Thread: Thanks for any help you can provide
View Single Post
  #7 (permalink)  
Old 15-09-2007, 04:34 AM
dwillis dwillis is offline
Newbie
D-A-L Newbie
  
Join Date: Sep 2007
Posts: 5
dwillis Is a beginner here at D-A-L
Re: Thanks for any help you can provide
Ran defrag. CCCleaner has been run several times lately. Here is an updated HJT log and the Dr. Web.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:53:58 AM, on 9/14/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\system32\DVDRAMSV.exe
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\swdsvc.exe
c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Grisoft\AVG7\avgcc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myspace.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.toshibadirect.com/dpdstart
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.toshibadirect.com/dpdstart
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {1B153D37-8535-4448-9699-DAA294614641} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Notebook Maximizer] C:\Program Files\Notebook Maximizer\maximizer_startup.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.toshibadirect.com/dpdstart
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: DVD-RAM_Service - Matsu****a Electric Industrial Co., Ltd. - C:\WINDOWS\system32\DVDRAMSV.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: Swupdtmr - Unknown owner - c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

--
End of file - 7915 bytes




avawmbtr.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Hotbot;Moved.;
dtmwmysu.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
eampkknt.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
fpqpdvdb.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
jjhunwbs.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
mkvshehf.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
nnbsrbmg.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
qtgiasbt.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
rtrqrbjl.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Hotbot;Moved.;
syblcqbe.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
upblndto.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
whdgjsfy.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Hotbot;Moved.;
ytpbmpcx.dll.vir;C:\qoobox\Quarantine\C\WINDOWS\sy stem32;Adware.Crew;Moved.;
A0036678.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP255;Trojan.Virtumod;Deleted.;
A0037678.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP255;Trojan.Virtumod;Deleted.;
A0037679.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP255;Trojan.Virtumod;Deleted.;
A0038678.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP255;Trojan.Virtumod;Deleted.;
A0039679.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039680.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039681.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039682.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039683.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039684.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039685.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039686.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039687.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039688.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039689.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039690.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039691.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039692.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039693.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP271;Trojan.Virtumod;Deleted.;
A0039757.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP273;Trojan.Virtumod;Deleted.;
A0040757.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040758.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040759.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040760.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040761.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040762.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0040763.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP280;Trojan.Virtumod;Deleted.;
A0052159.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP298;Trojan.Virtumod;Deleted.;
A0055260.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055261.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055262.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055263.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055264.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055265.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055266.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055269.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055270.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055271.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055272.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055273.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055277.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.Hotbot;Moved.;
A0055283.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055288.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055301.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055317.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055320.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055331.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055341.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.Hotbot;Moved.;
A0055343.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055346.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.ZenoSearch;Moved.;
A0055356.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055357.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055359.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055368.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.DownLoader.12309;Delete d.;
A0055376.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055378.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.Hotbot;Moved.;
A0055388.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055389.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.SearchColours;Moved.;
A0055398.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.Hotbot;Moved.;
A0055401.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055411.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.TopSearch;Moved.;
A0055414.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055421.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055428.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055430.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055431.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055432.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055434.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055436.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055440.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055441.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055450.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055452.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055454.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055456.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055467.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Juan;Deleted.;
A0055471.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055472.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055473.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.Virtumod;Deleted.;
A0055474.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0055477.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Adware.TopSearch;Moved.;
A0055479.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP299;Trojan.EzulaAd;Deleted.;
A0057535.exe;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP300;Trojan.EzulaAd;Deleted.;
A0062847.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Crew;Moved.;
A0062860.scr;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062862.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062863.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.MWS;Moved.;
A0062867.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062869.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Trojan.Isbar.438;Deleted.;
A0062872.SCR;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062874.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062875.EXE;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062876.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Trojan.DownLoader.7028;Deleted .;
A0062878.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062881.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.MWS;Moved.;
A0062885.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062886.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062889.EXE;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Websearch;Moved.;
A0062890.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Websearch;Moved.;
A0062891.DLL;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP306;Adware.Msearch;Moved.;
A0062997.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Hotbot;Moved.;
A0062998.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0062999.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063000.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063002.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063003.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063004.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063005.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063006.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Hotbot;Moved.;
A0063007.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063008.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063009.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Hotbot;Moved.;
A0063010.dll;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Adware.Crew;Moved.;
A0063054.bat;C:\System Volume Information\_restore{F6221601-BABC-4B69-922D-F7E899FB13E9}\RP307;Probably SCRIPT.Virus;Moved.;
iahejkjg.dll.bad;C:\VundoFix Backups;Adware.Crew;Moved.;
popcaploader.dll;C:\WINDOWS\Downloaded Program Files;Program.PopcapLoader;Moved.;


Anyway systemstill really slow. 25 minutes to boot up. 15 minutes to shut down.
Reply With Quote