Subscribe RSS
Home > Need Help > Need Help Geting Rid Of The Ddcyv.exe

Need Help Geting Rid Of The Ddcyv.exe

Back to top #4 SifuMike SifuMike malware expert Staff Emeritus 15,385 posts OFFLINE Gender:Male Location:Vancouver (not BC) WA (Not DC) USA Local time:06:13 PM Posted 14 March 2008 - 03:57 Keep it in the forums so all may learn from it. Register now to gain access to all of our features, it's FREE and only takes one minute. my HijackThis log is below thank you, Bob in Cleveland Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 5:49:21 PM, on 1/24/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet

ebfloyd06, Oct 17, 2006 #1 Sponsor Cookiegal Administrator Malware Specialist Coordinator Joined: Aug 27, 2003 Messages: 105,546 Hi and welcome to TSG, That is not the entire log. Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Register I have been running them for quite some time now and they have done NOTHING!!! Do you have any clue what to do?

Subscribe Support We constantly train our staff to provide the best technical support experience. Note: This tool will completely remove any settings you have configured, your license information, and anything else related to Malwarebytes Anti-Malware. Cookiegal, Oct 17, 2006 #2 ebfloyd06 Thread Starter Joined: Oct 17, 2006 Messages: 15 thats all that came up in the notepad when I clicked to scan and save log...

Here is what I have and use to protect my PC on a regular basis for antivirus: Spyware Doctor W/ antivirus (run scans w/ it don't leave it on), AVG Free Or you can uninstall Malwarebytes Anti-Malware using the native Windows uninstall program: Windows XP OpenControl Panel. When it is finished, please copy and paste the information listed under "Service" and "Scanner Results" back in this thread. Cookiegal, Oct 19, 2006 #11 ebfloyd06 Thread Starter Joined: Oct 17, 2006 Messages: 15 I can't do the panda scan because all the links/buttons to get to the scan part require

Check out the forums and get free advice from the experts. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\\xd8\x2022\x20ac|\xff\xff\xff\xff\22\x2022\x20ac|\xf9\x2022A~\2] "5E7CEC10DF0760D4F8DAFB12FDC06CCD"="" scanning hidden files ... ************************************************************************** Completion time: 2007-08-09 16:25:37 C:\ComboFix-quarantined-files.txt ... 2007-08-09 16:24 C:\ComboFix2.txt ... 2007-08-08 10:13 --- E O F --- 08-09-200711:01 PM Once you have downloaded AVG Anti-Spyware, locate the icon on the desktop and double click it to launch the set up program. AVG will now begin the scanning process.

it didnt appear to be doing anything for over an hour so i stopped it. Thanks! WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!You ran ComboFix incorrectly by not installing Recovery Console NOTE: If you have downloaded SmitfraudFix previously please delete that version and Press the Enter key.

Everytime I run my Avast, it always pops up saying a .ddl file/trojan was created in my WINDOWS/SYS32 file folder by the trojan TratBHO. Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options C:\WINDOWS\system32:xpdt.sys 54984 bytes executable hidden processes: 0 hidden files: 1 ================================================ This is all I have for you right now. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\\xd8\x2022\x20ac|\xff\xff\xff\xff\22\x2022\x20ac|\xf9\x2022A~\2] "5E7CEC10DF0760D4F8DAFB12FDC06CCD"="" scanning hidden files ...

If you feel we've helped you, Please Donate to the Forum 08-09-200707:55 PM #6 RMatzen22 Member Join Date Aug 2007 Posts 69 Points 0 thanks I'm gonna do that right now. Files:- UNIDRV.DLL, UNIDRVUI.DLL, hpwk5403.GPD, UNIDRV.HLP, hpwhk540.cfg, hpwk540a.ini, hpzst4v2.dll, hpz3c4v2.dll, hpzur4v2.dll, hpwk5403.xml, hpzsc4v2.dtd, hpzui4v2.dll, hpz3r4v6.dll, hpzpr4v2.dll, hpcdmc32.dll, hpbcfgre.dll, hpzsm4v2.gpd, hpz3m4v2.gpd, hpzev4v2.dll,, STDNAMES.GPD, hpfie4v2.dll, hpfig4v2.dll, hpfrs4v2.dll, UNIRES.DLL.-- End of Deckard's System Scanner: That may cause it to stall* __________________ Eddy 02-06-2008, 03:20 PM #10 westy66 Registered Member Join Date: Jan 2008 Posts: 13 OS: XP ComboFix 08-01-31.4 - Administrator 2008-02-06 Please let me know what I can do help you identify my problems.

Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Post that log and a HiJackthis log in your next replyNote: Do not mouseclick combofix's window while its running. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. i think i may have screwed something up.

Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\YAHOO!\Companion\Installs\cpn0\yt.dllO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUPO4 - HKLM\..\RunServices: [MSNPluginSrvcs] p6.exeO4 - O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - O17 - HKLM\System\CCS\Services\Tcpip\..\{BB940E06-6C16-42F8-BBF5-85D12DA3F8C0}: NameServer = Please post the contents of that log. __________________ Eddy 02-05-2008, 05:27 AM #8 westy66 Registered Member Join Date: Jan 2008 Posts: 13 OS: XP WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe [boot loader] timeout=2

It shouldn’t happen and this is just a precaution but if it does, run the LPS Fix to get the connection back and click the "I know what I'm doing" checkbox.

Post that log in your next reply. ========================================= Download Combofix from any of the links below, and save it to your desktop. Consumer Support Business Support Release History About Us About Security Blog Forums Management Careers Press Center Contact Us Awards/Testimonials Partner With Us Affiliates Corporate Partnerships Resellers Reseller Login © 2016 Malwarebytes On the main screen select the icon "Update" then select the "Update now" link. Cookiegal, Oct 18, 2006 #7 ebfloyd06 Thread Starter Joined: Oct 17, 2006 Messages: 15 ok, here is the logs..

Cannot load Recovery console. Once it's done scanning, click the Remove Vundo button. SelectMalwarebytes Anti-Malware, clickUninstall, and follow the instructions on the screen. Please copy/paste the content of that report into your next reply.

No validation required! Please download SmitfraudFix (by S!Ri) Extract (unzip) the content (a folder named SmitfraudFix) to your Desktop. And I can't download anything from rapidshare, it tells me to please enable java scripting. Yes I found this article helpful No I did not find this article helpful Last Updated - Jun 17, 2016 10:01AM PDT Share Tweet Share Contact Us Email Us Download User

iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exeO23 - Service: avast! Edited by SifuMike, 07 March 2008 - 05:56 PM. I've been TratBHO'd! We only require a report from it.[*] Click the Save as Text button to save the file to your desktop so that you may post it in your next reply[/list:u:e91f74f6d1]* Turn

Note: It is possible that VundoFix encountered a file it could not remove.


© Copyright 2017 All rights reserved.