6FDFF5D94A3A}

2011-10-30 18:15:41 -------- d--h--w- C:\Users\Baustin\AppData\Local\{DDEC97F1-7BDB-46E5-BF99-209A096845E6}

2011-10-28 02:20:53 -------- d--h--w- C:\Users\Baustin\AppData\Local\{2F942F6C-D806-435E-8B6A-3B6FFF384B0F}

2011-10-28 02:20:43 -------- d--h--w- C:\Users\Baustin\AppData\Local\{58B643C9-CEC4-4DF1-A7E8-F73D4F79F8BE}

2011-10-26 01:18:47 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll

2011-10-26 01:18:47 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll

2011-10-24 22:29:47 -------- d--h--w- C:\Users\Baustin\AppData\Local\{7A6FF4E0-DB9E-4CED-BC50-121856C8B3E9}

2011-10-24 22:29:37 -------- d--h--w- C:\Users\Baustin\AppData\Local\{2CC786A2-1646-4DF7-A937-B1620BE8026E}

2011-10-24 22:24:37 -------- d--h--w- C:\Users\Baustin\AppData\Local\{C367C201-CE2D-4BE2-837C-8EBCF51B8B86}

2011-10-24 22:24:27 -------- d--h--w- C:\Users\Baustin\AppData\Local\{D33A5667-5BAE-4B86-AE44-489A45256188}

2011-10-23 20:41:33 -------- d--h--w- C:\Users\Baustin\AppData\Local\{02DDF663-C363-4D85-8961-39A2A89CBFA5}

2011-10-23 20:41:23 -------- d--h--w- C:\Users\Baustin\AppData\Local\{38E1819E-4225-4888-BD22-19C549D68F51}

2011-10-23 20:09:11 -------- d--h--w- C:\Users\Baustin\AppData\Local\{920C8F38-3EC3-48EF-A54F-DDC67B7065DC}

2011-10-23 20:09:00 -------- d--h--w- C:\Users\Baustin\AppData\Local\{7A9343FF-D882-4471-9BEB-34F97405C365}

2011-10-23 16:19:52 -------- d--h--w- C:\ProgramData\NexusDB3

2011-10-23 13:42:48 -------- d--h--w- C:\Users\Baustin\AppData\Local\FOMM

2011-10-23 13:39:01 -------- d--h--w- C:\Program Files (x86)\GeMM

2011-10-23 12:59:32 -------- d--h--w- C:\Users\Baustin\AppData\Local\Fallout3

2011-10-23 12:58:27 -------- d--h--w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE

2011-10-23 12:38:09 -------- d--h--w- C:\Windows\SysWow64\xlive

2011-10-21 18:29:21 -------- d--h--w- C:\Users\Baustin\AppData\Local\{8D331042-30F4-4C9F-AF8C-1329B396F9B9}

2011-10-21 18:29:10 -------- d--h--w- C:\Users\Baustin\AppData\Local\{FEB16F67-AEC4-4A79-B30A-601BD165248E}

2011-10-20 03:14:52 59904 ---ha-w- C:\Windows\SysWow64\OVDecode.dll

2011-10-12 21:16:36 66048 ---ha-w- C:\Windows\System32\OpenVideo64.dll

2011-10-12 21:16:22 16787456 ---ha-w- C:\Windows\System32\amdocl64.dll

2011-10-12 21:14:54 51200 ---ha-w- C:\Windows\System32\OpenCL.dll

2011-10-12 20:56:18 10207232 ---ha-w- C:\Windows\System32\drivers\atikmdag.sys

2011-10-12 20:20:20 24629760 ---ha-w- C:\Windows\System32\atio6axx.dll

2011-10-12 20:14:36 159744 ---ha-w- C:\Windows\System32\atiapfxx.exe

2011-10-12 20:10:28 466944 ---ha-w- C:\Windows\System32\ATIDEMGX.dll

2011-10-12 20:10:18 487936 ---ha-w- C:\Windows\System32\atieclxx.exe

2011-10-12 20:09:44 204288 ---ha-w- C:\Windows\System32\atiesrxx.exe

2011-10-12 20:08:34 120320 ---ha-w- C:\Windows\System32\atitmm64.dll

2011-10-12 20:08:16 423424 ---ha-w- C:\Windows\System32\atipdl64.dll

2011-10-12 20:08:10 356352 ---ha-w- C:\Windows\SysWow64\atipdlxx.dll

2011-10-12 20:07:58 278528 ---ha-w- C:\Windows\SysWow64\Oemdspif.dll

2011-10-12 20:07:54 21504 ---ha-w- C:\Windows\System32\atimuixx.dll

2011-10-12 20:07:48 59392 ---ha-w- C:\Windows\System32\atiedu64.dll

2011-10-12 20:07:44 43520 ---ha-w- C:\Windows\SysWow64\ati2edxx.dll

2011-10-12 20:04:14 18630656 ---ha-w- C:\Windows\SysWow64\atioglxx.dll

2011-10-12 19:46:20 51200 ---ha-w- C:\Windows\System32\aticalrt64.dll

2011-10-12 19:46:18 46080 ---ha-w- C:\Windows\SysWow64\aticalrt.dll

2011-10-12 19:46:10 44544 ---ha-w- C:\Windows\System32\aticalcl64.dll

2011-10-12 19:46:08 44032 ---ha-w- C:\Windows\SysWow64\aticalcl.dll

2011-10-12 19:45:58 9877504 ---ha-w- C:\Windows\System32\aticaldd64.dll

2011-10-12 19:44:44 1113088 ---ha-w- C:\Windows\System32\atiumd6v.dll

2011-10-12 19:44:28 4289024 ---ha-w- C:\Windows\SysWow64\atiumdag.dll

2011-10-12 19:44:20 1828864 ---ha-w- C:\Windows\SysWow64\atiumdmv.dll

2011-10-12 19:44:10 4023296 ---ha-w- C:\Windows\System32\atiumd6a.dll

2011-10-12 19:42:56 8391680 ---ha-w- C:\Windows\SysWow64\aticaldd.dll

2011-10-12 19:38:20 5431808 ---ha-w- C:\Windows\System32\atiumd64.dll

2011-10-12 19:33:10 4174848 ---ha-w- C:\Windows\SysWow64\atiumdva.dll

2011-10-12 19:31:34 479744 ---ha-w- C:\Windows\System32\atiadlxx.dll

2011-10-12 19:31:22 335872 ---ha-w- C:\Windows\SysWow64\atiadlxy.dll

2011-10-12 19:31:06 17408 ---ha-w- C:\Windows\System32\atig6pxx.dll

2011-10-12 19:31:02 14336 ---ha-w- C:\Windows\SysWow64\atiglpxx.dll

2011-10-12 19:31:02 14336 ---ha-w- C:\Windows\System32\atiglpxx.dll

2011-10-12 19:30:58 39936 ---ha-w- C:\Windows\System32\atig6txx.dll

2011-10-12 19:30:50 32768 ---ha-w- C:\Windows\SysWow64\atigktxx.dll

2011-10-12 19:30:42 317952 ---ha-w- C:\Windows\System32\drivers\atikmpag.sys

2011-10-12 19:29:34 38912 ---ha-w- C:\Windows\System32\atiu9p64.dll

2011-10-12 19:28:30 53248 ---ha-w- C:\Windows\System32\drivers\ati2erec.dll

2011-10-12 19:16:52 54784 ---ha-w- C:\Windows\System32\atimpc64.dll

2011-10-12 19:16:52 54784 ---ha-w- C:\Windows\System32\amdpcom64.dll

2011-10-12 19:16:42 53760 ---ha-w- C:\Windows\SysWow64\atimpc32.dll

2011-10-12 19:16:42 53760 ---ha-w- C:\Windows\SysWow64\amdpcom32.dll

.

==================== Find3M ====================

.

2011-11-11 15:32:07 286208 ----a-w- C:\Users\Baustin\AppData\Roaming\dwme.exe

2011-11-11 15:31:33 286208 ----a-w- C:\Users\Baustin\AppData\Roaming\iexplore.exe

2011-10-20 09:29:54 414368 ---ha-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2011-10-12 20:14:26 736768 ---ha-w- C:\Windows\SysWow64\aticfx32.dll

2011-10-12 20:13:00 867328 ---ha-w- C:\Windows\System32\aticfx64.dll

2011-10-12 20:04:42 4231680 ---ha-w- C:\Windows\SysWow64\atidxx32.dll

2011-10-12 19:54:44 4960768 ---ha-w- C:\Windows\System32\atidxx64.dll

2011-10-12 19:39:38 58880 ---ha-w- C:\Windows\System32\coinst.dll

2011-10-12 19:29:50 40960 ---ha-w- C:\Windows\System32\atiuxp64.dll

2011-10-12 19:29:42 31744 ---ha-w- C:\Windows\SysWow64\atiuxpag.dll

2011-10-12 19:29:26 29184 ---ha-w- C:\Windows\SysWow64\atiu9pag.dll

2011-10-03 05:11:31 36069 ---ha-w- C:\Users\Baustin\uninstall.exe

2011-10-01 03:21:20 1638912 ----a-w- C:\Windows\System32\mshtml.tlb

2011-10-01 02:59:14 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-09-13 10:36:56 25635840 ---ha-w- C:\Windows\System32\imageres.dll

2011-08-27 05:40:28 861184 ----a-w- C:\Windows\System32\oleaut32.dll

2011-08-27 05:40:28 331776 ----a-w- C:\Windows\System32\oleacc.dll

2011-08-27 04:43:07 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

2011-08-27 04:43:06 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll

2011-08-25 00:19:10 56320 ---ha-w- C:\Windows\SysWow64\OpenVideo.dll

2011-08-25 00:18:30 13601280 ---ha-w- C:\Windows\SysWow64\amdocl.dll

2011-08-20 05:45:20 1197568 ----a-w- C:\Windows\System32\wininet.dll

2011-08-20 05:41:16 57856 ----a-w- C:\Windows\System32\licmgr10.dll

2011-08-20 04:38:10 981504 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-08-20 04:35:20 44544 ----a-w- C:\Windows\SysWow64\licmgr10.dll

2011-08-20 04:20:23 482816 ----a-w- C:\Windows\System32\html.iec

2011-08-20 03:26:38 386048 ----a-w- C:\Windows\SysWow64\html.iec

2011-08-17 05:32:24 613888 ----a-w- C:\Windows\System32\psisdecd.dll

2011-08-17 05:27:46 75776 ----a-w- C:\Windows\System32\MSDvbNP.ax

2011-08-17 05:27:46 288256 ----a-w- C:\Windows\System32\MSNP.ax

2011-08-17 05:27:46 108032 ----a-w- C:\Windows\System32\psisrndr.ax

2011-08-17 05:27:46 104960 ----a-w- C:\Windows\System32\Mpeg2Data.ax

2011-08-17 04:26:02 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll

2011-08-17 04:22:23 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax

2011-08-17 04:22:23 72704 ----a-w- C:\Windows\SysWow64\Mpeg2Data.ax

2011-08-17 04:22:23 59904 ----a-w- C:\Windows\SysWow64\MSDvbNP.ax

2011-08-17 04:22:23 204288 ----a-w- C:\Windows\SysWow64\MSNP.ax

.

============= FINISH: 10:43:56.01 ===============

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

I only posted some of it.

You have quite a mess on your hands.

post-32477-1261866970.gif

Logs will be closed if you haven't replied within 3 days

Please don't attach the scans / logs for these tools, use "copy/paste".

DO NOT use any TOOLS such as Combofix or HijackThis fixes without supervision.

Doing so could make your pc inoperatible and could require a full reinstall of your OS, losing all your programs and data.

Please run a new MBAM scan being sure to update before scanning.

Post the scan results

Also please describe how your computer behaves at the moment.

Please don't attach the scans / logs, use "copy/paste".

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.