wanderlust
Posts: 7 +0
Hello.
I have been experiencing problems with my computer for awhile. The current main problem, is that when I use google to search the internet, it will automatically direct me to another site (Infosmash.com is one of them). The computer it self also seems to be running slower than it usually does.
This was happening more often just a few weeks ago, and I also could not connect to Windows Update for awhile. I ran a bunch of virus scans and downloaded all of the anti-spyware programs that I could, which took care of some of my problems.
I ran the 6 step virus removal program and here are my resulting logs. (I attached the DDS files because they were too long). After running the programs my computer seems to be operating very sluggishly.
Thank you very much in advance for any assistance that you can offer.
MALWAREBYTES:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4458
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
8/21/2010 1:25:38 PM
mbam-log-2010-08-21 (13-25-38).txt
Scan type: Quick scan
Objects scanned: 156575
Time elapsed: 6 minute(s), 25 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MS Essentials (Malware.Trace) -> Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER:
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-08-22 22:29:55
Windows 5.1.2600 Service Pack 3
Running: hk365hhk.exe; Driver: C:\DOCUME~1\Owner\LOCALS~1\Temp\fwrcypoc.sys
---- System - GMER 1.0.15 ----
SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwCreateKey [0xF764787E]
SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwSetValueKey [0xF7647BFE]
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version
Reg HKLM\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version@Version 0x80 0x92 0x60 0x50 ...
---- EOF - GMER 1.0.15 ----
I have been experiencing problems with my computer for awhile. The current main problem, is that when I use google to search the internet, it will automatically direct me to another site (Infosmash.com is one of them). The computer it self also seems to be running slower than it usually does.
This was happening more often just a few weeks ago, and I also could not connect to Windows Update for awhile. I ran a bunch of virus scans and downloaded all of the anti-spyware programs that I could, which took care of some of my problems.
I ran the 6 step virus removal program and here are my resulting logs. (I attached the DDS files because they were too long). After running the programs my computer seems to be operating very sluggishly.
Thank you very much in advance for any assistance that you can offer.
MALWAREBYTES:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4458
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
8/21/2010 1:25:38 PM
mbam-log-2010-08-21 (13-25-38).txt
Scan type: Quick scan
Objects scanned: 156575
Time elapsed: 6 minute(s), 25 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{97f8ca3f-3d0f-411c-8846-8d242ade76fc} (Password.Stealer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\MS Essentials (Malware.Trace) -> Quarantined and deleted successfully.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
GMER:
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-08-22 22:29:55
Windows 5.1.2600 Service Pack 3
Running: hk365hhk.exe; Driver: C:\DOCUME~1\Owner\LOCALS~1\Temp\fwrcypoc.sys
---- System - GMER 1.0.15 ----
SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwCreateKey [0xF764787E]
SSDT Lbd.sys (Boot Driver/Lavasoft AB) ZwSetValueKey [0xF7647BFE]
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
---- Registry - GMER 1.0.15 ----
Reg HKLM\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version
Reg HKLM\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version@Version 0x80 0x92 0x60 0x50 ...
---- EOF - GMER 1.0.15 ----