1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive memory leak in AutoCAD 2008 = virus?

Discussion in 'Malware and Virus Removal Archive' started by JesseJTurner, 2010/05/10.

Thread Status:
Not open for further replies.
  1. 2010/05/10
    JesseJTurner

    JesseJTurner Inactive Thread Starter

    Joined:
    2010/02/10
    Messages:
    2
    Likes Received:
    0
    [Inactive] memory leak in AutoCAD 2008 = virus?

    Email address removed by Admin: Responses only on forum & don't post your email address for all to see: you'll be spammed to death before you know.

    I am having memory issues with ACAD 2008 in Windows XP. Every save escalates the page file usage number in the performance tab in Task Manager, and it does not go back down. memory use in the processes tab is excessive, according to Autodesk and others. They have suggested I have a virus. I scanned with a Symantec scan and found that I have a trojan horse here:
    C:\Documents and Settings\izzy\nah_pbvv.exe is infected with Backdoor.Graybird
    I have no norton, but I have Malwarebytes protection. I did a scan with it so i could use it to remove the trojan horse, and it found nothing. I can see the file in windows explorer, but i am not certain how to remove it, as Malwarebytes did not ID it as a virus.
    Also- I am not sure that that is the cause of the problem. I searched a different machine that is not hooked up to the network or the internet. it is having the same problem. No such file found with a search.

    So - is it malware and what do i do about it, AND is it the problem with autoCAD? DDS.txt and ATTACH.txt below:
    DDS (Ver_10-03-17.01) - NTFSx86
    Run by jesse at 13:51:58.65 on Mon 05/10/2010
    Internet Explorer: 8.0.6001.18702
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3326.1885 [GMT -4:00]


    ============== Running Processes ===============

    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
    C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe
    C:\Program Files\Panasonic\TrapMonitor\Trapmnnt.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Analog Devices\Core\smax4pnp.exe
    C:\Program Files\Panasonic\Panasonic-DMS\RPT Network Printer Port\Msgsrv.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Panasonic\Panasonic-DMS\LRecvTrap\LRecvTrap.exe
    C:\Documents and Settings\jesse.bosleymolding\Application Data\Dropbox\bin\Dropbox.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\WINDOWS\system32\taskmgr.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\mmc.exe
    C:\WINDOWS\system32\DfrgNtfs.exe
    C:\PROGRA~1\MICROS~2\Office12\OUTLOOK.EXE
    C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrobat.exe
    C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroTray.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\jesse.bosleymolding\Local Settings\Temporary Internet Files\Content.IE5\4J652XUL\MemoryBooster[1].exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\jesse.bosleymolding\Desktop\dds.pif

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://www.google.com/
    uSearch Page = hxxp://www.google.com
    uSearch Bar = hxxp://www.google.com/ie
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    mSearchAssistant = hxxp://www.google.com/ie
    BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.5.4723.1820\swg.dll
    TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe "
    mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
    mRun: [RPT Msgsrv] "c:\program files\panasonic\panasonic-dms\rpt network printer port\Msgsrv.exe" /NRPT Network Printer /S
    mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install
    mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
    StartupFolder: c:\docume~1\jesse~1.bos\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\jesse.bosleymolding\application data\dropbox\bin\Dropbox.exe
    StartupFolder: c:\docume~1\alluse~1.win\startm~1\programs\startup\jobsta~1.lnk - c:\program files\panasonic\panasonic-dms\lrecvtrap\LRecvTrap.exe
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_93C8148BBB233F43.dll/cmsidewiki.html
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - hxxp://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
    DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

    ============= SERVICES / DRIVERS ===============

    R2 NVIDIA Performance Driver Service;NVIDIA Performance Driver Service;c:\program files\nvidia corporation\performance drivers\nvPDsvc.exe [2009-12-8 5241448]
    R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2010-5-10 38224]
    S0 cerc6;cerc6; [x]
    S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-8 135664]

    ============== File Associations ===============

    .scr=AutoCADScriptFile

    =============== Created Last 30 ================

    2010-05-10 16:43:29 0 dc----w- c:\docume~1\jesse~1.bos\applic~1\Malwarebytes
    2010-05-10 16:43:17 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2010-05-10 16:43:12 0 d-----w- c:\docume~1\alluse~1.win\applic~1\Malwarebytes
    2010-05-10 16:43:11 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
    2010-05-10 16:43:10 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
    2010-05-07 15:48:23 0 dcsh--w- c:\documents and settings\jesse.bosleymolding\IECompatCache
    2010-05-07 15:47:43 0 dcsh--w- c:\documents and settings\jesse.bosleymolding\PrivacIE
    2010-05-07 15:20:36 0 dcsh--w- c:\documents and settings\jesse.bosleymolding\IETldCache
    2010-05-07 14:55:19 594432 -c----w- c:\windows\system32\dllcache\msfeeds.dll
    2010-05-07 14:55:19 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
    2010-05-07 14:55:19 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
    2010-05-07 14:55:19 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
    2010-05-07 14:55:18 1985536 -c----w- c:\windows\system32\dllcache\iertutil.dll
    2010-05-07 14:54:29 64000 -c----w- c:\windows\system32\dllcache\iecompat.dll
    2010-05-07 12:10:33 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
    2010-05-07 12:10:33 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
    2010-05-07 12:10:33 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
    2010-05-07 12:10:33 575488 ------w- c:\windows\system32\xpsshhdr.dll
    2010-05-07 12:10:33 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
    2010-05-07 12:10:33 1676288 ------w- c:\windows\system32\xpssvcs.dll
    2010-05-07 12:10:33 117760 ------w- c:\windows\system32\prntvpt.dll
    2010-05-07 12:10:33 0 dc----w- C:\f1151e491a7b91824e5b
    2010-05-06 19:34:05 211 ----a-w- C:\BACKUP boot.ini
    2010-05-06 19:14:41 897024 ----a-w- c:\windows\system32\nvapi.dll
    2010-05-06 19:14:41 219752 ----a-w- c:\windows\system32\nvcodins.dll
    2010-05-06 19:14:41 219752 ----a-w- c:\windows\system32\nvcod.dll
    2010-05-06 19:14:41 2194024 ----a-w- c:\windows\system32\nvcuvid.dll
    2010-05-06 19:14:41 2011136 ----a-w- c:\windows\system32\nvcuda.dll
    2010-05-06 19:14:41 1714792 ----a-w- c:\windows\system32\nvcuvenc.dll
    2010-05-06 19:14:41 1603742 ----a-w- c:\windows\system32\nvdata.bin
    2010-05-06 19:14:41 10915840 ----a-w- c:\windows\system32\nvoglnt.dll
    2010-05-06 17:22:46 0 d-----w- c:\docume~1\alluse~1.win\applic~1\NVIDIA Corporation
    2010-05-06 17:22:04 9046 ----a-w- c:\windows\system32\nvinfo.pb
    2010-05-06 17:21:59 0 dc----w- C:\NVIDIA
    2010-05-06 15:04:47 0 dc----w- c:\docume~1\jesse~1.bos\applic~1\Dropbox
    2010-05-05 17:35:55 0 d-----w- c:\program files\AutoCAD LT 2008
    2010-05-05 17:24:07 159744 ----a-w- c:\windows\system32\instpcl.dll
    2010-05-05 17:22:41 42496 ----a-w- c:\windows\system32\RPTlpr.dll
    2010-05-05 17:22:41 171008 ----a-w- c:\windows\system32\RPTlprUi.dll
    2010-05-05 17:11:48 26368 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
    2010-05-05 16:55:15 0 d-----w- C:\04-23-2008-0731
    2010-05-05 16:14:03 0 dc----w- c:\docume~1\jesse~1.bos\applic~1\Autodesk
    2010-05-05 16:14:03 0 d-----w- c:\program files\AutoCAD 2008
    2010-05-05 15:28:41 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
    2010-05-05 15:28:41 272128 ------w- c:\windows\system32\drivers\bthport.sys
    2010-05-05 15:27:57 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
    2010-05-05 15:24:29 2189952 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
    2010-05-05 15:24:29 2146304 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
    2010-05-05 15:24:29 2024448 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
    2010-05-05 15:23:25 3249 ----a-w- c:\windows\system32\wbem\Outlook_01caec66e7c311d0.mof
    2010-05-05 15:22:30 38400 ----a-w- c:\windows\HPLTLNK.EXE
    2010-05-05 15:19:28 30512 ----a-w- c:\windows\system32\mdimon.dll
    2010-05-05 15:19:13 0 dcs---w- c:\documents and settings\jesse.bosleymolding\UserData
    2010-05-05 15:18:08 8704 -c----w- c:\windows\system32\dllcache\tsbyuv.dll
    2010-05-05 15:18:08 48128 -c----w- c:\windows\system32\dllcache\iyuv_32.dll
    2010-05-05 15:16:34 2560 ------w- c:\windows\system32\xpsp4res.dll
    2010-05-05 15:15:10 26144 ----a-w- c:\windows\system32\spupdsvc.exe
    2010-05-05 15:09:28 178 -csh--w- c:\documents and settings\jesse.bosleymolding\ntuser.ini
    2010-05-05 15:00:12 83072 -c--a-w- c:\windows\system32\dllcache\wdmaud.sys
    2010-05-05 14:57:15 8192 ----a-w- c:\windows\REGLOCS.OLD
    2010-05-05 14:56:07 28288 -c--a-w- c:\windows\system32\dllcache\xjis.nls
    2010-05-05 14:56:01 156672 -c--a-w- c:\windows\system32\dllcache\winzm.ime
    2010-05-05 14:56:00 79360 -c--a-w- c:\windows\system32\dllcache\winar30.ime
    2010-05-05 14:56:00 72704 -c--a-w- c:\windows\system32\dllcache\wingb.ime
    2010-05-05 14:56:00 65536 -c--a-w- c:\windows\system32\dllcache\winime.ime
    2010-05-05 14:56:00 156672 -c--a-w- c:\windows\system32\dllcache\winsp.ime
    2010-05-05 14:56:00 156672 -c--a-w- c:\windows\system32\dllcache\winpy.ime
    2010-05-05 14:54:59 471102 -c--a-w- c:\windows\system32\dllcache\imskdic.dll
    2010-05-05 14:54:59 315455 -c--a-w- c:\windows\system32\dllcache\imskf.dll
    2010-05-05 14:54:59 15360 -c--a-w- c:\windows\system32\dllcache\inetin51.exe
    2010-05-05 14:54:58 59904 -c--a-w- c:\windows\system32\dllcache\imkrinst.exe
    2010-05-05 14:54:58 59392 -c--a-w- c:\windows\system32\dllcache\imscinst.exe
    2010-05-05 14:54:58 45109 -c--a-w- c:\windows\system32\dllcache\imjpuex.exe
    2010-05-05 14:54:58 274489 -c--a-w- c:\windows\system32\dllcache\imjputyc.dll
    2010-05-05 14:54:58 262200 -c--a-w- c:\windows\system32\dllcache\imjputy.exe
    2010-05-05 14:54:58 102456 -c--a-w- c:\windows\system32\dllcache\imlang.dll
    2010-05-05 14:52:59 68608 -c--a-w- c:\windows\system32\dllcache\iisext51.dll
    2010-05-05 14:51:52 0 d-sh--w- c:\documents and settings\all users.windows\DRM
    2010-05-05 14:51:43 488 ---ha-r- c:\windows\system32\WindowsLogon.manifest
    2010-05-05 14:50:58 565248 -c--a-w- c:\windows\system32\dllcache\msobmain.dll
    2010-05-05 14:49:59 91648 -c--a-w- c:\windows\system32\dllcache\mtxoci.dll
    2010-05-05 10:49:14 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
    2010-05-05 10:48:51 57600 ----a-w- c:\windows\system32\drivers\redbook.sys
    2010-05-05 10:48:43 74240 ----a-w- c:\windows\system32\usbui.dll
    2010-05-05 10:45:56 8574 -c--a-w- c:\windows\system32\dllcache\IASNT4.CAT
    2010-05-05 10:45:56 0 d-----r- c:\documents and settings\all users.windows\Documents
    2010-05-05 10:44:48 290 ----a-w- c:\windows\system32\$winnt$.inf
    2010-05-05 10:41:01 0 d-----w- c:\windows\Dell
    2010-05-04 16:07:18 0 d-----w- c:\program files\Autodesk Network License Manager
    2010-05-03 12:55:38 0 dc----w- C:\Panasonic
    2010-05-03 12:32:04 0 d-----w- c:\windows\system32\XPSViewer
    2010-04-30 17:14:19 0 d-----w- c:\windows\system32\scripting
    2010-04-30 17:14:19 0 d-----w- c:\windows\system32\en
    2010-04-30 17:14:19 0 d-----w- c:\windows\system32\bits
    2010-04-30 17:14:19 0 d-----w- c:\windows\l2schemas
    2010-04-30 17:09:47 0 d-----w- c:\windows\network diagnostic
    2010-04-30 14:57:43 0 d-----w- c:\windows\pss
    2010-04-29 07:01:34 0 d-----w- c:\windows\ServicePackFiles
    2010-04-29 07:01:20 0 d-----w- c:\windows\ie8updates
    2010-04-28 15:30:30 0 d-----w- c:\program files\Microsoft Windows Small Business Server
    2010-04-28 14:05:53 0 d-----w- c:\windows\system32\PreInstall
    2010-04-28 14:01:15 0 d-----w- c:\windows\system32\SoftwareDistribution

    ==================== Find3M ====================

    2010-05-05 17:23:43 232 ----a-w- c:\program files\PanaHDS.ini
    2010-05-05 14:50:30 21640 ----a-w- c:\windows\system32\emptyregdb.dat
    2010-03-10 06:15:52 420352 ----a-w- c:\windows\system32\vbscript.dll
    2010-02-25 06:24:37 916480 ----a-w- c:\windows\system32\wininet.dll
    2010-02-16 14:08:49 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
    2010-02-16 13:25:04 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll

    ============= FINISH: 13:53:20.07 ===============
    ATTACH.txt:
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_10-03-17.01)

    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume2
    Install Date: 5/5/2010 10:56:20 AM
    System Uptime: 5/9/2010 3:19:42 AM (34 hours ago)

    Motherboard: Dell Inc. | | 0TP412
    Processor: Intel(R) Core(TM)2 Duo CPU E4600 @ 2.40GHz | CPU | 2394/800mhz

    ==== Disk Partitions =========================

    C: is FIXED (NTFS) - 74 GiB total, 22.731 GiB free.
    D: is CDROM (CDFS)
    P: is NetworkDisk (NTFS) - 137 GiB total, 78.735 GiB free.

    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    RP1: 5/5/2010 10:58:19 AM - System Checkpoint
    RP2: 5/5/2010 11:14:09 AM - Installed Microsoft Office Basic 2007
    RP3: 5/5/2010 11:15:00 AM - Software Distribution Service 3.0
    RP4: 5/5/2010 11:19:26 AM - Printer Driver Microsoft Office Document Image Writer Installed
    RP5: 5/5/2010 11:22:29 AM - Unsigned printer driver HP DesignJet 750C (E/A0) by installed.
    RP6: 5/5/2010 11:34:32 AM - Installed Adobe Acrobat 6.0 Standard
    RP7: 5/5/2010 11:39:46 AM - Software Distribution Service 3.0
    RP8: 5/5/2010 12:04:31 PM - Installed Windows XP WgaNotify.
    RP9: 5/5/2010 12:04:51 PM - Software Distribution Service 3.0
    RP10: 5/5/2010 12:12:30 PM - Installed DirectX
    RP11: 5/5/2010 12:55:26 PM - Installed NVIDIA Performance Driver for AutoCAD 2008
    RP12: 5/5/2010 12:56:06 PM - Removed NVIDIA Performance Driver for AutoCAD 2008
    RP13: 5/5/2010 12:56:28 PM - Installed NVIDIA Performance Driver for AutoCAD 2008
    RP14: 5/5/2010 1:22:41 PM - Installed RPT Network Printer Port
    RP15: 5/5/2010 1:23:53 PM - Installed RPT Network Printer Port
    RP16: 5/5/2010 1:23:59 PM - Installed Panasonic Printing System
    RP17: 5/5/2010 1:24:28 PM - Installed Job Status Utility
    RP18: 5/5/2010 1:24:43 PM - Installed InstallShield Restore Point
    RP19: 5/5/2010 1:27:07 PM - Removed Adobe Acrobat 6.0 Standard
    RP20: 5/5/2010 1:27:19 PM - Installed Adobe Acrobat 8 Standard - English, Français, Deutsch
    RP21: 5/6/2010 3:40:41 PM - Software Distribution Service 3.0
    RP22: 5/7/2010 8:00:46 AM - Software Distribution Service 3.0
    RP23: 5/7/2010 10:56:56 AM - Installed Windows Internet Explorer 8.
    RP24: 5/7/2010 10:57:41 AM - Software Distribution Service 3.0
    RP25: 5/8/2010 11:39:44 AM - System Checkpoint
    RP26: 5/9/2010 3:00:12 AM - Software Distribution Service 3.0
    RP27: 5/10/2010 3:41:15 AM - System Checkpoint

    ==== Installed Programs ======================

    Add or Remove Adobe Creative Suite 3 Design Premium
    Adobe Acrobat 8 Standard - English, Français, Deutsch
    Adobe Acrobat 8.1.0 Standard
    Adobe Creative Suite 3 Design Premium
    Adobe Dreamweaver CS3
    Adobe Extension Manager CS3
    Adobe Flash CS3
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 9 ActiveX
    Adobe Flash Video Encoder
    Adobe Setup
    AutoCAD 2008 - English
    AutoCAD 2008 - English SP1
    AutoCAD LT 2008 - English
    Autodesk DWF Viewer 7
    Dropbox
    Google Toolbar for Internet Explorer
    Google Update Helper
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB979306)
    Malwarebytes' Anti-Malware
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Office Basic 2007
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Outlook MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Software Update for Web Folders (English) 12
    MSXML 6.0 Parser
    NVIDIA Drivers
    NVIDIA nView Desktop Manager
    NVIDIA Performance Driver for AutoCAD 2008
    NVIDIA Performance Driver for Autodesk AutoCAD 2008
    NVIDIA Performance Drivers
    Panasonic Job Status Utility
    Panasonic Printer Drivers
    Panasonic Printing System
    Panasonic RPT Network Printer Port
    Panasonic Windows Firewall Setting Tool
    Security Update for Windows Internet Explorer 8 (KB971961)
    Security Update for Windows Internet Explorer 8 (KB981332)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player (KB979402)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923789)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950760)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB954459)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969947)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB971961)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978262)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB980232)
    Security Update for Windows XP (KB981349)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Windows Internet Explorer 8 (KB976662)
    Update for Windows Internet Explorer 8 (KB980182)
    Update for Windows Internet Explorer 8 (KB980302)
    Update for Windows XP (KB898461)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    Update for Windows XP (KB980182)
    VBA (2627.01)
    WebFldrs XP
    Windows Firewall Setting Tool
    Windows Genuine Advantage Notifications (KB905474)
    Windows Internet Explorer 8

    ==== Event Viewer Messages From Past Week ========

    5/6/2010 2:50:23 PM, information: Windows File Protection [64002] - File replacement was attempted on the protected system file nv4_mini.sys. This file was restored to the original version to maintain system stability. The file version of the system file is 6.14.10.5673.
    5/6/2010 2:50:13 PM, information: Windows File Protection [64002] - File replacement was attempted on the protected system file c:\windows\system32\nv4_disp.dll. This file was restored to the original version to maintain system stability. The file version of the system file is 6.14.11.9759.
    5/5/2010 5:38:06 PM, error: NETLOGON [5719] - No Domain Controller is available for domain bosleymolding due to the following: There are currently no logon servers available to service the logon request. . Make sure that the computer is connected to the network and try again. If the problem persists, please contact your domain administrator.

    ==== End Of File ===========================
     
    Last edited: 2010/05/10
    JesseJTurner,
    #1
  2. 2010/05/10
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Read this post, then post the requested log(s).
     
    broni,
    #2


  3. to hide this advert.

Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...