Jump to content

DZmaj

Members
  • Content Count

    11
  • Joined

  • Last visited

Community Reputation

0 Neutral

About DZmaj

  • Rank
    New Member
  1. I can't get ComboFix to work properly, it crashes after the the green bar reaches the end. I disabled everything I could. mbam.txt Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.08.09.10 Windows 7 Service Pack 1 x86 NTFS Internet Explorer 9.0.8112.16421 owner :: OWNER-PC5 [administrator] 8/9/2012 4:10:03 PM mbam-log-2012-08-09 (16-10-03).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 200746 Time elapsed: 9 minute(s), 51
  2. Logs: DDS.txt . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 Run by owner at 11:03:13 on 2012-08-09 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2814.1862 [GMT -4:00] . AV: Microsoft Security Essentials *Disabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Microsoft Security Essentials *Disabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\
  3. Everything seems to be working perfect! Thank you so much!
  4. Thank you for all the time you spent helping me and the rest of the community!

  5. First, uninstall uTorrent, then create your own thread.
  6. mbam-log-2012-07-21 (16-39-49).txt Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.20.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Dominik :: DOMINIK-PC [administrator] 7/21/2012 3:24:38 PM mbam-log-2012-07-21 (16-39-49).txt Scan type: Full scan (C:\|) Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 323009 Time elapsed: 1 hour(s), 1 minute(s), 21 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory
  7. Here is the Quick Scan log, I'll do a Full Scan as well just in case. The PC seems to be running just fine. Thanks for all your help! I'm curious about something, do you have all this information on a database, or is it all just experience and knowledge? mbam-log-2012-07-21 (15-18-27).txt Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Database version: v2012.07.20.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 8.0.7601.17514 Dominik :: DOMINIK-PC [administrator] 7/21/2012 3:18:27 PM mbam-log-2012-07-21 (15-18-27).txt Scan type: Quick scan Scan options enabled: Memory | Star
  8. ComboFix.txt ComboFix 12-07-21.01 - Dominik 07/21/2012 13:56:29.1.1 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.1023.425 [GMT -4:00] Running from: c:\users\Dominik\Desktop\ComboFix.exe AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Files Created from 2012-06-21 to 2012-07-21 ))))))))))))))))))))))))))))))) . . 2012-07-21 03:14 . 2012-07-21 03:14 -------
  9. TDSSKiller.2.7.46.0_21.07.2012_13.40.48_log.txt 13:40:48.0919 0556 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11 13:40:48.0950 0556 ============================================================ 13:40:48.0950 0556 Current date / time: 2012/07/21 13:40:48.0950 13:40:48.0950 0556 SystemInfo: 13:40:48.0950 0556 13:40:48.0950 0556 OS Version: 6.1.7601 ServicePack: 1.0 13:40:48.0950 0556 Product type: Workstation 13:40:48.0950 0556 ComputerName: DOMINIK-PC 13:40:48.0950 0556 UserName: Dominik 13:40:48.0950 0556 Windows directory: C:\Windows 13:40:48.0950 0556
  10. Fixlog.txt Fix result of Farbar Recovery Tool (FRST written by Farbar) Version: 20-07-2012 01 Ran by SYSTEM at 2012-07-20 23:01:32 Run:1 Running from E:\ ============================================== C:\Windows\Installer\{f31e9456-f450-b936-9e72-275f309b22c1} moved successfully. C:\Windows\assembly\GAC_32\Desktop.ini moved successfully. C:\Windows\assembly\GAC_64\Desktop.ini moved successfully. C:\Windows\System32\services.exe moved successfully. C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe copied successfu
  11. Search.txt Farbar Recovery Scan Tool Version: 20-07-2012 01 Ran by SYSTEM at 2012-07-21 02:39:17 Running from C:\Users\Dominik\Downloads ================== Search: "services.exe" =================== C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe [2009-07-13 15:19] - [2009-07-13 17:39] - 0328704 ____A (Microsoft Corporation) 24ACB7E5BE595468E3B9AA488B9B4FCB C:\Windows\System32\services.exe [2009-07-13 15:19] - [2009-07-13 17:39] - 0329216 ____A (Microsoft Corporation) 50BEA589F7D7958BDD2528A8F69D05CC ====== End
  12. Hello! Turns out I'm infected with Trojan.Dropper.BCMiner, I am using the infected PC right now because I don't have any important data/saved passwords on it. I have removed the trojan using Malwarebytes Anti-Malware multiple times but after each reboot it shows up again. Avast antivirus is reporting everything (Firefox, Malwarebytes, Windows Exprorer) as a trojan so I disabled it. Here are some logs:A DDS.txt . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_33 Run by Dominik at 21:12:53 on 2012-07-20 Microsoft Windows 7 Ultimate 6.1.7601.1.1
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.