Hi friend!!

[garybear]

Hi fellow Okie. Would you please give this a look and comment. This is a GMER scan. I'm not having any problems that I know of. I'm just curious and try to keep my PC clean and running well.==garybearGMER 1.0.15.15087 - http://www.gmer.net

Rootkit scan 2010-03-19 10:32:20

Windows 5.1.2600 Service Pack 3

Running: 7l5syv2p.exe; Driver: C:\DOCUME~1\Owner\LOCALS~1\Temp\pgrirpow.sys

 

 

---- System - GMER 1.0.15 ----

 

SSDT F7B6A806 ZwCreateKey

SSDT F7B6A7FC ZwCreateThread

SSDT F7B6A80B ZwDeleteKey

SSDT F7B6A815 ZwDeleteValueKey

SSDT spjz.sys ZwEnumerateKey [0xF7394CA2]

SSDT spjz.sys ZwEnumerateValueKey [0xF7395030]

SSDT F7B6A81A ZwLoadKey

SSDT spjz.sys ZwOpenKey [0xF73760C0]

SSDT F7B6A7E8 ZwOpenProcess

SSDT F7B6A7ED ZwOpenThread

SSDT spjz.sys ZwQueryKey [0xF7395108]

SSDT spjz.sys ZwQueryValueKey [0xF7394F88]

SSDT F7B6A824 ZwReplaceKey

SSDT F7B6A81F ZwRestoreKey

SSDT F7B6A810 ZwSetValueKey

SSDT F7B6A7F7 ZwTerminateProcess

SSDT \??\C:\WINDOWS\system32\Drivers\uphcleanhlp.sys ZwUnloadKey [0xB8D716D0]

 

INT 0x62 ? 86377BF8

INT 0x63 ? 8625BBF8

INT 0x73 ? 8625BBF8

INT 0x73 ? 8625BBF8

INT 0x82 ? 86377BF8

INT 0xB4 ? 8625BBF8

 

---- Devices - GMER 1.0.15 ----

 

Device \FileSystem\Ntfs \Ntfs 863761F8

Device \Driver\usbuhci \Device\USBPDO-0 861681F8

Device \Driver\usbuhci \Device\USBPDO-1 861681F8

Device \Driver\usbuhci \Device\USBPDO-2 861681F8

Device \Driver\usbehci \Device\USBPDO-3 8624C1F8

Device \Driver\Ftdisk \Device\HarddiskVolume1 863D11F8

Device \Driver\NetBT \Device\NetBT_Tcpip_{9787E722-4F2F-4A77-84FE-322D94CCD849} 85E50500

Device \Driver\USBSTOR \Device\00000064 85E1A500

Device \Driver\Ftdisk \Device\HarddiskVolume2 863D11F8

Device \Driver\Cdrom \Device\CdRom0 862391F8

Device \Driver\Ftdisk \Device\HarddiskVolume3 863D11F8

Device \Driver\Cdrom \Device\CdRom1 862391F8

Device \Driver\Ftdisk \Device\HarddiskVolume4 863D11F8

Device \Driver\USBSTOR \Device\00000067 85E1A500

Device \Driver\Ftdisk \Device\HarddiskVolume5 863D11F8

Device \Driver\NetBT \Device\NetBt_Wins_Export 85E50500

Device \Driver\NetBT \Device\NetbiosSmb 85E50500

Device \Driver\USBSTOR \Device\0000005b 85E1A500

Device \Driver\USBSTOR \Device\0000005d 85E1A500

Device \Driver\usbuhci \Device\USBFDO-0 861681F8

Device \Driver\usbuhci \Device\USBFDO-1 861681F8

Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 85E251F8

Device \Driver\usbuhci \Device\USBFDO-2 861681F8

Device \FileSystem\MRxSmb \Device\LanmanRedirector 85E251F8

Device \Driver\usbehci \Device\USBFDO-3 8624C1F8

Device \Driver\Ftdisk \Device\FtControl 863D11F8

Device \Driver\NetBT \Device\NetBT_Tcpip_{A6E9D1DD-4E0E-418F-8ED7-77330E9998A4} 85E50500

Device \FileSystem\Cdfs \Cdfs 86185500

 

---- Registry - GMER 1.0.15 ----

 

Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch 166128

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792

Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{9787E722-4F2F-4A77-84FE-322D94CCD849}@DhcpRetryTime 285

Reg HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{9787E722-4F2F-4A77-84FE-322D94CCD849}@DhcpRetryStatus 1

 

---- EOF - GMER 1.0.15 ----

[evilfantasy]

There is nothing there to indicate a malware issue.

 

What I like to do for a "second opinion" is run an online scan. Actually I have not run my installed antivirus in years. I figure if something got past it then running it will not do much good.

 

These are good and remove what they find for free.

 

ESET FREE Online Virus Scan

BitDefender Online Scan

[garybear]

Hi friend and fellow Okie!!

 

There is nothing there to indicate a malware issue.

 

What I like to do for a "second opinion" is run an online scan. Actually I have not run my installed antivirus in years. I figure if something got past it then running it will not do much good.

 

These are good and remove what they find for free.

 

ESET FREE Online Virus Scan

BitDefender Online Scan

 

Hi friend!! I ran eset. It didn't find any problems. Should I leave it installed on my PC. Do I need to run bitefender also?? I'm trying to learn all this stuff. It's all new to me. I read all your posts on mom's thread. You did an excellent job. I'm sure she appreciated all you done for her. I tried to enroll in one of the malware schools, but I wasn't excepted. I'm probably not smart enough to do it any way. I'll just watch your threads and learn that way.===garybear

[garybear]

Hi friend!!!

 

Hi friend! This is probably not the right place to be posting all this since I don't have malware, but I find this a little strange. This took place immediately after I ran ESET on my PC. I have never seen this behavior before. I don't think I had any problems, but I just don't like changes on my PC that I don't make my self. The only thing that I did different was to run ESET. I restored to an earlier time to get my PC back like it has always been. This is very strange and I'm wondering what caused this. Thanks!! garybear

[wozofoz]

View change

 

Hi garybear :smile:

 

It is the view that was changed but I don't know why.

Click on View on the Menu Bar and go to Arrange Icons by then select Total Size

You will see it is the same as screenshot 1

 

Go back and select Type and you will see it is the same a screenshot 2

 

All the best, woz of oz

[garybear]

Hi woz!!

 

Hi garybear :smile:

 

It is the view that was changed but I don't know why.

Click on View on the Menu Bar and go to Arrange Icons by then select Total Size

You will see it is the same as screenshot 1

 

Go back and select Type and you will see it is the same a screenshot 2

 

All the best, woz of oz

Hi friend!! Thanks!! I have never saw or used that before. I looked all over for that feature. I learn some thing every day. Thanks woz.==garybear PS Eset must have changed it for some reason and I didn't know how to change it back, but I do now, thanks friend!!