Jump to content

Gmanson

Members
  • Posts

    44
  • Joined

  • Last visited

Posts posted by Gmanson

  1. Hello Gmanson,

    In order to obtain Corporate assistance so that you don't have to work on the forum you would need to obtain proper Corporate Licensing and then we'd be able to assist you from our Tech Support department. You're more than welcome though to seek free assistance from here or one of the many other forums however without proper licensing you cannot use our product on any business computer and would have to use only the available free tools. There are some helpers that will assist on a business machine but many will not and we do not control that as most are all volunteers.

    If you'd like to discuss proper licensing please fill out the form here and speak with Sales about the licensing.

    Please make sure to add both malwarebytes.org and salesforce.com to your Safe Sender list in email as well.

    Thank you

    Are you saying I cant use the free product to clean up malware?

  2. Well I applied to learn and not to apply it to my work since alot of the things a do takes alot of patience and understanding.

    I run my own computer repair company and some of what I have learned from forums like this by reading everything now and again everyonce in a while has taught me alot just by reading.

    I have advised these ppl to make regular backups for logs 1 to 3 and they usually do once a month regardless, but for the other ones the system is to far gone and the only way to fix it is by cd as far as I know or recovery console somehow with a burned disc. I could make but with no way to back up the data I think its just a casualty of war and just shouldn't be tampered with since internet on it has not worked since i picked it up and has been in the same state for 6 months.

    I know what steps to take to prevent lost data and it has worked ever since I am 23 now and I have been learning since I was 8 and will not stop until I cease to exist since this line of work for me is not only a dream but a passion.

    They dont even know what forum I am using to ask for help and they are just waiting for a review is all just to see if there is any malware or rootkits in the logs is all i really need to know and what to do about it.

    Furthermore I know MBAM is for home users as well and its done an excellent job in my eyes over the years Ive used it on this pc I am using now but since I have the highest free software I can put on here it has not picked up one single shred of malware yet so either im that good or im very safe :lol:.

  3. Who's computers are these?

    Don't you think it would be much easier for the owners of those computers to post their topic and work live with someone?

    If they are using the computers while we're trying to clean them, this isn't going to work. We're both wasting our time.

    You need to have the computers in your possession.

    The people I work with on these machines have their own company and jobs and appoint me to work on them since I have never been trained to use the tools this forum and other forums know how to use. I would really like to learn those tools and programs but I have not had a school successfully take me in so I can learn and that is why I always ask here and another forum for help. For the three logs attached in one post near beginning of topic I can do a remote connection and do the instructions that way.

  4. Gmanson,

    I will see if I can help.

    First thing, Please do not attach the scan results. Use copy/paste and post them..

    Pick out only 1 pc that we're going to work with.

    If you have run combofix on this pc, please post the scan results.

    OK I will get the results from them when I can but it probably wont be until Thursday until that is possible.

  5. You don't understand. There should be new thread for each single machine, this thread is for one computer, if you want to have another, you need new thread. Those were my instructions, but as something we can't understand I'll ask a colleague to take your case.

    Well no one knows why here my posts were merged with this topic and I dont think they should have been and I dont think you understand since you did not read my post of where the only way i can run anything is off of my flash drive and i cannot even drag the file on top of combofix and the internet for it does not even work.

  6. Ok since I have done something like this before I will need to backup what data the person needs from this machine including pictures and whatever else before I proceed with this step just to be sure.

    Can we skip this for now and return to it later so I can try to backup what data that is requested from the person...?

    In another case can we proceed with the #1.txt log then follow with other two. I have cleaned these up before and everything has been ran including spybot S@D, mbam, sas and dr web cure it and combofix on all three of them and cleaned up with hijackthis as well. I just need some insight if anything needs to be done with those three since I dont know about how to read from the logs so I just post them :).

  7. Got an error code for MBAM install which is [OpenSCManger]Failed to Perform Desired action. Error Code 1307

    Then when i got pop up with launch and update program another error Run time error 372

    Failed to load control 'vbalGrid' from vbalsgrid6.ocx. Your version of vbalsgrid6.ocx may be outdated. Make sure you are using the version of the control that was provided with your application.

    Clicked ok and it showed again and tried to open it same thing.

  8. The computer that is so infected takes nearly an hour to load but since i ran ATF cleaner the other day it runs alot faster and I just managed to run combofix since tdss killer didnt work like i described above. The ethernet connection isnt working atm and the only way i can work on it for now us flash drive only but here is the combofix log.

    This is the one im working on atm Attached File leeanns_pc.txt ( 30.49K ) Number of downloads: 8.

    log.txt

  9. Hello Gmanson! Welcome to Malwarebytes' Anti-Malware Forums!

    My name is Borislav and I will be glad to help you solve your problems with malware. Before we begin, please note the following:

    • The process of cleaning your system may take some time, so please be patient.
    • Follow my instructions step by step if there is a problem somewhere, stop and tell me.
    • Stay with the thread until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
    • Instructions that I give are for your system only!
    • If you don't know or can't understand something please ask.
    • Do not install or uninstall any software or hardware, while work on.
    • Keep me informed about any changes.

    • Download TDSSKiller and save it to your Desktop.
    • Extract its contents to your desktop.
    • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
    • If an infected file is detected, the default action will be Cure, click on Continue.
    • If a suspicious file is detected, the default action will be Skip, click on Continue.
    • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
    • Click the Report button and copy/paste the contents of it into your next reply

    Note:It will also create a log in the C:\ directory.

    Do this same thing for all four computers?

  10. Autoscan: completed 4 minutes ago (events: 116, objects: 867287, time: 02:25:53)

    10/9/2010 3:16:05 PM Task started

    10/9/2010 3:22:57 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\14b[1]\12b[1]\salespage\index.html

    10/9/2010 3:23:37 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\14b[1]\12b[1]\salespage\index.html

    10/9/2010 3:24:54 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\36b[1]\ArticleSubmitterRights.zip/ArticleSubmitterRights/index.html

    10/9/2010 3:27:03 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\36b[1]\ArticleSubmitterRights.zip/ArticleSubmitterRights/index.html

    10/9/2010 3:27:03 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\36b[1]\index.html

    10/9/2010 3:27:12 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\36b[1]\index.html

    10/9/2010 3:27:17 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\reprint-rights.html

    10/9/2010 3:27:21 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\reprint-rights.html

    10/9/2010 3:27:23 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template1.html

    10/9/2010 3:27:27 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template1.html

    10/9/2010 3:27:28 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template2.html

    10/9/2010 3:27:30 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template2.html

    10/9/2010 3:27:30 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template3.html

    10/9/2010 3:27:35 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/Sales-Letter-Creator-Rebrander/Template3.html

    10/9/2010 3:27:35 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template1.html

    10/9/2010 3:27:37 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template1.html

    10/9/2010 3:27:37 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template2.html

    10/9/2010 3:27:42 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template2.html

    10/9/2010 3:27:43 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template3.html

    10/9/2010 3:27:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/bin/Template3.html

    10/9/2010 3:27:43 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template1.html

    10/9/2010 3:27:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template1.html

    10/9/2010 3:27:43 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template2.html

    10/9/2010 3:27:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template2.html

    10/9/2010 3:27:43 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template3.html

    10/9/2010 3:27:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/Source-Code/SLC-Source-Code/Template3.html

    10/9/2010 3:27:43 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/index.html

    10/9/2010 3:27:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/index.html

    10/9/2010 3:27:44 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/reprint-rights.html

    10/9/2010 3:27:50 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights.zip/reprint-rights.html

    10/9/2010 3:27:52 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\index.html

    10/9/2010 3:27:54 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\index.html

    10/9/2010 3:27:54 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\reprint-rights.html

    10/9/2010 3:27:54 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\reprint-rights.html

    10/9/2010 3:27:58 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template1.html

    10/9/2010 3:28:00 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template1.html

    10/9/2010 3:28:01 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template2.html

    10/9/2010 3:28:04 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template2.html

    10/9/2010 3:28:04 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template3.html

    10/9/2010 3:28:07 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\Sales-Letter-Creator-Rebrander\Template3.html

    10/9/2010 3:28:08 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template1.html

    10/9/2010 3:28:10 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template1.html

    10/9/2010 3:28:10 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template2.html

    10/9/2010 3:28:12 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template2.html

    10/9/2010 3:28:12 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template3.html

    10/9/2010 3:28:14 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\Template3.html

    10/9/2010 3:28:15 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template1.html

    10/9/2010 3:28:17 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template1.html

    10/9/2010 3:28:17 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template2.html

    10/9/2010 3:28:20 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template2.html

    10/9/2010 3:28:20 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template3.html

    10/9/2010 3:28:23 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\SalesLetterCreatorRights\Source-Code\SLC-Source-Code\bin\Template3.html

    10/9/2010 3:28:24 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\InUse.html

    10/9/2010 3:28:26 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\InUse.html

    10/9/2010 3:28:27 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template1.html

    10/9/2010 3:28:28 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template1.html

    10/9/2010 3:28:29 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template2.html

    10/9/2010 3:28:31 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template2.html

    10/9/2010 3:28:32 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template3.html

    10/9/2010 3:28:34 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\Sales-Letter-Creator-Rebrander\Template3.html

    10/9/2010 3:28:37 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template1.html

    10/9/2010 3:28:38 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template1.html

    10/9/2010 3:28:39 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template2.html

    10/9/2010 3:28:40 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template2.html

    10/9/2010 3:28:41 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template3.html

    10/9/2010 3:28:43 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\Template3.html

    10/9/2010 3:28:44 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\InUse.html

    10/9/2010 3:28:46 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\InUse.html

    10/9/2010 3:28:47 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template1.html

    10/9/2010 3:28:49 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template1.html

    10/9/2010 3:28:49 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template2.html

    10/9/2010 3:28:51 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template2.html

    10/9/2010 3:28:51 PM Detected: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template3.html

    10/9/2010 3:28:53 PM Deleted: Trojan-Clicker.JS.Iframe.cb C:\Documents and Settings\geauxfast\Documents\37b[1]\Source-Code\SLC-Source-Code\bin\Template3.html

    10/9/2010 3:29:40 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\about_rss[1]\index.htm

    10/9/2010 3:29:45 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\about_rss[1]\index.htm

    10/9/2010 3:29:45 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\about_rss[1]\reprint-rights.htm

    10/9/2010 3:29:45 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\about_rss[1]\reprint-rights.htm

    10/9/2010 3:29:48 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\articlesitedirectory[1]\index.htm

    10/9/2010 3:29:48 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\articlesitedirectory[1]\index.htm

    10/9/2010 3:29:51 PM Detected: Trojan-PSW.Win32.LdPinch.anrx C:\Documents and Settings\geauxfast\Documents\automatic_money_machine[1]\BYAMM.exe/ASPack

    10/9/2010 3:29:53 PM Deleted: Trojan-PSW.Win32.LdPinch.anrx C:\Documents and Settings\geauxfast\Documents\automatic_money_machine[1]\BYAMM.exe

    10/9/2010 3:29:59 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\blog_link_generator[1]\index.htm

    10/9/2010 3:29:59 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\blog_link_generator[1]\index.htm

    10/9/2010 3:30:05 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\create_ebook_without_writing[1]\index.htm

    10/9/2010 3:30:05 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\create_ebook_without_writing[1]\index.htm

    10/9/2010 3:30:05 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\create_ebook_without_writing[1]\reprint-rights.htm

    10/9/2010 3:30:05 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\create_ebook_without_writing[1]\reprint-rights.htm

    10/9/2010 3:30:34 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\index.htm

    10/9/2010 3:30:34 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\index.htm

    10/9/2010 3:30:36 PM Detected: P2P-Worm.Win32.Palevo.atkz C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\bin\Debug\MfService.dll

    10/9/2010 3:41:27 PM Deleted: P2P-Worm.Win32.Palevo.atkz C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\bin\Debug\MfService.dll

    10/9/2010 3:41:27 PM Detected: P2P-Worm.Win32.Palevo.atky C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\bin\Release\MfService.dll

    10/9/2010 3:41:33 PM Deleted: P2P-Worm.Win32.Palevo.atky C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\bin\Release\MfService.dll

    10/9/2010 3:41:34 PM Detected: P2P-Worm.Win32.Palevo.atkz C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\obj\Debug\MfService.dll

    10/9/2010 3:43:09 PM Deleted: P2P-Worm.Win32.Palevo.atkz C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\obj\Debug\MfService.dll

    10/9/2010 3:43:09 PM Detected: P2P-Worm.Win32.Palevo.atky C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\obj\Release\MfService.dll

    10/9/2010 3:43:19 PM Deleted: P2P-Worm.Win32.Palevo.atky C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\Sitemap Generator src\MfService\obj\Release\MfService.dll

    10/9/2010 3:43:20 PM Detected: P2P-Worm.Win32.Palevo.aqxs C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\SMC-Brander\MfService.dll

    10/9/2010 3:43:22 PM Deleted: P2P-Worm.Win32.Palevo.aqxs C:\Documents and Settings\geauxfast\Documents\google_sitemap_maker[1]\SourceCode\SMC-Brander\MfService.dll

    10/9/2010 3:46:30 PM Detected: Trojan-Clicker.HTML.IFrame.aer C:\Documents and Settings\geauxfast\Documents\membership_site_manager[1]\index.htm

    10/9/2010 3:46:30 PM Deleted: Trojan-Clicker.HTML.IFrame.aer C:\Documents and Settings\geauxfast\Documents\membership_site_manager[1]\index.htm

    10/9/2010 3:46:32 PM Detected: Trojan-Clicker.HTML.IFrame.aer C:\Documents and Settings\geauxfast\Documents\membership_site_manager[1]\reprint-rights.htm

    10/9/2010 3:46:33 PM Deleted: Trojan-Clicker.HTML.IFrame.aer C:\Documents and Settings\geauxfast\Documents\membership_site_manager[1]\reprint-rights.htm

    10/9/2010 3:47:38 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_for_profit[1]\index.htm

    10/9/2010 3:47:43 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_for_profit[1]\index.htm

    10/9/2010 3:47:43 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_for_profit[1]\reprint-rights.htm

    10/9/2010 3:47:43 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_for_profit[1]\reprint-rights.htm

    10/9/2010 3:47:44 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_teleprompter[1]\index.htm

    10/9/2010 3:47:44 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_teleprompter[1]\index.htm

    10/9/2010 3:47:45 PM Detected: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_teleprompter[1]\reprint-rights.htm

    10/9/2010 3:47:45 PM Deleted: HEUR:Trojan.Script.Iframer C:\Documents and Settings\geauxfast\Documents\podcasting_teleprompter[1]\reprint-rights.htm

    10/9/2010 3:47:54 PM Detected: Trojan-PSW.Win32.LdPinch.anrx C:\Documents and Settings\geauxfast\Documents\sell_using_the_web[1]\sizzbrd.exe/ASPack

    10/9/2010 3:47:56 PM Deleted: Trojan-PSW.Win32.LdPinch.anrx C:\Documents and Settings\geauxfast\Documents\sell_using_the_web[1]\sizzbrd.exe

    10/9/2010 5:41:58 PM Task completed

    All removed so what next? It did not crash anymore this time when i reran the dr web cure it but the updated version of spybot S@d in a zip ran on it still doesnt work. Only the installed application does for spybot.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.