Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Cyber attack me

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Cyber attack me

Unread postby baftafrate11 » November 10th, 2013, 8:45 pm

Hello, my pc is infected with the cyber.
I did what you told me to do the site in the bottom of the page but I do not think this is enough.
http://www.pcrisk.it/guide-per-la-rimoz ... ieri-virus
I turn to you in the hope of removing the virus from the system administrator to 100%
I'll post the logs and look forward to your answers dds.

DDS

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 10.0.9200.16720
Run by pcmeu at 1:39:54 on 2013-11-11
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.39.1040.18.3062.2118 [GMT 1:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus *Enabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\atiesrxx.exe
C:\Windows\system32\atieclxx.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
D:\Garena Plus\ggdllhost.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
c:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
.
============== Pseudo HJT Report ===============
.
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
uRun: [GarenaPlus] "d:\garena plus\GarenaMessenger.exe" -autolaunch
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
TCP: NameServer = 192.168.42.129
TCP: Interfaces\{5219703A-38C6-40D8-A51C-FCFD7FF64B7A}\A5978554C4F523 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{5219703A-38C6-40D8-A51C-FCFD7FF64B7A}\A5978554C4F533 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{7A1121EC-329D-4990-A108-9ECA8B87F1D3} : DHCPNameServer = 192.168.42.129
TCP: Interfaces\{E1EBCCEC-8985-476C-94C0-E5EDD9706752} : DHCPNameServer = 192.168.43.1
TCP: Interfaces\{E1EBCCEC-8985-476C-94C0-E5EDD9706752}\16C6568716E6462757 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{E1EBCCEC-8985-476C-94C0-E5EDD9706752}\A5978554C4F533 : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{E1EBCCEC-8985-476C-94C0-E5EDD9706752}\E4544574541425 : DHCPNameServer = 192.168.1.1
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\30.0.1599.101\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2013-10-26 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2013-10-26 178304]
R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2013-10-26 26136]
R1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\drivers\aswNdisFlt.sys [2013-10-26 259928]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2013-10-26 774392]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2013-10-26 403440]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-1-26 176128]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2013-10-26 35656]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-10-26 70384]
R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2013-10-26 50344]
R2 avast! Firewall;avast! Firewall;c:\program files\avast software\avast\afwServ.exe [2013-10-26 179088]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-11-16 101392]
R3 netr28;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\drivers\netr28.sys [2012-12-6 2046560]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2011-6-10 394856]
R3 vzandnetdiag;LGE AndroidNet for VZW USB Serial Port;c:\windows\system32\drivers\lgvzandnetdiag.sys [2013-10-27 23168]
R3 vzandnetgps;LGE AndroidNet for VZW USB GPS NMEA Port;c:\windows\system32\drivers\lgvzandnetgps.sys [2013-10-27 22400]
R3 vzandnetmodem;LGE AndroidNet for VZW USB Modem;c:\windows\system32\drivers\lgvzandnetmdm.sys [2013-10-27 28032]
R3 vzandnetndis;LGE AndroidNet for VZW NDIS Ethernet Adapter;c:\windows\system32\drivers\lgvzandnetndis.sys [2013-10-27 74752]
S3 Andbus;LGE Android Composite USB Device;c:\windows\system32\drivers\lgandbus.sys [2013-10-27 14336]
S3 AndDiag;LGE Android USB Serial Port;c:\windows\system32\drivers\lganddiag.sys [2013-10-27 20864]
S3 AndGps;LGE Android USB GPS NMEA Port;c:\windows\system32\drivers\lgandgps.sys [2013-10-27 19968]
S3 ANDModem;LGE Android USB Modem;c:\windows\system32\drivers\lgandmodem.sys [2013-10-27 24960]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2013-10-29 40776]
S3 netr28u;Driver scheda LAN wireless USB RT2870 per Vista;c:\windows\system32\drivers\netr28u.sys [2009-6-10 657408]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-10-26 15872]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-10-27 52224]
S3 WatAdminSvc;Servizio Windows Activation Technologies;c:\windows\system32\wat\WatAdminSvc.exe [2013-10-26 1343400]
.
=============== Created Last 30 ================
.
2013-11-10 09:56:56 -------- d-----w- c:\users\pcmeu\appdata\roaming\GarenaPlus
2013-11-10 09:55:39 -------- d-----w- c:\programdata\GarenaMessenger
2013-11-08 11:55:56 7796464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{98025cfe-28ee-43e1-a138-1ef1e006499c}\mpengine.dll
2013-11-06 13:12:03 388096 ----a-r- c:\users\pcmeu\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2013-11-06 13:12:03 -------- d-----w- c:\program files\Trend Micro
2013-11-06 12:43:51 -------- d-sh--w- C:\$RECYCLE.BIN
2013-11-06 12:43:47 -------- d-----w- c:\users\pcmeu\appdata\local\temp
2013-11-06 12:34:41 98816 ----a-w- c:\windows\sed.exe
2013-11-06 12:34:41 256000 ----a-w- c:\windows\PEV.exe
2013-11-06 12:34:41 208896 ----a-w- c:\windows\MBR.exe
2013-11-03 16:14:20 -------- d-----w- c:\users\pcmeu\appdata\local\CrashRpt
2013-11-01 09:06:41 -------- d-----w- c:\programdata\InterAction studios
2013-10-30 22:08:06 -------- d-----w- c:\users\pcmeu\appdata\roaming\AIMP3
2013-10-30 22:07:55 -------- d-----w- c:\program files\AIMP3
2013-10-29 17:19:59 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-10-29 17:19:59 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-10-29 17:19:58 817664 ----a-w- c:\program files\common files\microsoft shared\vgx\VGX.dll
2013-10-29 17:19:57 770648 ----a-w- c:\program files\internet explorer\iexplore.exe
2013-10-29 17:19:57 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-10-29 17:13:07 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2013-10-29 17:13:07 -------- d-----w- c:\users\pcmeu\appdata\roaming\Malwarebytes
2013-10-29 17:12:49 -------- d-----w- c:\programdata\Malwarebytes
2013-10-29 17:12:40 -------- d-----w- c:\users\pcmeu\appdata\local\Programs
2013-10-29 16:33:23 7796464 ----a-w- c:\programdata\microsoft\windows defender\definition updates\backup\mpengine.dll
2013-10-29 13:23:59 1247744 ----a-w- c:\windows\system32\DWrite.dll
2013-10-28 22:13:37 49152 ----a-w- c:\windows\system32\taskhost.exe
2013-10-28 16:14:28 -------- d-----w- c:\programdata\HitmanPro
2013-10-28 15:25:53 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-10-28 15:24:56 2348544 ----a-w- c:\windows\system32\win32k.sys
2013-10-28 15:23:59 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-27 18:18:00 74752 ----a-w- c:\windows\system32\drivers\lgvzandnetndis.sys
2013-10-27 18:17:58 28032 ----a-w- c:\windows\system32\drivers\lgvzandnetmdm.sys
2013-10-27 18:17:58 23168 ----a-w- c:\windows\system32\drivers\lgvzandnetdiag.sys
2013-10-27 18:17:58 22400 ----a-w- c:\windows\system32\drivers\lgvzandnetgps.sys
2013-10-27 18:16:33 24960 ----a-w- c:\windows\system32\drivers\lgandmodem.sys
2013-10-27 18:16:33 20864 ----a-w- c:\windows\system32\drivers\lganddiag.sys
2013-10-27 18:16:33 19968 ----a-w- c:\windows\system32\drivers\lgandgps.sys
2013-10-27 18:16:33 14336 ----a-w- c:\windows\system32\drivers\lgandbus.sys
2013-10-27 18:07:44 -------- d-----w- c:\program files\LG Electronics
2013-10-27 17:22:22 -------- d-----w- c:\users\pcmeu\appdata\local\ElevatedDiagnostics
2013-10-27 13:46:26 -------- d-----w- c:\users\pcmeu\appdata\local\Diagnostics
2013-10-27 11:07:51 -------- d-----w- c:\windows\system32\SPReview
2013-10-27 11:06:58 -------- d-----w- c:\windows\system32\EventProviders
2013-10-27 11:04:59 82944 ----a-w- c:\windows\system32\thumbcache.dll
2013-10-27 11:03:57 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2013-10-27 11:03:57 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2013-10-27 11:03:57 189952 ----a-w- c:\program files\windows portable devices\sqmapi.dll
2013-10-27 11:03:53 189952 ----a-w- c:\windows\system32\sqmapi.dll
2013-10-26 20:49:03 -------- d-----w- c:\users\pcmeu\appdata\local\Microsoft Games
2013-10-26 18:42:12 -------- d-----w- c:\windows\system32\Wat
2013-10-26 18:26:16 -------- d-----w- c:\windows\system32\wbem\en-US
2013-10-26 17:04:46 -------- d-----w- c:\program files\Synaptics
2013-10-26 17:04:38 69632 ------w- c:\program files\common files\installshield\updateservice\issch.exe
2013-10-26 17:04:38 -------- d-----w- c:\program files\alaplaya
2013-10-26 17:04:37 380928 ------w- c:\program files\common files\installshield\updateservice\agent.exe
2013-10-26 17:04:37 212992 ------w- c:\program files\common files\installshield\updateservice\ISDM.exe
2013-10-26 17:02:12 724992 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\iKernel.dll
2013-10-26 17:02:12 69715 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\ctor.dll
2013-10-26 17:02:12 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\DotNetInstaller.exe
2013-10-26 17:02:12 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2013-10-26 17:02:12 266240 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\iscript.dll
2013-10-26 17:02:12 192512 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\iuser.dll
2013-10-26 17:02:10 311428 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\Setup.dll
2013-10-26 17:02:10 184452 ----a-w- c:\program files\common files\installshield\professional\runtime\09\00\intel32\iGdi.dll
2013-10-26 16:50:44 -------- d-----w- c:\windows\system32\MRT
2013-10-26 16:43:38 5120 ----a-w- c:\windows\system32\wmi.dll
2013-10-26 16:43:38 19824 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-10-26 16:43:38 159232 ----a-w- c:\windows\system32\imagehlp.dll
2013-10-26 16:42:07 -------- d-----w- c:\programdata\Solid State Networks
2013-10-26 16:41:24 293376 ----a-w- c:\windows\system32\browserchoice.exe
2013-10-26 16:36:02 1389568 ----a-w- c:\windows\system32\msxml6.dll
2013-10-26 16:33:38 94208 ----a-w- c:\program files\common files\system\ole db\msdaosp.dll
2013-10-26 16:33:38 86016 ----a-w- c:\windows\system32\odbccu32.dll
2013-10-26 16:33:38 81920 ----a-w- c:\windows\system32\odbccr32.dll
2013-10-26 16:33:38 319488 ----a-w- c:\windows\system32\odbcjt32.dll
2013-10-26 16:33:38 163840 ----a-w- c:\windows\system32\odbctrac.dll
2013-10-26 16:33:38 122880 ----a-w- c:\windows\system32\odbccp32.dll
2013-10-26 16:32:12 69632 ----a-w- c:\windows\system32\smss.exe
2013-10-26 16:32:12 38912 ----a-w- c:\windows\system32\csrsrv.dll
2013-10-26 16:32:08 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2013-10-26 16:32:08 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2013-10-26 16:32:08 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2013-10-26 16:32:00 2048 ----a-w- c:\windows\system32\msxml3r.dll
2013-10-26 16:32:00 1236992 ----a-w- c:\windows\system32\msxml3.dll
2013-10-26 16:30:58 338944 ----a-w- c:\windows\system32\drivers\afd.sys
2013-10-26 16:30:48 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2013-10-26 16:30:48 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2013-10-26 16:30:47 571904 ----a-w- c:\windows\system32\oleaut32.dll
2013-10-26 16:30:47 233472 ----a-w- c:\windows\system32\oleacc.dll
2013-10-26 16:30:01 805376 ----a-w- c:\windows\system32\cdosys.dll
2013-10-26 16:30:01 352256 ----a-w- c:\program files\common files\system\ado\msadomd.dll
2013-10-26 16:30:01 1019904 ----a-w- c:\program files\common files\system\ado\msado15.dll
2013-10-26 16:30:00 57344 ----a-w- c:\program files\common files\system\ado\msador15.dll
2013-10-26 16:30:00 372736 ----a-w- c:\program files\common files\system\ado\msadox.dll
2013-10-26 16:30:00 212992 ----a-w- c:\program files\common files\system\msadc\msadco.dll
2013-10-26 16:30:00 143360 ----a-w- c:\program files\common files\system\ado\msjro.dll
2013-10-26 16:29:49 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-10-26 16:29:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2013-10-26 16:29:15 187752 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-10-26 16:27:41 741376 ----a-w- c:\windows\system32\inetcomm.dll
2013-10-26 16:27:31 293376 ----a-w- c:\windows\system32\umpnpmgr.dll
2013-10-26 16:27:31 145920 ----a-w- c:\windows\system32\cfgmgr32.dll
2013-10-26 16:24:31 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2013-10-26 16:24:31 1137664 ----a-w- c:\windows\system32\mfc42.dll
2013-10-26 16:21:04 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
2013-10-26 14:26:14 -------- d-----w- c:\windows\Panther
2013-10-26 14:18:16 -------- d-----w- c:\program files\VideoLAN
2013-10-26 14:13:35 -------- d-----w- c:\users\pcmeu\appdata\roaming\AVAST Software
2013-10-26 14:10:13 -------- d-----w- c:\users\pcmeu\appdata\local\Google
2013-10-26 14:10:06 178304 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-10-26 14:10:05 774392 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-10-26 14:10:05 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-10-26 14:10:04 70384 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-10-26 14:10:03 79720 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-10-26 14:10:00 26136 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-10-26 14:09:57 43152 ----a-w- c:\windows\avastSS.scr
2013-10-26 14:09:51 259928 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2013-10-26 14:09:36 -------- d-----w- c:\program files\AVAST Software
2013-10-26 14:07:41 -------- d-----w- c:\programdata\AVAST Software
2013-10-26 14:02:14 826880 ----a-w- c:\windows\system32\rdpcore.dll
2013-10-26 14:02:14 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2013-10-26 14:02:14 18432 ----a-w- c:\windows\system32\drivers\tdpipe.sys
2013-10-26 14:02:14 15872 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2013-10-26 14:02:14 134656 ----a-w- c:\windows\system32\rdpudd.dll
2013-10-26 13:58:57 -------- d-----w- c:\users\pcmeu\appdata\local\ATI
2013-10-26 13:57:20 0 ----a-w- c:\windows\ativpsrm.bin
2013-10-26 13:52:50 2422272 ----a-w- c:\windows\system32\wucltux.dll
2013-10-26 13:52:43 88576 ----a-w- c:\windows\system32\wudriver.dll
2013-10-26 13:52:30 33792 ----a-w- c:\windows\system32\wuapp.exe
2013-10-26 13:52:30 171904 ----a-w- c:\windows\system32\wuwebv.dll
2013-10-26 13:50:04 -------- d-sh--w- c:\windows\Installer
2013-10-26 13:50:04 -------- d-----w- c:\program files\ATI
2013-10-26 13:49:34 -------- d-----w- c:\program files\ATI Technologies
2013-10-26 13:39:11 -------- d-----w- C:\swsetup
2013-10-26 13:37:19 -------- d-----w- c:\windows\system32\wbem\Performance
.
==================== Find3M ====================
.
2013-10-28 22:13:06 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-27 11:11:14 152576 ----a-w- c:\windows\system32\msclmd.dll
2013-10-26 14:09:57 403440 ----a-w- c:\windows\system32\drivers\aswsp.sys.1384123892
2013-09-22 23:27:49 2876928 ----a-w- c:\windows\system32\jscript9.dll
2013-09-22 23:27:48 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-09-21 03:30:24 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-09-03 12:35:12 238872 ------w- c:\windows\system32\MpSigStub.exe
.
============= FINISH: 1:40:29,24 ===============


Attach

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 26/10/2013 15:33:14
System Uptime: 10/11/2013 23:49:51 (2 hours ago)
.
Motherboard: Hewlett-Packard | | 1426
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz | CPU | 2266/1066mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 98 GiB total, 76,215 GiB free.
D: is FIXED (NTFS) - 342 GiB total, 331,743 GiB free.
E: is FIXED (NTFS) - 157 GiB total, 137,525 GiB free.
F: is CDROM ()
G: is Removable
H: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e97b-e325-11ce-bfc1-08002be10318}
Description: Controller SCSI PCI Adaptec AIC-7870 (emulato)
Device ID: ROOT\SCSIADAPTER\0000
Manufacturer: Adaptec
Name: Controller SCSI PCI Adaptec AIC-7870 (emulato)
PNP Device ID: ROOT\SCSIADAPTER\0000
Service: aic78xx
.
==== System Restore Points ===================
.
RP25: 03/11/2013 21:32:44 - Windows Update
RP26: 04/11/2013 22:10:22 - Windows Backup
RP27: 06/11/2013 13:34:45 - ComboFix created restore point
RP29: 06/11/2013 14:11:58 - Installed HiJackThis
RP31: 08/11/2013 12:55:15 - Windows Update
.
==== Installed Programs ======================
.
AIMP3
ATI Catalyst Install Manager
avast! Premier
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Garena Plus
Google Chrome
Google Update Helper
HiJackThis
LG Android Driver
LG USB Modem Driver
LG Verizon United Driver
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
S4 League_EU
Synaptics Pointing Device Driver
VLC media player 2.0.5
WarDota2 Promotional Beta
WinRAR 5.00 (32-bit)
.
==== End Of File ===========================
baftafrate11
Active Member
 
Posts: 4
Joined: November 6th, 2013, 9:03 am
Advertisement
Register to Remove

Re: Cyber attack me

Unread postby baftafrate11 » November 14th, 2013, 3:16 pm

...
baftafrate11
Active Member
 
Posts: 4
Joined: November 6th, 2013, 9:03 am

Re: Cyber attack me

Unread postby Cypher » November 17th, 2013, 2:11 pm

Bumping or Replying to Your Own Topic

May I draw your attention again to the topic: ALL USERS OF THIS FORUM MUST READ THIS FIRST, which you should have read before posting for help.

The section here explains why you should not reply to or try to bump your topic, which you have done twice now.
Please submit a new log and wait for a helper to reply, do not reply to your new topic until a helper has replied.
Thank you for your understanding.

This topic is now closed.
User avatar
Cypher
Admin/Teacher
Admin/Teacher
 
Posts: 14959
Joined: October 29th, 2008, 12:49 pm
Location: Land Of The Leprechauns


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 59 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware