Hello and thanks for your time and help in advance...
My wife was on Facebook on my school laptop and got hit with a Trojan complex. I am farely computer savy and ran the laptop in safe mode and ran Malwarebytes, it found and removed 8 things, I have the original log and will post it. When I restated in normal mode, I reinstalled symantec endpoint protection and the active scan quarantined a trojan. Also, as requested, I will attach the dds.txt and attach.zip logs from dds.scr. I also have a hijackthis log that I will attach if you need that as well. Once I had run Malwarebytes in safe mode, I also installed and ran Spybot S&D, unhide.exe(all my shortcuts from the desktop were made hidden, and all shortcuts within folders on the start menu are still gone, unlike the destop shortcuts after running unhide.exe...it also fixed right clicking on the desktop and choosing "next destop background". Also, right clicking on my computer and clicking "Manage" says the file is not found! I am not sure what else is screwed up but was hoping the logs and a fine computer savy buddy can help...
. I will give as much info below and hope that it will be all you need, if not pleae ask:
Initial Virus attack descripton: multiple popup message boxes opened and said something like "Warning! Hard disk failure, fix now..." I immediately shutdown the computer and rebooted to safe mode and ran the above programs. I believe that the Symantec Endpoint protection active scan quarintined something initially, then again on reinstall here is one from the log around that time: Trojan.Malscript!html - file name:dwh7fc9.tmp.
I also ran, ccleaner, ATF-Cleaner.exe.
I have attached multiple logs, see attached:
mbam-log-2011-11-11 (23-24-38).txt 2.18KB
Here is the virus names from the malwarebytes log (See attached):
Infected Computer Info:
System Summary: Microsoft Windows 7 Home Premium
System Name :JPLAPTOP
System Manufacturer: ASUSTeK Computer Inc.
System Model: G50VT
System Type: x64-based PC
Processor: Intel® Core2 Duo CPU P7450 @ 2.13GHz, 2133 Mhz, 2 Core(s), 2 Logical Processor(s)
BIOS Version/Date: American Megatrends Inc. 209, 11/7/2008
SMBIOS Version: 2.5
Windows Directory: C:\Windows
System Directory: C:\Windows\system32
Boot Device: \Device\HarddiskVolume3
Locale: United States
Hardware Abstraction Layer: Version = "6.1.7600.16385"
User Name: JPLaptop\Joe
Time ZonE: Eastern Standard Time
Installed Physical Memory (RAM): 4.00 GB
Total Physical Memory: 4.00 GB
Available Physical Memory:1.28 GB
Total Virtual Memory: 10.0 GB
Available Virtual Memory: 7.48 GB
Page File Space: 6.00 GB
Page File: C:\pagefile.sys
Again, I am fairly certain that the threats are gone, however, I am running a 64 bit machine so I could not run the rootkits scanners. Also, I am now left with an injured Windows 7 OS and need help identifying how to repair it, Thank you , Joe