Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ok, What Do I Do


  • Please log in to reply
1 reply to this topic

#1 synesthesiac

synesthesiac

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:08:28 PM

Posted 26 May 2007 - 02:44 PM

NoLop! Log by Skate_Punk_21

Fix running from: C:\Documents and Settings\Panagiotis1\Desktop
[5/26/2007]
[10:17:28 PM]

---Infection Files Found/Removed---
C:\WINDOWS\tasks\A3C15DB29112C5DE.job

Beginning Removal...
Rebooting...
Removing Lop's Leftover Files/Folders...
Editing Registry...
**Fix Complete!**

---Listing AppData sub directories---

C:\Documents and Settings\All Users\Application Data\Adobe
C:\Documents and Settings\All Users\Application Data\Aol -- EMPTY Directory
C:\Documents and Settings\All Users\Application Data\Aol Downloads
C:\Documents and Settings\All Users\Application Data\Aol Ocp
C:\Documents and Settings\All Users\Application Data\Apple Computer
C:\Documents and Settings\All Users\Application Data\Avg7
C:\Documents and Settings\All Users\Application Data\Beinsync Settings
C:\Documents and Settings\All Users\Application Data\Google
C:\Documents and Settings\All Users\Application Data\Grisoft
C:\Documents and Settings\All Users\Application Data\Hp
C:\Documents and Settings\All Users\Application Data\Kodak -- EMPTY Directory
C:\Documents and Settings\All Users\Application Data\Logitech
C:\Documents and Settings\All Users\Application Data\Messenger Plus!
C:\Documents and Settings\All Users\Application Data\Microsoft
C:\Documents and Settings\All Users\Application Data\Microsoft Help
C:\Documents and Settings\All Users\Application Data\Msn6
C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
C:\Documents and Settings\All Users\Application Data\Pixelstorm
C:\Documents and Settings\All Users\Application Data\Probusoft
C:\Documents and Settings\All Users\Application Data\Quicktime
C:\Documents and Settings\All Users\Application Data\Size Wma For Meal
C:\Documents and Settings\All Users\Application Data\Skype
C:\Documents and Settings\All Users\Application Data\Temp
C:\Documents and Settings\All Users\Application Data\Viewpoint
C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
C:\Documents and Settings\All Users\Application Data\Winzip
C:\Documents and Settings\All Users\Application Data\Yahoo!
C:\Documents and Settings\Default User\Application Data\Microsoft
C:\Documents and Settings\Kosmas\Application Data\Adobe
C:\Documents and Settings\Kosmas\Application Data\Ati
C:\Documents and Settings\Kosmas\Application Data\Avg7
C:\Documents and Settings\Kosmas\Application Data\Avsmedia
C:\Documents and Settings\Kosmas\Application Data\Google
C:\Documents and Settings\Kosmas\Application Data\Hp
C:\Documents and Settings\Kosmas\Application Data\Identities
C:\Documents and Settings\Kosmas\Application Data\Lavasoft -- EMPTY Directory
C:\Documents and Settings\Kosmas\Application Data\Macromedia
C:\Documents and Settings\Kosmas\Application Data\Microsoft
C:\Documents and Settings\Kosmas\Application Data\Mozilla
C:\Documents and Settings\Kosmas\Application Data\Pc Tools
C:\Documents and Settings\Kosmas\Application Data\Real
C:\Documents and Settings\Kosmas\Application Data\Styler
C:\Documents and Settings\Kosmas\Application Data\Talkback
C:\Documents and Settings\Kosmas\Application Data\Thunderbird
C:\Documents and Settings\Kosmas\Application Data\Windows Desktop Search
C:\Documents and Settings\Localservice\Application Data\Avg7 -- EMPTY Directory
C:\Documents and Settings\Localservice\Application Data\Microsoft
C:\Documents and Settings\Networkservice\Application Data\Microsoft
C:\Documents and Settings\Panagiotis1\Application Data\Adobe
C:\Documents and Settings\Panagiotis1\Application Data\Adobeum -- EMPTY Directory
C:\Documents and Settings\Panagiotis1\Application Data\Apple Computer
C:\Documents and Settings\Panagiotis1\Application Data\Ati
C:\Documents and Settings\Panagiotis1\Application Data\Avg7
C:\Documents and Settings\Panagiotis1\Application Data\Azureus
C:\Documents and Settings\Panagiotis1\Application Data\Design Science
C:\Documents and Settings\Panagiotis1\Application Data\Dmcache -- EMPTY Directory
C:\Documents and Settings\Panagiotis1\Application Data\Google
C:\Documents and Settings\Panagiotis1\Application Data\Hp
C:\Documents and Settings\Panagiotis1\Application Data\Identities
C:\Documents and Settings\Panagiotis1\Application Data\Installshield
C:\Documents and Settings\Panagiotis1\Application Data\Macromedia
C:\Documents and Settings\Panagiotis1\Application Data\Microsoft
C:\Documents and Settings\Panagiotis1\Application Data\Mozilla
C:\Documents and Settings\Panagiotis1\Application Data\Msn6 -- EMPTY Directory
C:\Documents and Settings\Panagiotis1\Application Data\Oxford
C:\Documents and Settings\Panagiotis1\Application Data\Pamela
C:\Documents and Settings\Panagiotis1\Application Data\Pc Tools
C:\Documents and Settings\Panagiotis1\Application Data\Probusoft
C:\Documents and Settings\Panagiotis1\Application Data\Quark
C:\Documents and Settings\Panagiotis1\Application Data\Real
C:\Documents and Settings\Panagiotis1\Application Data\Reallusion
C:\Documents and Settings\Panagiotis1\Application Data\Ringjacker
C:\Documents and Settings\Panagiotis1\Application Data\Screenshot Sender
C:\Documents and Settings\Panagiotis1\Application Data\Skype
C:\Documents and Settings\Panagiotis1\Application Data\Soundspectrum
C:\Documents and Settings\Panagiotis1\Application Data\Stardock
C:\Documents and Settings\Panagiotis1\Application Data\Styler
C:\Documents and Settings\Panagiotis1\Application Data\Sun
C:\Documents and Settings\Panagiotis1\Application Data\Systweak
C:\Documents and Settings\Panagiotis1\Application Data\Talkback
C:\Documents and Settings\Panagiotis1\Application Data\Thunderbird
C:\Documents and Settings\Panagiotis1\Application Data\Utorrent
C:\Documents and Settings\Panagiotis1\Application Data\Vlc
C:\Documents and Settings\Panagiotis1\Application Data\Wings3d
C:\Documents and Settings\Panagiotis1\Application Data\Yahoo! -- EMPTY Directory


this is the NoLop thing.
wht else do I need to do? I'm a rookie, yet CiD is driving me nuts..

BC AdBot (Login to Remove)

 


#2 random/random

random/random

  • Malware Response Team
  • 2,704 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:28 PM

Posted 26 May 2007 - 03:41 PM

  • Download HJTsetup.exe from here
  • Double click on HJTsetup.exe to start the install of HijackThis by merijn
  • Click Next>
  • Click Next>
  • Click Next>
  • Select the option to Create a desktop icon
  • Click Next>
  • Click Install
  • Click Finish
  • Click Do a system scan and save a logfile
  • It will produce a log for you, post the contents of that log as a reply to this topic
  • Note: To run HijackThis again in future, double click on the HijackThis shortcut on your desktop





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users