Help
This topic is locked
sure. i'll let it run its course. i see its scanning through all my zip files. id say thats y its taking so long. any way, 15 hours - 38%. l8rs. of to work now.steve
Forum Guidelines
Read the following topic before creating a new topic in this forum. It contains instructions on the what we would like you to post, which will enable us to help you more quickly.Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help
Unfortunately, with the amount of logs we receive per day, the average response time is 5 days. I want to assure you, though, that your topic will be looked at and responded to. So please be patient. DO NOT RUN ComboFix unless requested to. Only members of the Malware Response Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log. When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc. Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.
system keeps on pausing
#16
- Member
-
- Group: Members
- Posts: 47
- Joined: 12-May 08
- Gender:Male
Posted 06 October 2011 - 12:15 AM
sure. i'll let it run its course. i see its scanning through all my zip files. id say thats y its taking so long. any way, 15 hours - 38%. l8rs. of to work now.steve
Back to top
#17
- Member
-
- Group: Members
- Posts: 47
- Joined: 12-May 08
- Gender:Male
Posted 07 October 2011 - 12:46 AM
ok here we are.
Automatic Scan: completed 4 hours ago (events: 769903, objects: 756778, time: 1 day 10:59:37)
Disinfected :
NULL
Cleared of Viruses :
NULL
Detected :
07/10/2011 00:31:40 Detected: not-a-virus:Client-IRC.Win32.mIRC.631 C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP652\A0143399.exe/data0002/data0015 Information
06/10/2011 23:34:23 Detected: UDS:DangerousObject.Multi.Generic C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe KSN service
06/10/2011 23:34:22 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.r C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe/Py2Exe/poclbm.pyo Information
06/10/2011 23:31:45 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.r C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe/Py2Exe/poclbm.pyo Information
06/10/2011 23:27:09 Detected: Packed.Win32.Krap.hc C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131346.exe
06/10/2011 21:19:52 Detected: not-a-virus:Client-IRC.Win32.mIRC.ct C:\Program Files\mIRC\mirc.exe Information
06/10/2011 17:07:28 Detected: Trojan-Dropper.Win32.Delf.hcy C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/ProcessWatch.exe
06/10/2011 17:07:21 Detected: Trojan-Dropper.Win32.Delf.hcx C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/lsupdatemanager.exe
06/10/2011 16:58:00 Detected: Trojan-Dropper.Win32.Delf.hcw C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/HostFileEditor.exe
06/10/2011 09:29:55 Detected: not-a-virus:PSWTool.Win32.RAS.g C:\My Stuff\steves downloads\dx10 for xp\Windows.XP.Gamers.Edition.DX10.part1.rar/Windows XP Gamers Edition-DX10_www.softarchive.net/Windows XP Gamers Edition-DX10.iso/Cracks And Patches/iNGEn_XPsp2.exe/findKey.exe Information
05/10/2011 18:01:39 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.ce C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer\miners\puddinpop\rpcminer-4way.exe Information
05/10/2011 18:01:31 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.by C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer\poclbm.exe/Py2Exe Information
05/10/2011 17:22:37 Detected: not-a-virus:Client-IRC.Win32.mIRC.ct C:\Documents and Settings\Blerd\My Documents\Downloads\mirc719.exe/data0002/data0015 Information
05/10/2011 17:21:54 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.ce C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer-20110501.exe/guiminer/miners/puddinpop/rpcminer-4way.exe Information
05/10/2011 17:21:53 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.by C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer-20110501.exe/guiminer/poclbm.exe/Py2Exe Information
that about raps it up
Automatic Scan: completed 4 hours ago (events: 769903, objects: 756778, time: 1 day 10:59:37)
Disinfected :
NULL
Cleared of Viruses :
NULL
Detected :
07/10/2011 00:31:40 Detected: not-a-virus:Client-IRC.Win32.mIRC.631 C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP652\A0143399.exe/data0002/data0015 Information
06/10/2011 23:34:23 Detected: UDS:DangerousObject.Multi.Generic C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe KSN service
06/10/2011 23:34:22 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.r C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe/Py2Exe/poclbm.pyo Information
06/10/2011 23:31:45 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.r C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131522.exe/Py2Exe/poclbm.pyo Information
06/10/2011 23:27:09 Detected: Packed.Win32.Krap.hc C:\System Volume Information\_restore{27F28C51-AC08-43C5-BF3A-E5FB4BEC13D8}\RP638\A0131346.exe
06/10/2011 21:19:52 Detected: not-a-virus:Client-IRC.Win32.mIRC.ct C:\Program Files\mIRC\mirc.exe Information
06/10/2011 17:07:28 Detected: Trojan-Dropper.Win32.Delf.hcy C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/ProcessWatch.exe
06/10/2011 17:07:21 Detected: Trojan-Dropper.Win32.Delf.hcx C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/lsupdatemanager.exe
06/10/2011 16:58:00 Detected: Trojan-Dropper.Win32.Delf.hcw C:\My Stuff\steves downloads\zips\Lavasoft_Ad-Aware_2007_Professional_Edition_v7.0.1.4_Full.rar/Lavasoft Ad-Aware 2007 Professional Edition v7.0.1.4 Full/Crack/HostFileEditor.exe
06/10/2011 09:29:55 Detected: not-a-virus:PSWTool.Win32.RAS.g C:\My Stuff\steves downloads\dx10 for xp\Windows.XP.Gamers.Edition.DX10.part1.rar/Windows XP Gamers Edition-DX10_www.softarchive.net/Windows XP Gamers Edition-DX10.iso/Cracks And Patches/iNGEn_XPsp2.exe/findKey.exe Information
05/10/2011 18:01:39 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.ce C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer\miners\puddinpop\rpcminer-4way.exe Information
05/10/2011 18:01:31 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.by C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer\poclbm.exe/Py2Exe Information
05/10/2011 17:22:37 Detected: not-a-virus:Client-IRC.Win32.mIRC.ct C:\Documents and Settings\Blerd\My Documents\Downloads\mirc719.exe/data0002/data0015 Information
05/10/2011 17:21:54 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.ce C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer-20110501.exe/guiminer/miners/puddinpop/rpcminer-4way.exe Information
05/10/2011 17:21:53 Detected: not-a-virus:RiskTool.Win32.BitCoinMiner.by C:\Documents and Settings\Blerd\My Documents\Downloads\guiminer-20110501.exe/guiminer/poclbm.exe/Py2Exe Information
that about raps it up
#18
- Forum Addict
-
- Group: Malware Response Team
- Posts: 1,357
- Joined: 16-December 05
- Gender:Male
- Location:Midwest U.S.A.
Posted 07 October 2011 - 11:51 AM
And one last rootkit scan, please humor me:
Scan with CKScanner
Click HERE to download CKScanner and save it to your Desktop. <- Important
Copy the contents and paste them in your next reply.
Scan with CKScanner
Click HERE to download CKScanner and save it to your Desktop. <- Important
- Right-click CKScanner.exe and click Image Run as Administrator in the context menu.
- Click Search For Files.
- After a very short time, when the cursor hourglass disappears, click Save List To File.
- A message box will verify the file saved.
- Double-click the CKFiles.txt icon on your desktop.
Copy the contents and paste them in your next reply.
Disabled Veteran, U.S.C.G. 1972 - 1978
Member: U.N.I.T.E., A.S.A.P.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven
Member: U.N.I.T.E., A.S.A.P.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven
#19
- Member
-
- Group: Members
- Posts: 47
- Joined: 12-May 08
- Gender:Male
Posted 07 October 2011 - 12:50 PM
well the scan didn't find anything it considerd really bad . all it picked up is the hacked software i have ziped up all over my drive. dont really know that i want to post that list publicly. can i just send u the file privatly?
#20
- Forum Addict
-
- Group: Malware Response Team
- Posts: 1,357
- Joined: 16-December 05
- Gender:Male
- Location:Midwest U.S.A.
Posted 07 October 2011 - 04:20 PM
I'm afraid my assistance terminates now. With regard to the stolen software on board, I cannot continue to render any assistance. My advice at this point is to remove, delete, uninstall any and all programs/files that you KNOW with certainty are cracked copies of legitimate software and to destroy any removable media also containing such programs/files.
It is illegal, in the entire known world, to infringe upon the right of ownership of any copyrighted material...I wish you good luck in all your future endeavors. Regards,
It is illegal, in the entire known world, to infringe upon the right of ownership of any copyrighted material...I wish you good luck in all your future endeavors. Regards,
Disabled Veteran, U.S.C.G. 1972 - 1978
Member: U.N.I.T.E., A.S.A.P.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven
Member: U.N.I.T.E., A.S.A.P.
Performance and Maintenance for Windows XP, Windows Vista and Windows Seven
