Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Urgent Help! -


  • Please log in to reply
7 replies to this topic

#1 Freetipper

Freetipper

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:35 PM

Posted 27 October 2010 - 01:02 AM

My husband was on a website on IE and it popped up a box about "Java 6" and claimed that it was infected. He was watching a video on lordsofpain dot net.
I did a restore point and ran a quick scan of Malware Byts. It stated that one thing was infected.
It stated that it was a Trojan Dropper.

Here is the log that the quick scan gave me. What do I do next to get rid of this thing?



Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4052

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

10/27/2010 12:56:51 AM
mbam-log-2010-10-27 (00-56-51).txt

Scan type: Quick scan
Objects scanned: 116580
Time elapsed: 4 minute(s), 40 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\FamilyWork\AppData\Local\Temp\0.9520324313720255.exe (Trojan.Dropper) -> No action taken.

Edited by Freetipper, 27 October 2010 - 01:03 AM.


BC AdBot (Login to Remove)

 


#2 killerx525

killerx525

    Bleepin' Aussie


  • Members
  • 7,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Melbourne, Australia
  • Local time:06:35 AM

Posted 27 October 2010 - 01:08 AM

Use TFC(Temporary File Cleaner. Then run a full scan with malwarebytes.

>Michael 
System1: CPU- Intel Core i7-5820K @ 4.4GHz, CPU Cooler- Noctua NH-D14, RAM- G.Skill Ripjaws 16GB Kit(4Gx4) DDR3 2133MHz, SSD/HDD- Samsung 850 EVO 250GB/Western Digital Caviar Black 1TB/Seagate Barracuada 3TB, GPU- 2x EVGA GTX980 Superclocked @1360/MHz1900MHz, Motherboard- Asus X99 Deluxe, Case- Custom Mac G5, PSU- EVGA P2-1000W, Soundcard- Realtek High Definition Audio, OS- Windows 10 Pro 64-Bit
Games: APB: Reloaded, Hours played: 3100+  System2: Late 2011 Macbook Pro 15inch   OFw63FY.png


#3 Freetipper

Freetipper
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:35 PM

Posted 27 October 2010 - 01:39 AM

Thanks. I ran our disk cleanup that is on the pc, and put the computer in safe mode with networking and ran a complete scan. The log is below. How can I make sure that it never happens again.
Thanks once again.



Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4052

Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385

10/27/2010 1:36:54 AM
mbam-log-2010-10-27 (01-36-54).txt

Scan type: Full scan (C:\|)
Objects scanned: 223128
Time elapsed: 20 minute(s), 55 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#4 AustrAlien

AustrAlien

    Inquisitor


  • Members
  • 6,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cowra NSW Australia
  • Local time:05:35 AM

Posted 27 October 2010 - 02:07 AM

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4052

Please update MBAM database ... the database version shows as 4052, but the current version is 4962.
(Open MBAM > click on the "Update" tab > click on "Check for Updates" and allow it to complete the update.)

With Windows running in normal mode (not Safe Mode), please perform a Quick Scan (not a Full Scan). Remove anything that is found, and then post the log in your next reply.
IMPORTANT: If anything is found and removed, re-start your computer, allowing Windows to start in normal mode (not Safe Mode).

Note: a Quick Scan in normal mode is the most effective ("powerful") method of running MBAM/removing malware.

Edited by AustrAlien, 27 October 2010 - 02:10 AM.

AustrAlien
Google is my friend. Make Google your friend too.

Posted Image

#5 Freetipper

Freetipper
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:35 PM

Posted 27 October 2010 - 02:33 AM

Thanks. I just updated it. Here's what I got:


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4962

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

10/27/2010 2:32:39 AM
mbam-log-2010-10-27 (02-32-39).txt

Scan type: Quick scan
Objects scanned: 138729
Time elapsed: 2 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#6 killerx525

killerx525

    Bleepin' Aussie


  • Members
  • 7,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Melbourne, Australia
  • Local time:06:35 AM

Posted 27 October 2010 - 02:43 AM

Do you have a antivirus installed?

>Michael 
System1: CPU- Intel Core i7-5820K @ 4.4GHz, CPU Cooler- Noctua NH-D14, RAM- G.Skill Ripjaws 16GB Kit(4Gx4) DDR3 2133MHz, SSD/HDD- Samsung 850 EVO 250GB/Western Digital Caviar Black 1TB/Seagate Barracuada 3TB, GPU- 2x EVGA GTX980 Superclocked @1360/MHz1900MHz, Motherboard- Asus X99 Deluxe, Case- Custom Mac G5, PSU- EVGA P2-1000W, Soundcard- Realtek High Definition Audio, OS- Windows 10 Pro 64-Bit
Games: APB: Reloaded, Hours played: 3100+  System2: Late 2011 Macbook Pro 15inch   OFw63FY.png


#7 Freetipper

Freetipper
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:01:35 PM

Posted 27 October 2010 - 03:15 AM

I don't think that he does. He had norton, but the trial ran out and didn't renew it. I think he has defender on his.

#8 killerx525

killerx525

    Bleepin' Aussie


  • Members
  • 7,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Melbourne, Australia
  • Local time:06:35 AM

Posted 27 October 2010 - 03:17 AM

I don't think that he does. He had norton, but the trial ran out and didn't renew it. I think he has defender on his.

You should consider one that you can afford to buy or renew. I'm currently using Avast Pro Antivirus, which i have 2 year license.

>Michael 
System1: CPU- Intel Core i7-5820K @ 4.4GHz, CPU Cooler- Noctua NH-D14, RAM- G.Skill Ripjaws 16GB Kit(4Gx4) DDR3 2133MHz, SSD/HDD- Samsung 850 EVO 250GB/Western Digital Caviar Black 1TB/Seagate Barracuada 3TB, GPU- 2x EVGA GTX980 Superclocked @1360/MHz1900MHz, Motherboard- Asus X99 Deluxe, Case- Custom Mac G5, PSU- EVGA P2-1000W, Soundcard- Realtek High Definition Audio, OS- Windows 10 Pro 64-Bit
Games: APB: Reloaded, Hours played: 3100+  System2: Late 2011 Macbook Pro 15inch   OFw63FY.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users