Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

antivirus2009


  • This topic is locked This topic is locked
2 replies to this topic

#1 trickey53

trickey53

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:00 AM

Posted 16 January 2009 - 12:36 PM

Antivirus2009 keeps popping up all the time. Internet explorer keeps resetion the privacy to allow all cookies

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-01-07.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 1/14/2003 12:17:19 AM
System Uptime: 1/16/2009 12:13:32 AM (10 hours ago)

Motherboard: AOpen | | A677
Processor: AMD Athlon™ XP 2100+ | Socket A | 1733/133mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 43 GiB total, 33.865 GiB free.
D: is CDROM ()
E: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Ethernet Controller
Device ID: PCI\VEN_14E4&DEV_1653&SUBSYS_03AEA0A0&REV_01\3&61AAA01&0&28
Manufacturer:
Name: Ethernet Controller
PNP Device ID: PCI\VEN_14E4&DEV_1653&SUBSYS_03AEA0A0&REV_01\3&61AAA01&0&28
Service:

==== System Restore Points ===================

RP267: 1/12/2009 6:59:50 PM - System Checkpoint
RP268: 1/12/2009 6:59:50 PM - System Checkpoint
RP269: 1/12/2009 6:59:50 PM - System Checkpoint
RP270: 1/12/2009 6:59:50 PM - System Checkpoint
RP271: 1/12/2009 6:59:50 PM - System Checkpoint
RP272: 1/12/2009 6:59:50 PM - System Checkpoint
RP273: 1/12/2009 6:59:50 PM - System Checkpoint
RP274: 1/12/2009 6:59:50 PM - System Checkpoint
RP275: 1/12/2009 6:59:50 PM - Software Distribution Service 3.0
RP276: 1/12/2009 6:59:50 PM - System Checkpoint
RP277: 1/12/2009 6:59:50 PM - System Checkpoint
RP278: 1/12/2009 6:59:50 PM - System Checkpoint
RP279: 1/12/2009 6:59:50 PM - System Checkpoint
RP280: 1/12/2009 6:59:50 PM - Software Distribution Service 3.0
RP281: 1/12/2009 6:59:50 PM - System Checkpoint
RP282: 1/12/2009 6:59:50 PM - System Checkpoint
RP283: 1/12/2009 6:59:50 PM - System Checkpoint
RP284: 1/12/2009 6:59:50 PM - System Checkpoint
RP285: 1/12/2009 6:59:50 PM - System Checkpoint
RP286: 1/12/2009 6:59:50 PM - System Checkpoint
RP287: 1/12/2009 6:59:50 PM - System Checkpoint
RP288: 1/12/2009 6:59:51 PM - System Checkpoint
RP289: 1/12/2009 6:59:51 PM - System Checkpoint
RP290: 1/12/2009 6:59:51 PM - System Checkpoint
RP291: 1/12/2009 6:59:51 PM - System Checkpoint
RP292: 1/12/2009 6:59:51 PM - Software Distribution Service 3.0
RP293: 1/12/2009 6:59:51 PM - System Checkpoint
RP294: 1/12/2009 6:59:51 PM - System Checkpoint
RP295: 1/12/2009 6:59:51 PM - System Checkpoint
RP296: 1/12/2009 6:59:51 PM - System Checkpoint
RP297: 1/12/2009 6:59:51 PM - System Checkpoint
RP298: 1/12/2009 6:59:51 PM - System Checkpoint
RP299: 1/12/2009 6:59:51 PM - System Checkpoint
RP300: 1/12/2009 6:59:51 PM - System Checkpoint
RP301: 1/12/2009 6:59:51 PM - System Checkpoint
RP302: 1/12/2009 6:59:51 PM - System Checkpoint
RP303: 1/12/2009 6:59:51 PM - System Checkpoint
RP304: 1/12/2009 6:59:51 PM - System Checkpoint
RP305: 1/12/2009 6:59:51 PM - Installed Microsoft Visual C++ 2005 Redistributable
RP306: 1/12/2009 6:59:51 PM - System Checkpoint
RP307: 1/12/2009 6:59:51 PM - System Checkpoint
RP308: 1/12/2009 6:59:51 PM - System Checkpoint
RP309: 1/12/2009 6:59:52 PM - System Checkpoint
RP310: 1/12/2009 6:59:52 PM - System Checkpoint
RP311: 1/12/2009 6:59:52 PM - System Checkpoint
RP312: 1/12/2009 6:59:52 PM - Software Distribution Service 3.0
RP313: 1/12/2009 6:59:52 PM - System Checkpoint
RP314: 1/12/2009 6:59:52 PM - Software Distribution Service 3.0
RP315: 1/12/2009 6:59:52 PM - System Checkpoint
RP316: 1/12/2009 6:59:52 PM - System Checkpoint
RP317: 1/12/2009 6:59:52 PM - System Checkpoint
RP318: 1/12/2009 6:59:52 PM - System Checkpoint
RP319: 1/12/2009 6:59:52 PM - System Checkpoint
RP320: 1/12/2009 6:59:52 PM - System Checkpoint
RP321: 1/12/2009 6:59:52 PM - Software Distribution Service 3.0
RP322: 1/12/2009 6:59:52 PM - System Checkpoint
RP323: 1/12/2009 6:59:52 PM - System Checkpoint
RP324: 1/12/2009 6:59:52 PM - System Checkpoint
RP325: 1/12/2009 6:59:52 PM - System Checkpoint
RP326: 1/12/2009 6:59:52 PM - System Checkpoint
RP327: 1/12/2009 6:59:52 PM - System Checkpoint
RP328: 1/12/2009 6:59:52 PM - System Checkpoint
RP329: 1/12/2009 6:59:52 PM - Last known good configuration
RP330: 1/12/2009 6:59:52 PM - System Checkpoint
RP331: 1/12/2009 6:59:52 PM - System Checkpoint
RP332: 1/12/2009 6:59:52 PM - System Checkpoint
RP333: 1/12/2009 6:59:53 PM - System Checkpoint
RP334: 1/12/2009 6:59:53 PM - System Checkpoint
RP335: 1/12/2009 6:59:53 PM - System Checkpoint
RP336: 1/12/2009 6:59:53 PM - System Checkpoint
RP337: 1/12/2009 6:59:53 PM - Last known good configuration
RP338: 1/12/2009 6:59:53 PM - Installed Windows Internet Explorer 8.
RP339: 1/12/2009 7:00:03 PM - Last known good configuration
RP340: 1/12/2009 8:07:56 PM - Installed AVG Free 8.0
RP341: 1/12/2009 9:59:11 PM - Software Distribution Service 3.0
RP342: 1/13/2009 8:18:38 AM - Avg8 Update
RP343: 1/13/2009 7:21:14 PM - Software Distribution Service 3.0
RP344: 1/14/2009 9:57:47 PM - System Checkpoint
RP345: 1/15/2009 8:23:24 PM - Installed LG USB Modem driver

==== Installed Programs ======================

Adobe Flash Player ActiveX
Adobe Reader 6.0
ATI - Software Uninstall Utility
ATI Display Driver
AVG Free 8.0
Belkin Wireless G Plus MIMO USB Network Adapter
Canon MP Drivers
Canon Utilities Easy-PhotoPrint
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
HP My Display
LG USB Modem driver
Macromedia Flash Player
Macromedia Flash Player 8
Macromedia Shockwave Player
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
Nero - Burning Rom
Pivot Software
QuickBooks 99
QuickTime
RealPlayer
Realtek AC'97 Audio
RegCure 1.5.1.3
SDK
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 8 (KB960714)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 8 (KB917734)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953155)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Spybot - Search & Destroy
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
V CAST Music Manager
VIA Audio Driver Setup Program
Viewpoint Media Player
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Internet Explorer 8 Beta 2
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! Toolbar

==== Event Viewer Messages From Past Week ========

1/12/2009 3:37:16 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
1/12/2009 3:09:20 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}
1/12/2009 7:19:43 PM, error: Service Control Manager [7024] - The Routing and Remote Access service terminated with service-specific error 340 (0x154).
1/15/2009 8:18:37 PM, error: Cdrom [11] - The driver detected a controller error on \Device\CdRom0.

==== End Of File ===========================

DDS (Ver_09-01-07.01) - NTFSx86
Run by User at 10:53:49.81 on Fri 01/16/2009
Internet Explorer: 8.0.6001.18241
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1279.711 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\AVG\AVG8\aAvgApi.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\User\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://msn.com
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.yahoo.com/search/ie.html
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
BHO: NoExplorer - No File
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
{23e29c44-ca17-4878-85c8-146dfd17c6e7}
BHO: {0167420f-2f58-42ea-1274-695ecc1ca9c3}: {3c9ac1cc-e596-4721-ae24-85f2f0247610} - c:\windows\system32\xiydxo.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
BHO: {BA52E118-26FD-4A74-B3F2-BF44AAAD058A} - No File
BHO: {e4a1cbbf-0955-414f-ab9b-c95b1de6d6e7} - c:\windows\system32\pureleye.dll
TB: AVG Security Toolbar: {a057a204-bacc-4d26-9990-79a187e2698e} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No File
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [fogihadelo] Rundll32.exe "c:\windows\system32\sakobusi.dll",s
mRun: [CPM77867a43] Rundll32.exe "c:\windows\system32\kefesuto.dll",a
IE: &AOL Toolbar search - c:\program files\aol toolbar\toolbar.dll/SEARCH.HTML
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: ddcCRIAS - ddcCRIAS.dll
AppInit_DLLs: avgrsstx.dll c:\windows\system32\dobafigi.dll xiydxo.dll c:\windows\system32\kefesuto.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\kefesuto.dll
STS: STS: {ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} - c:\windows\system32\kefesuto.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, digeste.dll
LSA: Authentication Packages = msv1_0 c:\windows\system32\hgGxUKbc
LSA: Notification Packages = scecli scecli c:\windows\system32\dobafigi.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-1-12 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-1-12 26824]
R4 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-1-12 875288]
R4 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-1-12 231704]
R4 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-1-12 76040]
S0 viasraid;viasraid;c:\windows\system32\drivers\viasraid.sys --> c:\windows\system32\drivers\viasraid.sys [?]
S3 ATICDSDr;ATICDSDr;\??\c:\docume~1\admini~1\locals~1\temp\aticdsdr.sys --> c:\docume~1\admini~1\locals~1\temp\ATICDSDr.sys [?]
S3 bkn50USB;Belkin 54Mbps Wireless USB Network Adapter;c:\windows\system32\drivers\rt2500usb.sys [2005-8-21 140416]
S3 FVNETusbXP;Belkin 11Mbps Wireless USB Network Adapter®;c:\windows\system32\drivers\bkusbxp.sys --> c:\windows\system32\drivers\bkusbxp.sys [?]
S3 StreamSurge;StreamSurge Driver (miniport);c:\windows\system32\drivers\ss.sys --> c:\windows\system32\drivers\ss.sys [?]

=============== Created Last 30 ================

2009-01-15 18:06 1,327,758 ---sh--- c:\windows\system32\oyabujaf.ini
2009-01-15 06:05 1,321,994 ---sh--- c:\windows\system32\ekigabub.ini
2009-01-14 18:37 1,322,003 ---sh--- c:\windows\system32\adopumaf.ini
2009-01-14 18:05 131,843 a--sh--- c:\windows\system32\xiydxo.dll
2009-01-12 22:01 <DIR> --d----- c:\windows\ie8updates
2009-01-12 20:12 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-01-12 20:08 10,520 a------- c:\windows\system32\avgrsstx.dll
2009-01-12 20:08 76,040 a------- c:\windows\system32\drivers\avgtdix.sys
2009-01-12 20:08 97,928 a------- c:\windows\system32\drivers\avgldx86.sys
2009-01-12 20:08 <DIR> --d----- c:\windows\system32\drivers\Avg
2009-01-12 20:08 <DIR> --d----- c:\docume~1\user\applic~1\AVGTOOLBAR
2009-01-12 20:07 <DIR> --d----- c:\program files\AVG
2009-01-12 20:07 <DIR> --d----- c:\docume~1\alluse~1\applic~1\avg8
2009-01-12 19:10 46,080 a------- c:\windows\system32\ddcDuVmK.dll
2009-01-12 03:23 <DIR> --dsh--- c:\documents and settings\user\PrivacIE
2009-01-12 03:09 <DIR> -cd-h--- c:\windows\ie8
2009-01-12 01:09 1,055 a------- c:\windows\wininit.ini
2009-01-12 00:16 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-01-12 00:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-01-12 00:06 <DIR> --d----- c:\program files\NoAdware
2009-01-11 23:46 <DIR> --d----- c:\program files\Enigma Software Group
2009-01-11 23:14 1,265,449 a--sh--- c:\windows\system32\dhoaiagv.ini
2009-01-10 23:17 1,265,449 a--sh--- c:\windows\system32\uxvfiqxc.ini
2009-01-09 23:23 1,257,552 a--sh--- c:\windows\system32\ofkngctr.ini
2009-01-08 23:20 1,257,552 a--sh--- c:\windows\system32\jyiuwlpl.ini
2009-01-07 23:06 0 a------- c:\windows\system32\mcrh.tmp

==================== Find3M ====================

2009-01-16 06:06 127,773 a--sh--- c:\windows\system32\kefesuto.dll
2009-01-15 18:06 127,901 a--sh--- c:\windows\system32\raduzowe.dll
2008-12-11 05:57 333,952 a------- c:\windows\system32\drivers\srv.sys
2008-10-23 07:36 286,720 a------- c:\windows\system32\gdi32.dll
2006-05-09 17:44 836 ac------ c:\docume~1\user\applic~1\ViewerApp.dat
0000-00-00 00:00 63,209 a--sh--- c:\windows\system32\dobafigi.dll
0000-00-00 00:00 63,209 a--sh--- c:\windows\system32\pureleye.dll
0000-00-00 00:00 63,209 a--sh--- c:\windows\system32\sakobusi.dll
2008-09-08 10:36 32,768 ac-sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008082520080901\index.dat
2008-09-08 10:36 32,768 ac-sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008090820080909\index.dat

============= FINISH: 10:54:27.54 ===============

BC AdBot (Login to Remove)

 


#2 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 16 January 2009 - 12:58 PM

Please download Malwarebytes' Anti-Malware from HERE or HERE

Note: If you already have Malwarebytes' Anti-Malware, just run and update it.. Then do a "Perform Full Scan"

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.




NEXT


Please download RSIT by random/random and save it to your Desktop.
  • Double click on RSIT.exe to run RSIT
  • Before you click "Continue", make sure you change the List files/folders created or modified in the last 3 months
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt and info.txt in your next reply.



NEXT


Please download GMER and unzip it to your Desktop.
  • Open the program and click on the Rootkit tab.
  • Make sure all the boxes on the right of the screen are checked, EXCEPT for ‘Show All’.
  • Click on Scan.
  • When the scan has run click Copy and paste the results into a Notepad >> save it and attach in this thread.


Post me these logs in your next reply.. Post each log in separate post..

1. Malwarebytes'
2. RSIT log.txt
3. RSIT info.txt
4. Attach GMER result..

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive


#3 fenzodahl512

fenzodahl512

  • Members
  • 6,738 posts
  • OFFLINE
  •  
  • Local time:05:00 PM

Posted 26 January 2009 - 06:39 PM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic

Keep calm, make it simple, use your brain, don't freak out, and you'll be just fine..
Awesomeness: When I get sad, I stop being sad and be awesome instead.. True story - Barney Stinson
Posted Image Posted Image
Its gonna be legen.. wait for it.. dary! Cherish the pain, it means you're still alive





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users