Bullguard Antivirus Forum Download A Free Copy Of Bullguard Antivirus Software
Free Antivirus Forum - Learn about antivirus, firewalls and personal security Free Antivirus Forum - Learn about antivirus, firewalls and personal security
 HomeLog InRegisterCommunity CalendarSearch the ForumView The Member ListHelp
Laptop seems to be losing drivers
   
BullGuard Antivirus Forum > Virus Removal > Removal Help > Laptop seems to be losing drivers  
Forum Quick Jump
 
New Topic Post reply to : Laptop seems to be losing drivers Printable version of : Laptop seems to be losing drivers
[ << Previous Thread | Next Thread >> ]

danny-boy
New Member


Date Joined Aug 2007
Total Posts : 37
  		   Posted 5-13-2008 9:18 (GMT +2)    Quote: Laptop seems to be losing driversAlert an admin about: Laptop seems to be losing drivers
Hi all, i'm posting some logs from a friends laptop on their behalf, the computer seems to have lost internet access and all sound and video drivers confused

We cannot seem to figure if this is a component failure or viral.

I know you guys have a lot of postings to get through but would very much appreciate it if you could cast your expert eyes over them turn

Logfile of HijackThis v1.99.1
Scan saved at 9:15:42 PM, on 5/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Common Files\AOL\1210141762\ee\AOLSoftware.exe
C:\WINDOWS\system32\gsicon.exe
C:\WINDOWS\system32\dslagent.exe
C:\Program Files\VoyagerTest\fts.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wpabaln.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Karen Snell\Desktop\alternativ.exe

R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1210141762\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [GSICONEXE] gsicon.exe
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe USB
O4 - HKLM\..\Run: [%FP%Friendly fts.exe] "C:\Program Files\VoyagerTest\fts.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 4.0\resources\en-GB\local\search.html
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe


ComboFix 07-08-04.3 - "Karen Snell" 2008-05-11 21:08:06.1 [GMT 1:00] - NTFS
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.True
* Created a new restore point


((((((((((((((((((((((((( Files Created from 2008-04-11 to 2008-05-11 )))))))))))))))))))))))))))))))


2008-05-11 21:06 51,200 --a------ C:\WINDOWS\nircmd.exe
2008-05-11 20:49 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-05-07 07:35 90,112 --a------ C:\WINDOWS\system32\gsicon.exe
2008-05-07 07:35 53,248 --a------ C:\WINDOWS\AppRun.exe
2008-05-07 07:35 37,376 --a------ C:\WINDOWS\system32\CoInst.dll
2008-05-07 07:35 36,864 --a------ C:\WINDOWS\Restart.exe
2008-05-07 07:35 267,672 --a------ C:\WINDOWS\system32\drivers\glausb.sys
2008-05-07 07:35 16,384 --a------ C:\WINDOWS\system32\dslagent.exe
2008-05-07 07:35 <DIR> d-------- C:\Program Files\VoyagerTest
2008-05-07 07:35 <DIR> d-------- C:\Program Files\Common Files\FTL Shared
2008-05-07 07:35 <DIR> d-------- C:\Program Files\BT Voyager 100 ADSL Modem
2008-05-07 07:31 <DIR> d-------- C:\Program Files\Common Files\Nullsoft
2008-05-07 07:31 <DIR> d-------- C:\Program Files\Common Files\aolback
2008-05-07 07:31 <DIR> d-------- C:\DOCUME~1\KARENS~1\APPLIC~1\AOL
2008-05-07 07:30 <DIR> d-------- C:\Program Files\Viewpoint
2008-05-07 07:30 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
2008-05-07 07:27 335 --a------ C:\WINDOWS\nsreg.dat
2008-05-07 07:27 <DIR> d-------- C:\Program Files\AOL 9.0 VR
2008-05-07 07:24 33,588 -ra------ C:\WINDOWS\system32\drivers\wanatw4.sys
2008-05-07 07:24 <DIR> d-------- C:\Program Files\Common Files\aolshare
2008-05-07 07:24 <DIR> d-------- C:\Program Files\Common Files\AOL
2008-05-07 07:24 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
2008-05-07 07:23 <DIR> d--h----- C:\TEMP
2008-04-28 16:45 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys
2008-04-28 14:14 <DIR> d-------- C:\WINDOWS\system32\NtmsData
2008-04-28 14:01 5,632 --a--c--- C:\WINDOWS\system32\dllcache\smimsgif.dll
2008-04-28 14:01 5,632 --a--c--- C:\WINDOWS\system32\dllcache\smierrsy.dll
2008-04-28 14:01 31,744 --a--c--- C:\WINDOWS\system32\dllcache\fxsroute.dll
2008-04-28 14:01 31,744 --a------ C:\WINDOWS\system32\fxsroute.dll
2008-04-28 14:01 236,544 --a--c--- C:\WINDOWS\system32\dllcache\smi2smir.exe
2008-04-28 14:01 22,528 --a--c--- C:\WINDOWS\system32\dllcache\lpdsvc.dll
2008-04-28 14:01 22,528 --a------ C:\WINDOWS\system32\lpdsvc.dll
2008-04-28 14:01 18,944 --a--c--- C:\WINDOWS\system32\dllcache\lprmon.dll
2008-04-28 14:01 18,944 --a------ C:\WINDOWS\system32\lprmon.dll
2008-04-28 14:01 15,872 --a--c--- C:\WINDOWS\system32\dllcache\smierrsm.dll
2008-04-28 14:01 132,608 --a--c--- C:\WINDOWS\system32\dllcache\fxsclntr.dll
2008-04-28 14:01 132,608 --a------ C:\WINDOWS\system32\fxsclntR.dll
2008-04-28 14:01 111,104 --a--c--- C:\WINDOWS\system32\dllcache\fxscfgwz.dll
2008-04-28 14:01 111,104 --a------ C:\WINDOWS\system32\fxscfgwz.dll
2008-04-28 14:01 11,264 --a--c--- C:\WINDOWS\system32\dllcache\fxssend.exe
2008-04-28 14:01 11,264 --a------ C:\WINDOWS\system32\fxssend.exe
2008-04-28 14:01 10,240 --a--c--- C:\WINDOWS\system32\dllcache\snmpstup.dll
2008-04-28 14:01 <DIR> d-------- C:\WINDOWS\system32\FxsTmp
2008-04-28 14:00 92,160 --a--c--- C:\WINDOWS\system32\dllcache\evntwin.exe
2008-04-28 14:00 92,160 --a------ C:\WINDOWS\system32\evntwin.exe
2008-04-28 14:00 8,704 --a--c--- C:\WINDOWS\system32\dllcache\snmptrap.exe
2008-04-28 14:00 8,704 --a--c--- C:\WINDOWS\system32\dllcache\fxsperf.dll
2008-04-28 14:00 8,704 --a------ C:\WINDOWS\system32\snmptrap.exe
2008-04-28 14:00 8,704 --a------ C:\WINDOWS\system32\fxsperf.dll
2008-04-28 14:00 72,192 --a--c--- C:\WINDOWS\system32\dllcache\fxscom.dll
2008-04-28 14:00 72,192 --a------ C:\WINDOWS\system32\fxscom.dll
2008-04-28 14:00 6,656 --a--c--- C:\WINDOWS\system32\dllcache\fxsres.dll
2008-04-28 14:00 6,656 --a------ C:\WINDOWS\system32\fxsres.dll
2008-04-28 14:00 6,144 --a--c--- C:\WINDOWS\system32\dllcache\snmpmib.dll
2008-04-28 14:00 6,144 --a------ C:\WINDOWS\system32\snmpmib.dll
2008-04-28 14:00 562,176 --a--c--- C:\WINDOWS\system32\dllcache\fxsst.dll
2008-04-28 14:00 562,176 --a------ C:\WINDOWS\system32\fxsst.dll
2008-04-28 14:00 55,296 --a--c--- C:\WINDOWS\system32\dllcache\fxsevent.dll
2008-04-28 14:00 55,296 --a------ C:\WINDOWS\system32\fxsevent.dll
2008-04-28 14:00 452,096 --a--c--- C:\WINDOWS\system32\dllcache\fxsapi.dll
2008-04-28 14:00 452,096 --a------ C:\WINDOWS\system32\fxsapi.dll
2008-04-28 14:00 400,384 --a--c--- C:\WINDOWS\system32\dllcache\fxsxp32.dll
2008-04-28 14:00 400,384 --a------ C:\WINDOWS\system32\fxsxp32.dll
2008-04-28 14:00 40,448 --a--c--- C:\WINDOWS\system32\dllcache\snmpthrd.dll
2008-04-28 14:00 397,312 --a--c--- C:\WINDOWS\system32\dllcache\fxstiff.dll
2008-04-28 14:00 397,312 --a------ C:\WINDOWS\system32\fxstiff.dll
2008-04-28 14:00 39,936 --a--c--- C:\WINDOWS\system32\dllcache\hostmib.dll
2008-04-28 14:00 39,936 --a------ C:\WINDOWS\system32\hostmib.dll
2008-04-28 14:00 358,400 --a--c--- C:\WINDOWS\system32\dllcache\snmpincl.dll
2008-04-28 14:00 33,792 --a--c--- C:\WINDOWS\system32\dllcache\lmmib2.dll
2008-04-28 14:00 33,792 --a------ C:\WINDOWS\system32\lmmib2.dll
2008-04-28 14:00 32,768 --a--c--- C:\WINDOWS\system32\dllcache\snmp.exe
2008-04-28 14:00 32,768 --a------ C:\WINDOWS\system32\snmp.exe
2008-04-28 14:00 285,184 --a--c--- C:\WINDOWS\system32\dllcache\fxscomex.dll
2008-04-28 14:00 285,184 --a------ C:\WINDOWS\system32\fxscomex.dll
2008-04-28 14:00 27,136 --a--c--- C:\WINDOWS\system32\dllcache\fxsdrv.dll
2008-04-28 14:00 27,136 --a------ C:\WINDOWS\system32\fxsdrv.dll
2008-04-28 14:00 267,776 --a--c--- C:\WINDOWS\system32\dllcache\fxssvc.exe
2008-04-28 14:00 267,776 --a------ C:\WINDOWS\system32\fxssvc.exe
2008-04-28 14:00 259,072 --a--c--- C:\WINDOWS\system32\dllcache\snmpcl.dll
2008-04-28 14:00 246,272 --a--c--- C:\WINDOWS\system32\dllcache\fxst30.dll
2008-04-28 14:00 246,272 --a------ C:\WINDOWS\system32\fxst30.dll
2008-04-28 14:00 24,064 --a--c--- C:\WINDOWS\system32\dllcache\evntcmd.exe
2008-04-28 14:00 24,064 --a------ C:\WINDOWS\system32\evntcmd.exe
2008-04-28 14:00 23,552 --a--c--- C:\WINDOWS\system32\dllcache\fxsmon.dll
2008-04-28 14:00 23,552 --a--c--- C:\WINDOWS\system32\dllcache\fxsext32.dll
2008-04-28 14:00 23,552 --a------ C:\WINDOWS\system32\fxsmon.dll
2008-04-28 14:00 23,552 --a------ C:\WINDOWS\system32\fxsext32.dll
2008-04-28 14:00 229,376 --a--c--- C:\WINDOWS\system32\dllcache\fxscover.exe
2008-04-28 14:00 229,376 --a------ C:\WINDOWS\system32\fxscover.exe
2008-04-28 14:00 192,512 --a--c--- C:\WINDOWS\system32\dllcache\fxswzrd.dll
2008-04-28 14:00 192,512 --a------ C:\WINDOWS\system32\fxswzrd.dll
2008-04-28 14:00 188,416 --a--c--- C:\WINDOWS\system32\dllcache\snmpsmir.dll
2008-04-28 14:00 154,112 --a--c--- C:\WINDOWS\system32\dllcache\fxsui.dll
2008-04-28 14:00 154,112 --a------ C:\WINDOWS\system32\fxsui.dll
2008-04-28 14:00 143,360 --a--c--- C:\WINDOWS\system32\dllcache\fxsclnt.exe
2008-04-28 14:00 143,360 --a------ C:\WINDOWS\system32\fxsclnt.exe
2008-04-28 14:00 101,888 --a--c--- C:\WINDOWS\system32\dllcache\evntagnt.dll
2008-04-28 14:00 101,888 --a------ C:\WINDOWS\system32\evntagnt.dll
2008-04-28 13:55 <DIR> d-------- C:\DOCUME~1\KARENS~1\APPLIC~1\Help


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))



((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PCMService"="C:\Program Files\Dell\Media Experience\PCMService.exe" [2004-04-11 20:15]
"HostManager"="C:\Program Files\Common Files\AOL\1210141762\ee\AOLSoftware.exe" [2006-11-10 15:16]
"GSICONEXE"="gsicon.exe" [2003-05-14 22:26 C:\WINDOWS\system32\gsicon.exe]
"DSLAGENTEXE"="dslagent.exe" [2003-04-25 12:22 C:\WINDOWS\system32\dslagent.exe]
"%FP%Friendly fts.exe"="C:\Program Files\VoyagerTest\fts.exe" [2003-05-06 09:28]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25]

R2 SNMP;SNMP Service;C:\WINDOWS\System32\snmp.exe
R3 PPPoEWin;PPPoEWin Miniport;C:\WINDOWS\system32\DRIVERS\PPPoEWin.SYS
R3 wanatw;WAN Miniport (ATW);C:\WINDOWS\system32\DRIVERS\wanatw4.sys
S3 ctlsb16;Creative SB16/AWE32/AWE64 Driver (WDM);C:\WINDOWS\system32\drivers\ctlsb16.sys
S3 glausb;GlobeSpan USB ADSL LAN Modem;C:\WINDOWS\system32\DRIVERS\glausb.sys
S3 LPDSVC;TCP/IP Print Server;C:\WINDOWS\system32\tcpsvcs.exe
S3 SiS7018;Service for AC'97 Sample Driver (WDM);C:\WINDOWS\system32\drivers\ac97sis.sys
S3 SNMPTRAP;SNMP Trap Service;C:\WINDOWS\System32\snmptrap.exe

*Newly Created Service* - AVGASCLN

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-11 21:08:57
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2008-05-11 21:09:51

--- E O F ---


Many thanks :p :p
Back to Top
 

danny-boy
New Member


Date Joined Aug 2007
Total Posts : 37
  		   Posted 5-14-2008 5:00 (GMT +2)    Quote: Laptop seems to be losing driversAlert an admin about: Laptop seems to be losing drivers
Any Ideas guys?? smilewinkgrin
Back to Top
 
New Topic Post reply to : Laptop seems to be losing drivers Printable version of : Laptop seems to be losing drivers
 
Forum Information
Currently it is Sunday, October 12, 2008 9:37 AM (GMT +2)
There are a total of 62.731 posts in 15.642 threads.
In the last 3 days there were 31 new threads and 92 reply posts. View Active Threads
Who's Online
This forum has 26710 registered members. Please welcome our newest member, traveller.
35 Guest(s), 1 Registered Member(s) are currently online.  Details
Touch
5 Latest Threads
Pop Up when the System Starts - Suspecting Win32: Trojan-gen{Other} (7)12-10-2008 07:34:06 (Touch)
Hot sell nike, shox,air max,dunk,air force,puma,shoes Jordan AF1<5,12,23,7,4> Compages (2)12-10-2008 07:32:26 (Touch)
Win32:trogan (5)12-10-2008 06:04:29 (Touch)
Help with strange virus please! (3)12-10-2008 06:00:10 (Touch)
Msn (1)12-10-2008 05:58:51 (Touch)


Need Support? Write to: | Forum Help Manual

Download free trial version of Bullguard