1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive Mouse becomes very Laggy or Unresponsive

Discussion in 'Malware and Virus Removal Archive' started by D3c14n17, 2010/04/21.

Thread Status:
Not open for further replies.
  1. 2010/04/21
    D3c14n17

    D3c14n17 Inactive Thread Starter

    Joined:
    2010/02/18
    Messages:
    20
    Likes Received:
    0
    [Inactive] Mouse becomes very Laggy or Unresponsive

    Hello a few days ago I opened a e-mail by accident because I clicked wrong one and there was an a attachment with it and within a few minitues my mouse became very lagg or jumpy and in some cases unresponsive. I have scanned with my AVG lots of time but still nothing but it stopped for a two days and then it started again to day.
     
    D3c14n17,
    #1
  2. 2010/04/21
    D3c14n17

    D3c14n17 Inactive Thread Starter

    Joined:
    2010/02/18
    Messages:
    20
    Likes Received:
    0
    DDS

    DDS (Ver_10-03-17.01) - NTFSx86
    Run by declan at 20:20:52.23 on 21/04/2010
    Internet Explorer: 8.0.6001.18702
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.511.226 [GMT 1:00]

    AV: AVG Internet Security *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
    FW: AVG Firewall *enabled* {8decf618-9569-4340-b34a-d78d28969b66}

    ============== Running Processes ===============

    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    svchost.exe
    C:\Program Files\AVG\AVG9\avgchsvx.exe
    C:\Program Files\AVG\AVG9\avgrsx.exe
    C:\Program Files\AVG\AVG9\avgcsrvx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\AVG\AVG9\avgtray.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Common Files\Nikon\Monitor\NkMonitor.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
    C:\Program Files\Belkin\F5D8053\v6\BelkinWCUI.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
    C:\Program Files\AVG\AVG9\Identity Protection\agent\bin\avgidsmonitor.exe
    C:\WINDOWS\System32\svchost.exe -k Akamai
    C:\Program Files\AVG\AVG9\avgwdsvc.exe
    C:\Program Files\AVG\AVG9\avgfws9.exe
    C:\Program Files\Belkin\F5D8053\v6\WifiSvc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    svchost.exe
    C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
    C:\Program Files\AVG\AVG9\avgam.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\AVG\AVG9\avgnsx.exe
    C:\WINDOWS\system32\libusbd-nt.exe
    C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
    C:\WINDOWS\System32\svchost.exe -k HPZ12
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe -k HPZ12
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\WINDOWS\System32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\AVG\AVG9\avgemc.exe
    C:\Program Files\AVG\AVG9\avgcsrvx.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files\AVG\AVG9\avgcsrvx.exe
    svchost.exe
    C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
    C:\Nexon\NEXON_EU_Downloader\NEXON_EU_Downloader_Engine.exe
    C:\Documents and Settings\declan\Desktop\dds.scr

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://www.bing.com/
    uInternet Connection Wizard,ShellNext = iexplore
    uInternet Settings,ProxyServer = http=hxxp://www-cache.freeserve.net:8080;ftp=http://www-cache.freeserve.net:8080
    uInternet Settings,ProxyOverride = <local>;*.local
    uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
    uURLSearchHooks: H - No File
    mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
    BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    BHO: DAPIELoader Class: {ff6c3cf0-4b15-11d1-abed-709549c10000} - c:\progra~1\dap\DAPIEL~1.DLL
    TB: &Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
    TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
    TB: {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No File
    TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
    TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File
    TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
    EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
    uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
    uRun: [InstantTray] c:\program files\pinnacle\shared files\instantcddvd\PCLETray.exe
    uRun: [360desktop]
    uRun: [Pando Media Booster] "c:\program files\pando networks\media booster\PMB.exe "
    mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [nwiz] nwiz.exe /install
    mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
    mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
    mRun: [Nikon Transfer Monitor] c:\program files\common files\nikon\monitor\NkMonitor.exe
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
    StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\belkin~1.lnk - c:\program files\belkin\f5d8053\v6\BelkinWCUI.exe
    StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
    IE: &Clean Traces - c:\program files\dap\privacy package\dapcleanerie.htm
    IE: &Download with &DAP - c:\program files\dap\dapextie.htm
    IE: &Search
    IE: Download &all with DAP - c:\program files\dap\dapextie2.htm
    IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\mi1933~1\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office12\REFIEBAR.DLL
    Trusted Zone: getmirar.com\click
    Trusted Zone: mirarsearch.com\click
    Trusted Zone: mirarsearch.com\redirect
    Trusted Zone: net-nucleus.com\awbeta
    DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
    DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
    DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
    DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {38AB6A6C-CC4C-4F9E-A3DD-3C5681EF18A1} - hxxp://www-cdn.freerealms.com/gamedata/plugins/1.0.3.83/FreeRealmsInstaller.cab?v=1032
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1011992482421
    DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1011992445515
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0008-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-150-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - hxxp://update.nprotect.net/keycrypt/cabal/npkcx_inca.cab
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
    Notify: avgrsstarter - avgrsstx.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    SEH: Microsoft AntiMalware ShellExecuteHook: {091eb208-39dd-417d-a5dd-7e2c2d8fb9cb} - c:\progra~1\wifd1f~1\MpShHook.dll

    ============= SERVICES / DRIVERS ===============

    R0 AVGIDSErHrxpx;AVG9IDSErHr;c:\windows\system32\drivers\AVGIDSxx.sys [2010-3-21 25096]
    R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2010-3-21 52872]
    R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-3-21 216200]
    R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-3-21 29512]
    R1 AvgTdiX;AVG Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-3-21 242896]
    R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [2010-3-21 30104]
    R3 AVGIDSDriverxpx;AVG9IDSDriver;c:\program files\avg\avg9\identity protection\agent\driver\platform_xp\AVGIDSDriver.sys [2010-3-21 122376]
    R3 AVGIDSFilterxpx;AVG9IDSFilter;c:\program files\avg\avg9\identity protection\agent\driver\platform_xp\AVGIDSFilter.sys [2010-3-21 30216]
    R3 AVGIDSShimxpx;AVG9IDSShim;c:\program files\avg\avg9\identity protection\agent\driver\platform_xp\AVGIDSShim.sys [2010-3-21 26120]
    S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [2010-3-21 30104]

    =============== Created Last 30 ================

    2010-04-21 18:53:35 0 d-----w- c:\program files\NEXON
    2010-04-18 16:47:46 0 d-----w- C:\Download
    2010-04-18 13:18:39 0 d-----w- c:\program files\Maxis
    2010-04-14 20:11:57 19456 ----a-w- c:\windows\system32\libusbd-9x.exe
    2010-04-14 20:11:57 18944 ----a-w- c:\windows\system32\libusbd-nt.exe
    2010-04-14 20:11:56 0 d-----w- c:\program files\LibUSB-Win32-0.1.10.1
    2010-04-14 18:21:07 0 d-----w- c:\program files\common files\muvee Technologies
    2010-04-14 18:20:01 0 d-----w- c:\docume~1\alluse~1\applic~1\Electric Clav
    2010-04-13 14:28:23 2000 ------w- c:\windows\hpomdl14.dat
    2010-04-13 14:05:21 35 ------w- c:\windows\hpoins14.dat
    2010-04-13 12:53:28 0 d-----w- c:\docume~1\declan\applic~1\ZipZag
    2010-04-13 12:51:58 0 d-----w- c:\program files\ZipZag
    2010-04-10 21:09:16 0 d-----w- c:\program files\IObit
    2010-04-10 19:09:37 33824 ----a-w- c:\windows\system32\drivers\oreans32.sys
    2010-04-10 18:40:25 0 d-----w- c:\docume~1\alluse~1\applic~1\NexonEU
    2010-04-09 20:04:15 87608 ----a-w- c:\docume~1\declan\applic~1\inst.exe
    2010-04-09 20:04:14 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
    2010-04-09 20:04:14 47360 ----a-w- c:\docume~1\declan\applic~1\pcouffin.sys
    2010-04-09 20:03:01 0 d-----w- c:\program files\DVDFab 6
    2010-04-09 19:46:26 0 d-----w- c:\program files\Tipard Studio
    2010-04-09 18:46:39 0 d-----w- c:\docume~1\declan\applic~1\4Media Software Studio
    2010-04-09 14:34:08 0 d-----w- c:\program files\DsNET Corp
    2010-04-08 20:54:32 0 d-----w- c:\docume~1\declan\applic~1\FreeAudioPack
    2010-04-07 13:10:25 0 d-----w- c:\docume~1\declan\applic~1\Windows Search
    2010-04-06 17:20:39 68680 ----a-w- c:\windows\system32\XDva337.sys
    2010-04-05 18:27:57 0 d-----w- C:\NVIDIA
    2010-04-05 18:20:36 0 d-----w- c:\program files\SystemRequirementsLab
    2010-04-03 11:35:30 0 d-----w- c:\program files\Windows Desktop Search
    2010-04-03 11:35:29 0 d-----w- c:\windows\system32\GroupPolicy
    2010-04-03 11:26:49 29696 -c----w- c:\windows\system32\dllcache\mimefilt.dll
    2010-04-03 11:26:48 98304 -c----w- c:\windows\system32\dllcache\nlhtml.dll
    2010-04-03 11:26:47 192000 -c----w- c:\windows\system32\dllcache\offfilt.dll
    2010-04-03 11:25:41 0 d-----w- C:\2454b5518cab80487eef8fb7d3
    2010-04-03 11:16:04 0 d-----w- c:\program files\Windows Media Connect 2
    2010-04-03 10:21:46 230752 ----a-w- c:\windows\patchw32.dll
    2010-04-03 10:21:45 118176 ----a-w- c:\windows\patchw.dll
    2010-04-03 09:55:51 0 d-----w- c:\program files\Outspark
    2010-03-27 19:53:46 0 d-----w- c:\program files\common files\Nikon
    2010-03-27 19:53:38 0 d-----w- c:\program files\Nikon
    2010-03-27 19:52:26 20 ---h--w- c:\docume~1\alluse~1\applic~1\PKP_DLdu.DAT
    2010-03-25 18:27:50 70344 ----a-w- c:\windows\system32\XDva341.sys

    ==================== Find3M ====================

    2010-04-20 15:47:29 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
    2010-04-14 18:19:47 106496 ----a-w- c:\windows\system32\ATL71.DLL
    2010-03-21 11:29:35 12464 ----a-w- c:\windows\system32\avgrsstx.dll
    2010-03-21 11:29:15 25096 ----a-w- c:\windows\system32\drivers\AVGIDSxx.sys
    2010-03-21 11:28:58 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
    2010-03-21 11:28:43 52872 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
    2010-03-21 11:09:53 50968 ----a-w- c:\windows\system32\avgfwdx.dll
    2010-03-21 11:09:53 30104 ----a-w- c:\windows\system32\drivers\avgfwdx.sys
    2010-03-10 06:15:52 420352 ----a-w- c:\windows\system32\vbscript.dll
    2010-02-26 20:40:50 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
    2010-02-26 20:40:39 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
    2010-02-25 06:24:37 916480 ----a-w- c:\windows\system32\wininet.dll
    2010-02-24 13:11:07 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
    2010-02-24 10:16:06 181632 ------w- c:\windows\system32\MpSigStub.exe
    2010-02-22 20:26:00 147456 ----a-w- c:\windows\system32\uc_neosteam_launching.dll
    2010-02-21 18:46:59 69 ----a-w- c:\documents and settings\declan\jagex_runescape_preferences2.dat
    2010-02-21 18:45:01 41 ----a-w- c:\documents and settings\declan\jagex_runescape_preferences.dat
    2010-02-18 18:47:08 33869 ----a-w- c:\docume~1\declan\applic~1\SQLite3.dll
    2010-02-16 15:08:24 413696 ----a-w- c:\windows\system32\wrap_oal.dll
    2010-02-16 15:08:24 110592 ----a-w- c:\windows\system32\OpenAL32.dll
    2010-02-16 14:08:49 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
    2010-02-16 13:25:04 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
    2010-02-12 10:03:03 293376 ------w- c:\windows\system32\browserchoice.exe
    2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll
    2009-11-09 20:25:45 886569287 ----a-w- c:\program files\B4BF88163D42CFD9C0410522D6E15814.kms
    2009-11-09 20:25:45 884628 ----a-w- c:\program files\B4BF88163D42CFD9C0410522D6E15814.kmt
    2009-10-10 20:13:52 245760 --sha-w- c:\windows\system32\config\systemprofile\ietldcache\index.dat
    2009-10-10 20:13:52 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009101020091011\index.dat

    ============= FINISH: 20:22:15.50 ===============
     
    D3c14n17,
    #2


  3. to hide this advert.

  4. 2010/04/21
    D3c14n17

    D3c14n17 Inactive Thread Starter

    Joined:
    2010/02/18
    Messages:
    20
    Likes Received:
    0
    Attachment

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_10-03-17.01)

    Microsoft Windows XP Home Edition
    Boot Device: \Device\HarddiskVolume2
    Install Date: 17/06/2004 15:12:46
    System Uptime: 21/04/2010 17:23:44 (3 hours ago)

    Motherboard: ASUSTeK Computer INC. | | A7NVM400
    Processor: AMD Athlon(tm) XP 2800+ | Socket A | 2074/166mhz

    ==== Disk Partitions =========================

    A: is Removable
    C: is FIXED (NTFS) - 73 GiB total, 23.929 GiB free.
    D: is CDROM ()
    E: is CDROM ()

    ==== Disabled Device Manager Items =============

    Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
    Description: NVIDIA nForce MCP Networking Controller
    Device ID: PCI\VEN_10DE&DEV_0066&SUBSYS_80A71043&REV_A1\3&267A616A&0&20
    Manufacturer: Nvidia
    Name: NVIDIA nForce MCP Networking Controller
    PNP Device ID: PCI\VEN_10DE&DEV_0066&SUBSYS_80A71043&REV_A1\3&267A616A&0&20
    Service: NVENET

    Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
    Description: 1394 Net Adapter
    Device ID: V1394\NIC1394\4120CF10DC00
    Manufacturer: Microsoft
    Name: 1394 Net Adapter
    PNP Device ID: V1394\NIC1394\4120CF10DC00
    Service: NIC1394

    ==== System Restore Points ===================

    RP434: 15/02/2010 21:33:48 - Installed DirectX
    RP435: 16/02/2010 15:07:38 - Installed Microsoft Visual C++ 2005 Redistributable
    RP436: 16/02/2010 16:42:06 - Installed ijji REACTOR
    RP437: 17/02/2010 11:57:51 - Removed ijji REACTOR
    RP438: 19/02/2010 11:58:03 - Software Distribution Service 3.0
    RP439: 21/02/2010 13:57:08 - Installed Windows Defender
    RP440: 21/02/2010 14:02:57 - Software Distribution Service 3.0
    RP441: 25/02/2010 17:38:48 - Avg8 Update
    RP442: 25/02/2010 19:30:35 - Installed Belkin N Wireless USB Adapter Setup
    RP443: 26/02/2010 18:59:35 - Software Distribution Service 3.0
    RP444: 26/02/2010 19:53:29 - Installed Uniblue DriverScanner v1.0
    RP445: 26/02/2010 19:58:57 - Installed Uniblue DriverScanner v1.0
    RP446: 26/02/2010 20:24:47 - DriverScanner install: PCI SoftV92 Speakerphone Modem
    RP447: 26/02/2010 20:27:19 - DriverScanner multi-install
    RP448: 26/02/2010 20:37:54 - DriverScanner install: Logicool HID-compliant Optical Wheel Mouse
    RP449: 26/02/2010 20:40:24 - Installed Windows XP Wdf01005.
    RP450: 01/03/2010 18:28:42 - Software Distribution Service 3.0
    RP451: 02/03/2010 17:54:28 - Removed Belkin N Wireless USB Adapter Setup
    RP452: 02/03/2010 18:01:10 - Installed Belkin N Wireless USB Adapter Setup
    RP453: 03/03/2010 17:54:28 - DriverScanner install: Logicool HID-compliant Optical Wheel Mouse
    RP454: 04/03/2010 16:44:18 - Avg8 Update
    RP455: 04/03/2010 16:53:47 - Avg Update
    RP456: 04/03/2010 17:41:49 - Installed Python 2.6
    RP457: 04/03/2010 18:36:18 - Installed Python 3.1.1
    RP458: 04/03/2010 18:41:19 - Removed Python 2.6
    RP459: 05/03/2010 17:16:46 - Removed Python 3.1.1
    RP460: 05/03/2010 18:52:04 - Installed Python 2.6
    RP461: 05/03/2010 19:19:09 - Installed Adobe Reader 9.3.
    RP462: 06/03/2010 19:38:59 - Installed ijji REACTOR
    RP463: 07/03/2010 11:06:21 - Removed ijji REACTOR
    RP464: 07/03/2010 18:02:52 - Installed S4 League_EU
    RP465: 07/03/2010 18:44:01 - Removed S4 League_EU
    RP466: 07/03/2010 19:18:13 - Installed S4 League_EU
    RP467: 07/03/2010 20:19:37 - Installed S4 League_EU
    RP468: 08/03/2010 18:15:50 - Removed S4 League_EU
    RP469: 08/03/2010 19:25:22 - Avg Update
    RP470: 08/03/2010 19:33:55 - Installed S4 League_EU
    RP471: 09/03/2010 16:35:37 - Removed S4 League_EU
    RP472: 09/03/2010 20:16:17 - Installed S4 League_EU
    RP473: 10/03/2010 17:08:11 - Removed S4 League_EU
    RP474: 11/03/2010 17:59:46 - Software Distribution Service 3.0
    RP475: 13/03/2010 11:48:11 - System Checkpoint
    RP476: 13/03/2010 15:12:00 - Software Distribution Service 3.0
    RP477: 14/03/2010 16:24:29 - System Checkpoint
    RP478: 15/03/2010 18:07:30 - Removed BBC iPlayer Desktop
    RP479: 15/03/2010 18:08:40 - Removed Adobe Reader 9.3.
    RP480: 16/03/2010 17:39:01 - Avg Update
    RP481: 16/03/2010 19:34:36 - Printer Driver Send To Microsoft OneNote Driver Installed
    RP482: 20/03/2010 20:31:38 - Removed AVG 9.0
    RP483: 20/03/2010 20:36:18 - Installed AVG 9.0
    RP484: 20/03/2010 20:56:43 - Software Distribution Service 3.0
    RP485: 20/03/2010 21:25:03 - Avira AntiVir Personal - 20/03/2010 21:24
    RP486: 21/03/2010 10:30:50 - Avira AntiVir Personal - 21/03/2010 10:30
    RP487: 21/03/2010 11:09:37 - Installed AVG 9.0
    RP488: 21/03/2010 11:25:11 - Avg8 Update
    RP489: 21/03/2010 11:29:48 - Avg Update
    RP490: 21/03/2010 13:31:45 - Installed S4 League_EU
    RP491: 22/03/2010 19:47:59 - Removed S4 League_EU
    RP492: 22/03/2010 19:49:47 - Installed S4 League_EU
    RP493: 22/03/2010 20:00:12 - Installed S4 League_EU
    RP494: 22/03/2010 20:20:42 - Installed S4 League_EU
    RP495: 24/03/2010 19:42:14 - Removed Python 2.6
    RP496: 24/03/2010 19:56:21 - Removed Software Suite
    RP497: 27/03/2010 19:49:51 - Installed Panorama Maker
    RP498: 27/03/2010 19:53:33 - Installed Nikon Transfer
    RP499: 27/03/2010 19:58:08 - Installed Nikon Message Center
    RP500: 30/03/2010 17:34:04 - Removed Nikon Transfer
    RP501: 30/03/2010 17:39:13 - Removed Nikon Message Center
    RP502: 30/03/2010 17:41:36 - Removed File Uploader
    RP503: 30/03/2010 17:45:10 - Removed Panorama Maker
    RP504: 30/03/2010 19:05:40 - Avg Update
    RP505: 30/03/2010 19:32:44 - Avg Update
    RP506: 31/03/2010 17:52:24 - Avg Update
    RP507: 31/03/2010 19:15:48 - Avg Update
    RP508: 31/03/2010 19:40:56 - Software Distribution Service 3.0
    RP509: 01/04/2010 14:14:57 - Removed S4 League_EU
    RP510: 01/04/2010 15:24:06 - Avg Update
    RP511: 02/04/2010 11:14:20 - Avg Update
    RP512: 03/04/2010 10:53:23 - Installed Fiesta
    RP513: 03/04/2010 11:45:56 - Software Distribution Service 3.0
    RP514: 04/04/2010 09:50:47 - Avg Update
    RP515: 04/04/2010 12:02:16 - Software Distribution Service 3.0
    RP516: 04/04/2010 12:23:47 - Installed Windows Media Player 11
    RP517: 04/04/2010 13:10:57 - Installed Windows XP MSCompPackV1.
    RP518: 05/04/2010 14:42:43 - Software Distribution Service 3.0
    RP519: 09/04/2010 18:47:47 - Avg Update
    RP520: 10/04/2010 14:55:08 - Unsigned driver install
    RP521: 10/04/2010 20:21:01 - Removed Microsoft Silverlight
    RP522: 11/04/2010 11:49:09 - Removed Microsoft Works 7.0
    RP523: 12/04/2010 12:10:42 - Removed Fiesta
    RP524: 13/04/2010 10:54:48 - Unsigned driver install
    RP525: 14/04/2010 19:20:43 - Installed Nikon Transfer
    RP526: 14/04/2010 19:22:58 - Installed Nikon Message Center
    RP527: 15/04/2010 18:22:16 - Software Distribution Service 3.0
    RP528: 15/04/2010 18:49:29 - Software Distribution Service 3.0
    RP529: 18/04/2010 14:30:40 - Installed The Sims Deluxe Edition
    RP530: 18/04/2010 15:02:04 - Installed The Sims Unleashed
    RP531: 20/04/2010 16:45:54 - Avg Update
    RP532: 20/04/2010 16:47:55 - Avg Update
    RP533: 20/04/2010 19:59:10 - Removed Safari

    ==== Installed Programs ======================

    32 Bit HP CIO Components Installer
    Adobe AIR
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Photoshop Elements 7.0
    Adobe Shockwave Player 11.5
    AIO_Scan
    Akamai NetSession Interface
    Apple Application Support
    Apple Software Update
    AVG 9.0
    Belkin N Wireless USB Adapter Setup
    Bonjour
    BufferChm
    CA Licensing
    Combat Arms EU
    Copy
    CustomerResearchQFolder
    Destination Component
    DeviceDiscovery
    DeviceManagementQFolder
    DirectX for Managed Code Update (Summer 2004)
    DJ_AIO_ProductContext
    DJ_AIO_Software
    DJ_AIO_Software_min
    Download Accelerator Plus (DAP)
    DVDFab 6.1.2.5 (27/10/2009)
    Esay Pix Sv
    eSupportQFolder
    Europe MapleStory
    F2100
    F2100_doccd
    F2100_Help
    File Uploader
    Game Booster
    HighMAT Extension to Microsoft Windows XP CD Writing Wizard
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows Media Format 11 SDK (KB929399)
    Hotfix for Windows Media Player 11 (KB939683)
    Hotfix for Windows XP (KB915800-v4)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB970653-v3)
    Hotfix for Windows XP (KB976002-v5)
    Hotfix for Windows XP (KB976098-v2)
    Hotfix for Windows XP (KB979306)
    HP Customer Participation Program 9.0
    HP Deskjet All-In-One Software 9.0
    HP Imaging Device Functions 9.0
    HP Photosmart Essential
    HP Photosmart Essential 2.01
    HP Photosmart Essential2.01
    HP Solution Center 9.0
    HP Update
    hph_readme
    hph_software_req
    HPProductAssistant
    HPSSupply
    InterActual Player
    iTunes
    J2SE Runtime Environment 5.0 Update 8
    Java(TM) 6 Update 16
    Junk Mail filter update
    LibUSB-Win32-0.1.10.1
    Macromedia Shockwave Player
    Malwarebytes' Anti-Malware
    MarketResearch
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB953297)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Application Error Reporting
    Microsoft Choice Guard
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Data Access Components KB870669
    Microsoft DirectX 9.0 SDK Update (Summer 2004)
    Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Plus! for Windows XP
    Microsoft Software Update for Web Folders (English) 12
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Windows Journal Viewer
    MSVCRT
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    My DSC
    Nikon Message Center
    Nikon Transfer
    NVIDIA Display Driver
    NVIDIA Drivers
    NVIDIA Ethernet Driver
    NVIDIA nForce Drivers
    OpenAL
    Pando Media Booster
    PCI SoftV92 Modem
    PCLink for GSM Ver.1.0
    Pinnacle InstantCD/DVD Suite
    PSSWCORE
    PunkBuster Services
    QuickTime
    Replay Music
    SAGEM F@st 800-840
    Scan
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB978380)
    Security Update for CAPICOM (KB931906)
    Security Update for Microsoft Office Excel 2007 (KB978382)
    Security Update for Microsoft Office PowerPoint 2007 (KB957789)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB969613)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB969604)
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 8 (KB971961)
    Security Update for Windows Internet Explorer 8 (KB972260)
    Security Update for Windows Internet Explorer 8 (KB974455)
    Security Update for Windows Internet Explorer 8 (KB976325)
    Security Update for Windows Internet Explorer 8 (KB978207)
    Security Update for Windows Internet Explorer 8 (KB981332)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player 10 (KB911565)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 11 (KB954154)
    Security Update for Windows Media Player 6.4 (KB925398)
    Security Update for Windows Search 4 - KB963093
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB938464-v2)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB954459)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961371-v2)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB968537)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969947)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971486)
    Security Update for Windows XP (KB971557)
    Security Update for Windows XP (KB971633)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973346)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973525)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977165)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978251)
    Security Update for Windows XP (KB978262)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB980232)
    Segoe UI
    SoftK56 Data Fax Voice Speakerphone CARP
    SolutionCenter
    Spotify
    Status
    System Requirements Lab
    The Sims Unleashed
    Toolbox
    TrayApp
    Uniblue DriverScanner 2009
    Uniblue RegistryBooster 2010
    Uniblue SpeedUpMyPC
    UnloadSupport
    Update for 2007 Microsoft Office System (KB967642)
    Update for 2007 Microsoft Office System (KB981715)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office InfoPath 2007 (KB976416)
    Update for Microsoft Office OneNote 2007 (KB980729)
    Update for Windows Internet Explorer 8 (KB976662)
    Update for Windows Internet Explorer 8 (KB976749)
    Update for Windows Internet Explorer 8 (KB980182)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB953356)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB961503)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    USB MP3 Driver v1.17r014
    VideoToolkit01
    VLC media player 1.0.1
    WebFldrs XP
    WebReg
    Windows Defender
    Windows Genuine Advantage Notifications (KB905474)
    Windows Genuine Advantage v1.3.0254.0
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Internet Explorer 8
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live ID Sign-in Assistant
    Windows Live Mail
    Windows Live Upload Tool
    Windows Live Writer
    Windows Media Format 11 runtime
    Windows Media Player 11
    Windows Media Player 9 Hotfix [See KB885492 for more information]
    Windows XP Service Pack 3
    Yahoo! Toolbar

    ==== Event Viewer Messages From Past Week ========

    21/04/2010 17:27:29, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the NVSvc service.
    20/04/2010 20:00:06, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
    20/04/2010 19:51:10, error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    20/04/2010 19:51:10, error: Service Control Manager [7000] - The General Purpose USB Driver (adildr.sys) service failed to start due to the following error: The system cannot find the file specified.

    ==== End Of File ===========================
     
    D3c14n17,
    #3
  5. 2010/04/21
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Print these instructions out.

    NOTE. If any of the programs listed below refuse to run, try renaming executive file to something else; for instance, rename hijackthis.exe to scanner.exe

    ***VERY IMPORTANT! Make sure, you update Malwarebytes before running the scans.***


    STEP 1. Download Malwarebytes' Anti-Malware: http://www.malwarebytes.org/mbam.php to your desktop.
    (Malwarebytes is free to use as a manual scanner. Payment is only required if you wish to have it run and update automatically which is not necessary for our purposes)

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.
    * When completed, a log will open in Notepad.
    * Post the log back here.

    The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
    Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

    RESTART COMPUTER!

    STEP 2. Download GMER: http://www.gmer.net/files.php, by clicking on Download EXE button.
    Alternative downloads:
    - http://majorgeeks.com/GMER_d5198.html
    - http://www.softpedia.com/get/Interne...ers/GMER.shtml
    Double click on downloaded .exe file, select Rootkit tab and click the Scan button.
    Do NOT use the computer while GMER is running!
    When scan is completed, click Save button, and save the results as gmer.log
    Warning ! Please, do not select the "Show all" checkbox during the scan.
    Post the log to your next reply.

    IMPORTANT! If for some reason GMER refuses to run, try again.
    If it still fails, try to UN-check "Devices" in right pane.
    If still no joy, try to run it from Safe Mode.

    RESTART COMPUTER

    STEP 3. Download HijackThis:
    http://free.antivirus.com/hijackthis/
    by clicking on Installer under Version 2.0.4
    Install, and run it.
    Post HijackThis log.
    NOTE. If you're using Vista, or 7, right click on HijackThis, and click Run as Administrator
    Do NOT attempt to "fix" anything!


    DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
     
    broni,
    #4
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...