Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Sent over from operating systems.

Started by Saintlvr , Mar 13 2009 05:53 PM

  • Please log in to reply

#1
Saintlvr
Posted 13 March 2009 - 05:53 PM

Saintlvr

    New Member

  • Member
  • Pip
  • 8 posts
Please could you look at my original post over on operating systems.

http://www.geekstogo...-o-t232140.html


I have completed all the steps as required. Please see the notes/logs below.

Its worth mentioning that my Hard Drive was replaced yesterday (13th March) & any adware etc that has been found are only on items that were installed AFTER SP2 & SP3 failed & i reverted back to SP1. When i originally tried to install the SP2/3 it was a 'clean' system. The only thing that was installed was my OS & necessary drivers, but after installing SP2 or SP3 & I rebooted, it froze at the windows logo screen. I can however get in on Safe mode to uninstall SP & it works perfectly fine on the current SP1.

I am NOT running Norton at present as my current package is not supported on my current service pack, so am without alot of my usual programmes until i can resolve why it freezes after Service Pack install.


Malwarebytes' Anti-Malware 1.34
Database version: 1848
Windows 5.1.2600 Service Pack 1

14/03/2009 18:15:42
mbam-log-2009-03-14 (18-15-42).txt

Scan type: Quick Scan
Objects scanned: 59573
Time elapsed: 4 minute(s), 1 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\Lanebern\My Documents\My Music\My Music.url (Trojan.Zlob) -> Quarantined and deleted successfully.



ROOT LOG:

Microsoft Windows XP Home Edition (5.1.2600) Service Pack 1

C:\ [Fixed] - NTFS - (Total:76316 Mo/Free:398 Mo)
D:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)

14/03/2009|23:55

----------------------\\ Processes..

--Locked-- [System Process]
---------- System
---------- \SystemRoot\System32\smss.exe
---------- \??\C:\WINDOWS\system32\csrss.exe
---------- \??\C:\WINDOWS\system32\winlogon.exe
---------- C:\WINDOWS\system32\services.exe
---------- C:\WINDOWS\system32\lsass.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashServ.exe
---------- C:\WINDOWS\Explorer.EXE
---------- C:\WINDOWS\system32\spoolsv.exe
---------- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
---------- C:\WINDOWS\System32\nvsvc32.exe
---------- C:\WINDOWS\system32\spupdsvc.exe
---------- C:\Program Files\Wireless LAN Utility\tiwlnsvc.exe
---------- C:\WINDOWS\System32\wdfmgr.exe
---------- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
---------- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
---------- C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
---------- C:\Program Files\Wireless LAN Utility\TIWLANCu.exe
---------- C:\Program Files\Common Files\AOL\1236975941\ee\AOLSoftware.exe
---------- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
---------- C:\Program Files\Smart PDF Converter Pro\sspdfagent.exe
---------- C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
---------- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
---------- C:\WINDOWS\System32\ctfmon.exe
---------- C:\Program Files\Messenger\MSMSGS.EXE
---------- C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
---------- C:\Program Files\Microsoft Office\Office\OSA.EXE
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\System32\wuauclt.exe
---------- C:\WINDOWS\system32\rundll32.exe
---------- C:\Program Files\Mozilla Firefox\firefox.exe
---------- C:\Program Files\AOL 9.0 VR\waol.exe
---------- C:\Program Files\AOL 9.0 VR\shellmon.exe
---------- C:\Program Files\Common Files\AOL\Topspeed\3.0\aoltpsd3.exe
---------- C:\WINDOWS\System32\wbem\wmiprvse.exe
---------- C:\WINDOWS\System32\cmd.exe
---------- C:\Rooter$\RK.exe

----------------------\\ Search..

----------------------\\ ROOTKIT !!



1 - "C:\Rooter$\Rooter_1.txt" - 14/03/2009|23:56

----------------------\\ Scan completed at 23:56

Edited by Saintlvr, 14 March 2009 - 06:32 PM.

  • 0

Advertisements

#2
Saintlvr
Posted 14 March 2009 - 06:39 PM

Saintlvr

    New Member

  • Topic Starter
  • Member
  • Pip
  • 8 posts
Other Log files attached.

Attached Files


  • 0

#3
Saintlvr
Posted 14 March 2009 - 06:43 PM

Saintlvr

    New Member

  • Topic Starter
  • Member
  • Pip
  • 8 posts
2nd part of log

Attached Files


  • 0

#4
Saintlvr
Posted 14 March 2009 - 06:45 PM

Saintlvr

    New Member

  • Topic Starter
  • Member
  • Pip
  • 8 posts
Extras log

Attached Files


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP