|
|
Bleeping..
|
|
Re: WHS infected?
03:36 29-Sep-09
[Replies: 54, Views: 1004]
By: damnitbeavis
c:\windows\Installer\10c18.msi c:\windows\Installer\11ec5.msi c:\windows\Installer\12ae469d.msi c:\windows\Installer\12bdd6.msi c:\windows\Installer\16811772.msp c:\windows
|
|
|
|
|
Bleeping..
|
|
Re: newbiie here
01:41 21-Nov-09
[Replies: 10, Views: 266]
By: chrickt67
28 | 00 340 456 | - | M] (Kaspersky Lab) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe PRC - [2009/10/20 20:39:28 | 00 340 456 | - | M] (Kaspersky Lab) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe..explorer.exe PRC - [2008/10/10 23:44:57 | 00 069 632 | - | M] (Creative Labs) - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe PRC - [2008/09/17 22:55:00 | 00 196 608 | - | M] (NVIDIA Corporation) - C:\Windows\..MySQL\MySQL Server 5.1\bin\mysqld.exe PRC - [2008/02/15 17:25:34 | 00 102 400 | - | M] (IDT Inc.) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_6fa9efce\stacsv.exe PRC - [2008/01/18 22:33:40 | 00..TeamViewer_Service.exe - (TeamViewer4) SRV - [2009/03/29 23:42:14 | 00 066 368 | - | M] (Microsoft Corporation) - C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - (clr_optimization_v2.0.50727_32) SRV - [2009/02/18 13:39:20 | 00 043 904 | - | M] (Microsoft Corporation
|
|
|
|
|
|
Re: newbiie here
06:37 22-Nov-09
[Replies: 10, Views: 266]
By: chrickt67
2008-02-15 22:23 312320 -a-w- c:\windows\system32\stapi32.dll 2009-11-17 00:49 .. 2009-11-17 23:17 4096 d-w- c:\program files\Free 3D Castle Screensaver 2009-11-07 19:52 .. 2009-11-07 19:52 - d-w- c:\users\ace\AppData\Roaming\CleanMyPC Software 2009-11-07 02:13
|
|
|
|
|
|
Bleeping..
|
|
Re: proscan5.info
03:21 14-Nov-09
[Replies: 21, Views: 507]
By: jab416171
Ltd.) - C:\Program Files (x86)\mirc\mirc.exe PRC - [2009/09/12 11:39:47 | 02 810 880 | - | M] (mIRC Co.. Ltd.) - C:\Program Files (x86)\mirc\mirc.exe PRC - [2009/09/12 10:13:21 | 00 288 048 | - | M] (BitTorrent Inc.) - C:\Program Files (x86)\uTorrent\uTorrent.exe PRC - [2009/09/06 07:26:28 | 00 729 088 | - | M] (FileZilla Project..19:24 | 25 626 408 | R- | M] (Skype Technologies S.A.) - C:\Program Files (x86)\Skype\Phone\Skype.exe PRC - [2009/09/02 14:19:24 | 25 626 408 | R- | M] (Skype Technologies S.A.) - C:\Program Files (x86)\Skype\Phone..23:12 | 00 149 280 | - | M] (Sun Microsystems Inc.) - C:\Program Files (x86)\Java\jre6\bin\jusched.exe PRC - [2009/02/26 23:22:34 | 02 418 176 | - | M] () - C:\Program Files (x86)\pvpgn-1.8.5\PvPGN.exe PRC..MySQL\MySQL Server 5.1\bin\mysqld.exe - (MySQL51) SRV: 64bit: - [2009/07/13 18:41:59 | 00 229 888 | - | M] (Microsoft Corporation) - C:\Windows\SysNative\wwansvc.dll - (WwanSvc) SRV: 64bit: - [2009/07/13 18:41:56 | 00 202
|
|
|
|
|
Bleeping..
|
|
Re: Rootkit left after trojan removal (lot of hidden code)
00:29 13-Jan-10
[Replies: 33, Views: 333]
By: rocketronnie
2010-01-01 10:46 - d-w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2010-01-01 10:46 .. 2010-01-01 10:46 - d-w- c:\program files\SUPERAntiSpyware 2010-01-01 10:46 .. 2009-12-02 13:19 15880 -a-w- c:\windows\system32\lsdelete.exe 2009-12-30 23:49 .. 2009-12-02 13:19 64288 -a-w- c:\windows\system32\drivers\Lbd.sys 2009-12-30 23:36
|
|
|
|
|
|
Re: Rootkit left after trojan removal (lot of hidden code)
18:49 11-Jan-10
[Replies: 33, Views: 333]
By: rocketronnie
28 | 06 562 432 | - | M] () - C:\xampp\mysql\bin\mysqld.exe PRC - [2008/12/09 23:10:14 | 00 024 636 | - | M] (Apache Software Foundation) - C:\xampp\apache\bin\httpd.exe PRC - [2008/12/09 23:10:14 | 00 024 636 | - | M] (Apache Software..CALMAIN.exe PRC - [2007/01/19 11:49:04 | 00 049 152 | - | M] (Wireless Service) - C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe PRC - [2006/11/13 13:39:52 | 01 289 000 | - | M] (Microsoft Corporation) - C:\Program Files\Microsoft ActiveSync..nvsvc32.exe PRC - [2006/04/19 02:54:50 | 00 049 152 | - | M] ( ) - C:\WINDOWS\system32\SysMonitor.exe PRC - [2006/02/17 23:26:32 | 00 073 728 | - | M] (Hewlett-Packard Company) - c:\Program Files\Common Files\LightScribe\LSSrvc.exe PRC -..mysql\bin\mysqld.exe - (mysql) SRV - [2008/12/09 23:10:14 | 00 024 636 | - | M] (Apache Software Foundation) [Auto | Running] - c:\xampp\apache\bin\httpd.exe - (Apache2.2) SRV - [2008/11/14 17:28:10 | 04 937 752 | R- |
|
|
|
|
|
Bleeping..
|
|
Re: Hijacked Google search results in Chrome and FF
16:11 18-Jan-10
[Replies: 12, Views: 215]
By: kettlecup
2009-09-04 17:29 5501792 -a-w- c:\windows\system32\d3dcsx_42.dll 2010-01-15 23:25 .. 2009-09-04 17:29 1974616 -a-w- c:\windows\system32\D3DCompiler_42.dll 2010-01-15 23:25 .. 2009-09-04 17:29 453456 -a-w- c:\windows\system32\d3dx10_42.dll 2010-01-15 23:25 .. 2001-03-08 19:30 24064 -w- c:\windows\system32\msxml3a.dll 2010-01-11 23:13 .. 2010-01-10 14:53 - d-w- C:\Microgaming 2010-01-09 19:43
|
|
|
|
|
Bleeping..
|
|
Re: Google Search Results Redirected
19:16 16-Dec-09
[Replies: 22, Views: 602]
By: Shizoku
c:\documents and settings\Owner.SHIZOKU\Desktop\ComboFix.exe .. c:\windows\system32\404Fix.exe c:\windows\system32\Agent.OMZ.Fix.exe c:\windows\system32\dumphive.exe c:\windows\system32\IEDFix.C.exe c:\windows\system32\IEDFix.exe c:\windows.. 2009-12-03 08:00 - d-w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-12-02 23:53 ..CNMsr83.dll 2009-12-02 23:53 .. 2009-11-06 20:19 1563008 -a-w- c:\windows\WRSetup.dll 2009-11-29 13:13 .. 2009-03-19 14:10 117760 -c-a-w- c:\documents and settings\Owner.SHIZOKU\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL 2009-11-29 11:53
|
|
|
|
|
|
Re: Google Search Results Redirected
19:48 17-Dec-09
[Replies: 22, Views: 602]
By: Shizoku
2009-12-10 14:12 664 -a-w- c:\windows\system32\d3d9caps.dat 2009-12-08 14:15 .. 2009-12-09 07:00 - d-w- c:\program files\IceWarp 2009-12-06 22:41 .. 2009-12-03 08:00 - d-w- c:\program files\Microsoft CAPICOM 2.1.0.2 2009-12-02 23:49 .. 2009-12-02 23:49 - d-w- c:\program files\Common Files\ScanSoft Shared 2009-12-02 23:49 .. 2009-11-06 20:19 1563008 -a-w- c:\windows\WRSetup.dll 2009-11-29 13:13 .. 2009-12-17 19:38
|
|
|
|
|
|
Re: Google Search Results Redirected
06:02 23-Dec-09
[Replies: 22, Views: 602]
By: Shizoku
s system information tool 1.06 (written by random/random) Run by Owner at 2009-12-23 00:59:29 Microsoft Windows XP Professional Service Pack 3 System drive C: has 80 GB (34%) free of 234 GB Total RAM: 1918 MB (53% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:59:38 AM on 12/23/2009 Platform: Windows XP SP3 (WinNT 5.01.. C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\.. MySQL - Unknown owner - C:\Program.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PrismXL - New Boundary Technologies Inc
|
|
|
|
|
|
|
Bleeping..
|
|
Virtumonde (or other problems?)
23:08 7-Jan-10
[Replies: 2, Views: 56]
By: bashkm
skype4com - FFC8B962-9B40-4DFF-9458-1830C7DD7F5D - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: !SASWinLogon - c:\security\superantispyware\SASWINLO.dll SSODL: WPDShServiceObj - AAA288BA-9A4C-45B0-95D7-94D524869DB5 - c:\windows\system32\WPDShServiceObj..tomcat6.exe [2007-7-19 57344] UnknownUnknown ruuxhnq;ruuxhnq; [x] = Created Last 30 = 2010-01-07 11:19:18 0 d-sha-r- C:\cmdcons 2009-12-31 09:07:26 0 d-w- c:\docume~1\basab\applic~1\Malwarebytes 2009-12-31 09:07:21 38224..23 114712 -a-r- c:\windows\system32\drivers\lvpopflt.sys 2009-12-20 07:12:30 0 -a-w- c:\windows\system32\drivers\logiflt.iad 2009-12-20 07:12:26 23832 -a-r- c:\windows\system32\drivers\..httpapi.dll 2009-10-20 23:21:06 55856 -a-w- c:\windows\system32\vnetinst.dll 2009-10-20 23:21:06 50736 -a-w- c:\windows\system32\vmnetbridge.dll 2009-10-13 10:30:16 270336 -a-w- c:\windows\system32\oakley.dll 2009-10-12 13
|
|
|
|
|
Bleeping..
|
|
Re: Infected w Trojan.Agent and Backdoor.Bot
05:39 24-Jan-10
[Replies: 14, Views: 300]
By: onesweetypie
02 | 02 482 848 | - | M] (McAfee Inc.) - c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe PRC - [2009/07/07 09:23:00 | 01 779 952 | - | M] () - C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe PRC - [2009/05/19 10:36:18 | 00 240 512 | -..SeaPort.exe PRC - [2009/05/18 23:23:16 | 00 049 968 | - | M] (AOL LLC) - C:\Program Files\AIM6\aim6.exe PRC - [2009/04/11 00:28:08 | 00 037 888 | - | M] (Microsoft Corporation) - C:\Windows\System32\wbem\unsecapp.exe PRC - [2009/04/11 00:27..19:24 | 00 386 480 | - | M] (Sun Microsystems Inc.) - C:\Program Files\Java\jre6\bin\jucheck.exe PRC - [2009/03/09 04:19:17 | 00 148 888 | - | M] (Sun Microsystems Inc.) - C:\Program Files\Java\jre6\bin..MySQL\bin\mysqld.exe PRC - [2007/01/04 15:38:08 | 00 024 652 | - | M] (Viewpoint Corporation) - C:\Program Files\Viewpoint\Common\ViewpointService.exe PRC - [2006/09/07 15:21:38 | 00 098 304 | - | M] (ArcSoft Inc.) - C
|
|
|
|
|
|
Re: Infected w Trojan.Agent and Backdoor.Bot
22:11 27-Jan-10
[Replies: 14, Views: 300]
By: onesweetypie
SeaPort.exe (Microsoft Corporation) PRC - C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems Inc.) PRC - C:..MySQL\bin\mysqld.exe () PRC - C:\Program Files\Viewpoint\Common\ViewpointService.exe (Viewpoint Corporation) PRC - C:\Program Files\My Book\WD Backup\uBBMonitor.exe (ArcSoft Inc.) = Modules (SafeList..MySQL\bin\mysqld.exe () SRV - (WcesComm) - C:\Windows\WindowsMobile\wcescomm.dll (Microsoft Corporation) SRV - (RapiMgr) - C:\Windows\WindowsMobile\rapimgr.dll (Microsoft Corporation) SRV - (Viewpoint Manager Service
|
|
|
|
|
Speed Guide
|
|
Re: hijackthis help?
18:51 22-Oct-09
[Replies: 11, Views: 991]
By: finalmidnight
2008-02-23 19:13 - d-w- c: program files Windows Live 2009-09-30 03:40 .. 2009-09-05 20:06 16197632 -a-w- c: windows system32 imageres.dll 2009-09-05 10:44 .. 2008-06-19 05:56 - d-w- c: program files Stardock 2009-09-05 10:35 .. 2009-09-09 03:23 904776 -a-w- c: windows system32 drivers tcpip.sys 2009-08-14 15:53
|
|
|
|
|
Bleeping..
|
|
Re: Google Search links redirecting to zn website
23:40 26-Nov-09
[Replies: 27, Views: 529]
By: Shah123
2009-08-07 02:24 53472 -a-w- c:\windows\system32\wuauclt.exe 2009-11-25 01:15 .. 2009-08-07 02:23 1929952 -a-w- c:\windows\system32\wuaueng.dll 2009-11-25 01:15 .. 2009-08-07 02:23 575704 -a-w- c:\windows\system32\wuapi.dll 2009-11-25 01:15 .. 2009-08-06 19:23 171608 -a-w- c:\windows\system32\wuwebv.dll 2009-11-25 01:15 .. 2009-11-20 09:21 - d-w- c:\programdata\InstallShield 2009-11-20 09:19
|
|
|
|
|
|
Re: Google Search links redirecting to zn website
10:05 24-Nov-09
[Replies: 27, Views: 529]
By: Shah123
2008-02-23 04:23 4096 d-w- c:\users\Amit\AppData\Roaming\Corel 2009-11-24 09:18 .. 2008-02-23 04:23 2984 -sha-w- c:\windows\system32\KGyGaAvL.sys 2009-11-22 02:43 .. 2009-11-20 09:24 50 -a-w- c:\windows\system32\bridf08a.dat 2009-11-20 09:19 .. 2009-03-19 12:07 4096 d-w- c:\program files\Microsoft 2009-11-07 17:42
|
|
|
|
|
Bleeping..
|
|
Re: Infected with Trojan horse Agent.DI
16:01 15-Nov-09
[Replies: 30, Views: 550]
By: cvtsa
19 Microsoft Windows XP Professional Service Pack 3 System drive C: has 221 GB (92%) free of 239 GB Total RAM: 3582 MB (78% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:55:26 on 15/11/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE.. C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\
|
|
|
|
|
|
|
Bleeping..
|
|
A Cunning Adversary
04:58 19-Sep-09
[Replies: 1, Views: 69]
By: mjohnsn
f4971ee7-daa0-4053-9964-665d8ee6a077 - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll TB: Adobe PDF: 47833539-d0c5-4125-9fa8-0819e2eaac93 - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient
|
|
|
|
|
Bleeping..
|
|
Re: Google searches rerouting + Sluggish computer
00:45 6-Jan-10
[Replies: 24, Views: 1017]
By: Kalookakoo
Here it is: Logfile of random's system information tool 1.06 (written by random/random) Run by David at 2010-01-05 19:19:30 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 44 GB (57%) free of 76 GB Total RAM: 510 MB (21% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 7:19:53 PM on 1/5/2010 Platform: Windows XP SP3 (WinNT 5.01.2600).. C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe c:\Program Files
|
|
|
|
|
|
Re: Google searches rerouting + Sluggish computer
00:57 5-Jan-10
[Replies: 24, Views: 1017]
By: Kalookakoo
here are the logs Logfile of random's system information tool 1.06 (written by random/random) Run by David at 2010-01-04 19:45:57 Microsoft Windows XP Home Edition Service Pack 3 System drive C: has 41 GB (53%) free of 76 GB Total RAM: 510 MB (16% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 7:47:23 PM on 1/4/2010 Platform: Windows XP SP3 (WinNT 5.01.2600).. C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe c:\Program Files
|
|
|
|
Search matches - Showing results 1 - 25 of 657
