Jump to content

moldyram

Members
  • Content Count

    10
  • Joined

  • Last visited

Community Reputation

0 Neutral

About moldyram

  • Rank
    New Member
  1. Found possible threats. C:\old\winamp563_full_emusic-7plus_en-us.exe Win32/OpenCandy application C:\Program Files (x86)\CustoPackTools\utils\ask\AskInstallChecker.exe a variant of Win32/Bundled.Toolbar.Ask application C:\Program Files (x86)\CustoPackTools\utils\ask\askToolbarInstaller.exe a variant of Win32/Bundled.Toolbar.Ask application C:\Program Files (x86)\WinApp_Manager\Files\Software\Tools\SystemTools\Foxit Reader\FoxitReader501.0523_enu_Setup.exe a variant of Win32/Bundled.Toolbar.Ask application C:\Users\Daniel\Desktop\Desktop 2\SORT ME summer\from school\RoR-Setup-0.38.67.exe Win32/O
  2. All programs (and codec) were uninstalled in order, no problems: Many extra files and registry keys removed by the powerful scan. √ Foxit PDF reader updated. √ CCleaner executed, and cleaned. √ Nothing unusual noted. ***LOGS and Information *** Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.03.01.10 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Daniel :: TURTLEBOX-W [administrator] 3/1/2013 5:33:43 PM mbam-log-2013-03-01 (17-33-43).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristi
  3. ComboFix 13-03-01.01 - Daniel 03/01/2013 15:47:19.3.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8183.6025 [GMT -8:00] Running from: c:\users\Daniel\Desktop\ComboFix.exe Command switches used :: c:\users\Daniel\Desktop\CFScript.txt AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C} FW: PC Tools Firewall Plus *Enabled* {175D0B73-9F8F-2CA9-8BF1-62277A276DC9} SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21} SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20
  4. Ran Combofix. OS restarted well. Explorer seemed to work well. No (non-essential) programs worked and returned an error "Illegal operation attempted on a registry key that has been marked for deletion", unless executed as administrator by right click menu. Restarted in Safe mode (I hope this was not bad), and everything appears normal, although I've not looked very deep. ComboFix 13-02-24.01 - 02/24/2013 22:50:18.2.8 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8183.5893 [GMT -8:00] Running from: c:\users\Daniel\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Di
  5. Combofix ran console ran. GUI popup message Notified me that SpyBot Search and Destroy is running. I dont see any SpyBot executable's listed in Windows Task Manager under Applications, Processes. There are relevant 3 services running: Spybot-S&D 2 Scanner Service,Spybot-S&D 2 Security Center Service, and Spybot-S&D 2 Updating Service. Should I deactivate these services, or stop combofix and uninstall the associated program (Spybot) before running ComboFix again?
  6. It appear that my hosts files may be truncated because of its length. RogueKiller V8.5.2 [Feb 23 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version Started in : Normal mode User : Daniel [Admin rights] Mode : Remove -- Date : 02/24/2013 22:11:16 | ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 8 ¤¤¤ [RUN][sUSP PATH] HKCU\[...]\Run : Handy
  7. Here is the Final report (after deleting) from AdwCleaner. I will have to round up a Ps/2 mouse/keyboard to run RougeKiller as they are both USB . # AdwCleaner v2.113 - Logfile created 02/24/2013 at 21:37:56 # Updated 23/02/2013 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits) # User : Daniel - TURTLEBOX-W # Boot Mode : Safe mode with networking # Running from : C:\Users\Daniel\Downloads\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\Program Files (x86)\Uninstall.exe File Deleted : C:\Users\Daniel\AppData
  8. . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-20.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 5/9/2010 1:56:46 AM System Uptime: 2/24/2013 6:57:06 PM (1 hours ago) . Motherboard: DELL Inc. | | 0X501H Processor: Intel® Core i7 CPU 920 @ 2.67GHz | CPU 1 | 2660/133mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 912 GiB total, 135.693 GiB free. D: is CDROM (UDF) E: is FIXED (NTFS) - 802 GiB total, 75.306 GiB free. F: is FIXED (NTFS) - 10 GiB total
  9. DDS (Ver_2012-11-20.01) - NTFS_AMD64 NETWORK Internet Explorer: 9.0.8112.16447 BrowserJavaVersion: 1.6.0_29 Run by Daniel at 19:01:55 on 2013-02-24 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8183.6587 [GMT -8:00] . AV: Microsoft Security Essentials *Enabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C} SP: Microsoft Security Essentials *Enabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} FW: PC Tools Fir
  10. I've managed to pick up some new Malware which isint being picked up by any of the scanners. I have some experience with malware removal in a sandbox; but as this is on my core system, and seems relatively new, I decided not to fiddle. I'll be awaiting instructions... Sorry about all the junk programs.... maybe its about time I re-install lol. I have the both DDS.txt and Attach.txt scans (in safe more), should I upload these?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.