Home / Software / Computer viruses and spyware / My logs they show trojan virus and others Please help
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] - (Bottom) Print
Author Topic: My logs they show trojan virus and others Please help  (Read 2282 times)
renam
Topic Starter
Newbie



Posts: 1
« on: May 07, 2009, 05:53:54 AM »
Below are my logs I have so far


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/07/2009 at 01:24 PM

Application Version : 4.26.1002

Core Rules Database Version : 3881
Trace Rules Database Version: 1829

Scan type       : Custom Scan
Total Scan Time : 00:28:51

Memory items scanned      : 486
Memory threats detected   : 0
Registry items scanned    : 5181
Registry threats detected : 0
File items scanned        : 10524
File threats detected     : 16

Adware.Tracking Cookie
   C:\Documents and Settings\Ανδρέας\Cookies\ανδρέας@ad.yieldmanager[2].txt
   C:\Documents and Settings\Ανδρέας\Cookies\ανδρέας@accounts[2].txt
   C:\Documents and Settings\ICT EXAMS\Cookies\ict exams@adserver.hellasnet[1].txt
   C:\Documents and Settings\ICT EXAMS\Cookies\ict exams@webstats[1].txt
   C:\Documents and Settings\ICT EXAMS\Cookies\ict exams@specificclick[1].txt
   C:\Documents and Settings\ICT EXAMS\Cookies\ict exams@server.cpmstar[1].txt
   C:\Documents and Settings\ICT EXAMS\Cookies\ict exams@ads.thinkdigital[2].txt

Adware.Vundo Variant
   C:\WINDOWS\SYSTEM32\CEWMDM32.DLL
   C:\WINDOWS\SYSTEM32\COMSVCS32.DLL
   C:\WINDOWS\SYSTEM32\CSRSRV32.DLL
   C:\WINDOWS\SYSTEM32\DMSTYLE32.DLL
   C:\WINDOWS\SYSTEM32\DPNHUPNP32.DLL

Trojan.Dropper/Sys-NV
   C:\WINDOWS\SYSTEM32\CRYPTUI32.DLL
   C:\WINDOWS\SYSTEM32\DGNET32.DLL
   C:\WINDOWS\SYSTEM32\DPNET32.DLL

Unclassified.Unknown Origin/System
   C:\WINDOWS\SYSTEM32\DIGEST32.DLL


------------------------------------------------------------------------------------------------------------------
Malwarebytes' Anti-Malware 1.36
Έκδοση βάσης δεδομένων: 2087
Windows 5.1.2600 Service Pack 2

7/5/2009 2:03:30 μμ
mbam-log-2009-05-07 (14-03-30).txt

Τύπος σάρωσης: Γρήγορη σάρωση
Αντικείμενα που σαρώθηκαν: 84019
Χρόνος που έχει διανυθεί: 6 minute(s), 8 second(s)

Μολυσμένες διεργασίες στη μνήμη: 0
Μολυσμένα στοιχεία στη μνήμη: 0
Μολυσμένα κλειδιά στο μητρώο: 0
Μολυσμένες τιμές στο μητρώο:  0
Μολυσμένα αντικείμενα δεδομένων στο μητρώο: 3
Μολυσμένοι φάκελοι: 0
Μολυσμένα αρχεία: 185

Μολυσμένες διεργασίες στη μνήμη:
(Δεν εντοπίστηκαν επιβλαβή αντικείμενα)

Μολυσμένα στοιχεία στη μνήμη:
(Δεν εντοπίστηκαν επιβλαβή αντικείμενα)

Μολυσμένα κλειδιά στο μητρώο:
(Δεν εντοπίστηκαν επιβλαβή αντικείμενα)

Μολυσμένες τιμές στο μητρώο:
(Δεν εντοπίστηκαν επιβλαβή αντικείμενα)

Μολυσμένα αντικείμενα δεδομένων στο μητρώο:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Μολυσμένοι φάκελοι:
(Δεν εντοπίστηκαν επιβλαβή αντικείμενα)

Μολυσμένα αρχεία:
C:\WINDOWS\system32\confmsp32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\corpol32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dpmesh32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dpmesh3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dpmesh323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dpmesh32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dpmesh3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3drm32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3drm3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dxof32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\diskcopy32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmband32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmconfig32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmdlgs32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmdskmgr32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmdskres32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmdskres3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmintf32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpwsockx32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drmclien32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drmclien3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drmv2clt32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drmv2clt3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cliconfg32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddrawex323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskadp32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskadp3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskmon32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskmon3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskperf32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\deskperf3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmocx32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmocx3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmserver32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmstyle3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dmusic32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dnsapi32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\docprop232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\docprop32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dsquery32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dssenh32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\duser32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dx8vb32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dxmasf32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\EBAPI32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\EEBDSCVR32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\EEBUtil32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\els32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cnetcfg32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\colbact32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\comctl3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\browsewm32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bthserv32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cabview32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fltlib32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fltlib3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FM2032.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FM203232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FM20323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FM2032323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim32323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim3232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim323232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim32323232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfshim3232323232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpcdll32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dplay32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dplay3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpmodemx32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpnet3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3d832.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp32323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbghelp3232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbmsrpcn32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpnlobby32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpnlobby3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpnwsock32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpvacm32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpvacm3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dpvvox32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ds16gt32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dsauth32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dsdmoprp32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dsound32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dsprop32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\EqnClass32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\es32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\esent9732.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FM20ENU32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\HdAudRes3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cmdial3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cmprops32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cmutil32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\commdlg32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\compobj32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\comrepl32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\crypt3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\crypt323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cryptdll32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cryptnet32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3d8thk3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3dim70032.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\danim32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\danim3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\danim323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dao36032.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dataclen32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dataclen3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dataclen323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\devenum32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\devenum3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgres32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgres3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgres323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgres32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpmon32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpmon3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpmon323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpmon32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpmon3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\diactfrm32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\diactfrm3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgsnap32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgsnap3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgui32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgui3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfrgui323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\d3d8thk32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnetlib323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfsshlex32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfsshlex3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgnet3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgnet323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgrpsetu32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgrpsetu3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgsetup32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgsetup3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgsetup323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dgsetup32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dhcpcsvc32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw32323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dbnmpntw3232323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddeml32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddeml3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddeml323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddraw32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt32323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt3232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davclnt32323232323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\difxapi32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\digest3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\digest323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dimap32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dimap3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dinput32.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dinput3232.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dinput323232.dll (Trojan.Agent) -> Quarantined and deleted successfully.


------------------------------------------------------------------------------------------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:32:54 μμ, on 7/5/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\NCH Software\BroadCam\broadCam.exe
C:\Program Files\NCH Software\Eyeline\eyeline.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ECDL Hellas SA\ECDL Internet Update 4.4\InternetUpdate.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\NCH Software\BroadCam\broadCam.exe
C:\Program Files\NCH Software\Eyeline\eyeline.exe
C:\Program Files\EPSON\BSTM\PG\E_L20IC2.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\OEAPI\Bin\launcher.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\sniper.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.live.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.live.com/sphome.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Συνδέσεις
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ECDL Internet Update 4.4] C:\Program Files\ECDL Hellas SA\ECDL Internet Update 4.4\InternetUpdate.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [BroadCamRun] "C:\Program Files\NCH Software\BroadCam\broadCam.exe" -logon
O4 - HKLM\..\Run: [EyelineRun] "C:\Program Files\NCH Software\Eyeline\eyeline.exe" -logon
O4 - HKLM\..\Run: [EPSON PageSTM TrayIcon01] C:\Program Files\EPSON\BSTM\PG\E_L20IC2.EXE
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Nektra OEAPI] C:\Program Files\OEAPI\Bin\launcher.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ε&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{731794DB-97C8-4FC8-9694-A38249305C0D}: NameServer = 195.170.0.1,195.170.2.2
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BroadCam Service (BroadCamService) - Unknown owner - C:\Program Files\NCH Software\BroadCam\broadCam.exe
O23 - Service: EpsonBidirectionalService - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
O23 - Service: Eyeline Service (EyelineService) - Unknown owner - C:\Program Files\NCH Software\Eyeline\eyeline.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe

--
End of file - 8116 bytes
IP logged
harry 48
Egghead



Thanked: 128
Posts: 3,134

Certifications: List
Computer: Specs
Experience: Familiar
OS: Windows 7


lay back , relax and chill out

1 1 1
« Reply #1 on: May 09, 2009, 02:26:58 PM »
if you ran those checks and those items were removed i think you should run knew scans and post knew  logs

download ccleaner from below and run the scans and clear what ever it shows


http://www.filehippo.com/download_ccleaner/
IP logged
http://diy-help.forumotion.co.uk/   D.I.Y. help forum
Pages: [1] - (Top) Print 
Home / Software / Computer viruses and spyware / My logs they show trojan virus and others Please help « previous next »
 


Login with username, password and session length

Old Forum Search | Forum Rules
Copyright © 2010 Computer Hope ® All rights reserved.
Powered by SMF 2.0 RC3 | SMF © 2006–2010, Simple Machines LLC
Page created in 0.293 seconds with 20 queries.