blatblat
2011-04-26, 21:17
Having problems with Click.Giftload. Noticed the laptop was running really slow. Did a scan with my AV program and it picked up a few items but computer was still running slow. Rescanned but again nothing. Downloaded S&D and it picked up a few more items including Giftload. Cleared things up but don't seem to be able to get rid of Giftload. Thank you for your time. Here is my DDS log:
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Fam at 15:53:58.55 on Tue 04/26/2011
Internet Explorer: 8.0.6001.18702
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uInternet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [SonyPowerCfg] c:\program files\sony\vaio power management\SPMgr.exe
mRun: [HKSERV.EXE] c:\program files\sony\hotkey utility\HKserv.exe
mRun: [VAIO Recovery] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [VAIO Update 4] "c:\program files\sony\vaio update 4\VAIOUpdt.exe" /Stationary
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
IE: &Google Search - c:\program files\google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\google\GoogleToolbar1.dll/cmcache.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - c:\program files\google\GoogleToolbar1.dll/cmtrans.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-beta/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R? Lavasoft Kernexplorer;Lavasoft helper driver
S? aswFsBlk;aswFsBlk
S? aswSnx;aswSnx
S? aswSP;aswSP
S? avast! Antivirus;avast! Antivirus
.
=============== Created Last 30 ================
.
2011-04-25 18:19:37 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-25 18:18:59 40112 ----a-w- c:\windows\avastSS.scr
2011-04-25 18:18:34 -------- d-----w- c:\program files\AVAST Software
2011-04-25 18:18:34 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVAST Software
2011-04-25 16:47:29 -------- d-sha-r- C:\cmdcons
2011-04-25 16:43:16 98816 ----a-w- c:\windows\sed.exe
2011-04-25 16:43:16 89088 ----a-w- c:\windows\MBR.exe
2011-04-25 16:43:16 256512 ----a-w- c:\windows\PEV.exe
2011-04-25 16:43:16 161792 ----a-w- c:\windows\SWREG.exe
2011-04-25 15:54:04 -------- d-----w- c:\program files\CCleaner
2011-04-22 16:32:26 98392 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-04-22 16:18:51 -------- d-----w- c:\docume~1\fam\locals~1\applic~1\Sunbelt Software
2011-04-22 04:49:52 -------- d-----w- c:\program files\ESET
2011-04-22 04:09:56 -------- d-----w- c:\docume~1\fam\applic~1\Malwarebytes
2011-04-22 04:09:47 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-22 04:09:46 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-04-22 04:09:40 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-22 04:09:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-21 17:26:36 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-04-21 17:26:36 -------- d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2011-04-21 15:40:13 -------- d-----w- c:\windows\pss
2011-04-21 14:01:34 -------- d-----w- c:\program files\Wise Registry Cleaner
2011-04-21 06:26:06 -------- d-----w- c:\program files\WiFiConnector
2011-04-21 04:49:00 -------- d-----w- c:\program files\RegZooka
2011-04-17 06:23:31 0 ----a-w- c:\windows\Pjaxolemahedi.bin
2011-04-17 06:22:19 -------- d-----w- c:\docume~1\fam\applic~1\FAC8D059802E2A7C934123B17F80F59B
2011-04-10 20:22:53 -------- d-----w- c:\docume~1\fam\locals~1\applic~1\Identities
2011-04-04 21:16:04 -------- d-----w- c:\docume~1\fam\applic~1\Xilisoft Corporation
2011-04-02 17:58:15 -------- d-----w- c:\docume~1\fam\applic~1\Sytexis Software
2011-04-02 17:58:01 -------- d-----w- c:\program files\Sytexis Software
.
==================== Find3M ====================
.
2011-04-24 04:57:34 26112 ----a-w- c:\windows\system32\userinit.exe
2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57:06 677888 ----a-w- c:\windows\system32\mstsc.exe
.
============= FINISH: 16:03:36.84 ===============
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by Fam at 15:53:58.55 on Tue 04/26/2011
Internet Explorer: 8.0.6001.18702
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
uInternet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Apoint] c:\program files\apoint\Apoint.exe
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [SonyPowerCfg] c:\program files\sony\vaio power management\SPMgr.exe
mRun: [HKSERV.EXE] c:\program files\sony\hotkey utility\HKserv.exe
mRun: [VAIO Recovery] c:\windows\sonysys\vaio recovery\PartSeal.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [VAIO Update 4] "c:\program files\sony\vaio update 4\VAIOUpdt.exe" /Stationary
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
IE: &Google Search - c:\program files\google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\google\GoogleToolbar1.dll/cmcache.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: Similar Pages - c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - c:\program files\google\GoogleToolbar1.dll/cmtrans.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos-beta/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Notify: AtiExtEvent - Ati2evxx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
============= SERVICES / DRIVERS ===============
.
R? Lavasoft Kernexplorer;Lavasoft helper driver
S? aswFsBlk;aswFsBlk
S? aswSnx;aswSnx
S? aswSP;aswSP
S? avast! Antivirus;avast! Antivirus
.
=============== Created Last 30 ================
.
2011-04-25 18:19:37 441176 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-25 18:18:59 40112 ----a-w- c:\windows\avastSS.scr
2011-04-25 18:18:34 -------- d-----w- c:\program files\AVAST Software
2011-04-25 18:18:34 -------- d-----w- c:\docume~1\alluse~1\applic~1\AVAST Software
2011-04-25 16:47:29 -------- d-sha-r- C:\cmdcons
2011-04-25 16:43:16 98816 ----a-w- c:\windows\sed.exe
2011-04-25 16:43:16 89088 ----a-w- c:\windows\MBR.exe
2011-04-25 16:43:16 256512 ----a-w- c:\windows\PEV.exe
2011-04-25 16:43:16 161792 ----a-w- c:\windows\SWREG.exe
2011-04-25 15:54:04 -------- d-----w- c:\program files\CCleaner
2011-04-22 16:32:26 98392 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-04-22 16:18:51 -------- d-----w- c:\docume~1\fam\locals~1\applic~1\Sunbelt Software
2011-04-22 04:49:52 -------- d-----w- c:\program files\ESET
2011-04-22 04:09:56 -------- d-----w- c:\docume~1\fam\applic~1\Malwarebytes
2011-04-22 04:09:47 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-04-22 04:09:46 -------- d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-04-22 04:09:40 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-04-22 04:09:39 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-04-21 17:26:36 -------- d-----w- c:\program files\Spybot - Search & Destroy
2011-04-21 17:26:36 -------- d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2011-04-21 15:40:13 -------- d-----w- c:\windows\pss
2011-04-21 14:01:34 -------- d-----w- c:\program files\Wise Registry Cleaner
2011-04-21 06:26:06 -------- d-----w- c:\program files\WiFiConnector
2011-04-21 04:49:00 -------- d-----w- c:\program files\RegZooka
2011-04-17 06:23:31 0 ----a-w- c:\windows\Pjaxolemahedi.bin
2011-04-17 06:22:19 -------- d-----w- c:\docume~1\fam\applic~1\FAC8D059802E2A7C934123B17F80F59B
2011-04-10 20:22:53 -------- d-----w- c:\docume~1\fam\locals~1\applic~1\Identities
2011-04-04 21:16:04 -------- d-----w- c:\docume~1\fam\applic~1\Xilisoft Corporation
2011-04-02 17:58:15 -------- d-----w- c:\docume~1\fam\applic~1\Sytexis Software
2011-04-02 17:58:01 -------- d-----w- c:\program files\Sytexis Software
.
==================== Find3M ====================
.
2011-04-24 04:57:34 26112 ----a-w- c:\windows\system32\userinit.exe
2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-27 11:57:06 677888 ----a-w- c:\windows\system32\mstsc.exe
.
============= FINISH: 16:03:36.84 ===============