geopat89

Members
 View Profile  See their activity

  • Content Count

    8

  • Joined

  • Last visited

About geopat89

  • Rank
    Member
  1. geopat89
    Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:28:22 PM, on 10/30/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG
  2. geopat89
    ========== PROCESSES ========== Process explorer.exe killed successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== D:\i386\Apps\App17981\comps\toolbar\toolbr.exe moved successfully. ========== COMMANDS ========== File delete failed. C:\DOCUME~1\Owner\LOCALS~1\Temp\AcrFA08.tmp scheduled to be deleted on reboot. User's Temp folder emptied. User's Temporary Internet Files folder emptied. User's Internet Explorer cache folder emptied. File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Cont
  3. geopat89
    Malwarebytes' Anti-Malware 1.30 Database version: 1334 Windows 5.1.2600 Service Pack 2 10/28/2008 8:21:00 PM mbam-log-2008-10-28 (20-21-00).txt Scan type: Quick Scan Objects scanned: 51320 Time elapsed: 4 minute(s), 1 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 2 Files Infected: 6 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVer
  4. geopat89
    Here is the OTMovit log. I didn't see the others. I'll do them now and post them on the next reply. ========== PROCESSES ========== Process explorer.exe killed successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3cdc2481-9a57-11da-8810-806d6172696f}\\ deleted successfully. Registry key HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d33fa3a5-a3c0-11da-8d87-806d6172696f}\\ deleted successfully. ========== FILES ========== C:\Program F
  5. geopat89
    ComboFix 08-10-28.01 - Owner 2008-10-28 16:46:59.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.91 [GMT -5:00] Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows Media\10.0\WMSDKNSD.XML C:\Documents and Settings\Owner\Start Menu\Programs\Adzgalore Games Collection C:\Documents and Settings\Owner\Start Menu\Programs\Adzgalo
  6. geopat89
    Ok Here is the log from the OTMoveIT scan. But the other program was in the process of running and it cam up with an error code: It was on the task of "Performing Registry Dump". The error code was this: Auto It Error Line: -1: Error: Error Parsing function call. (Ok here is the log from the OTMoveIT scan) ========== PROCESSES ========== Process explorer.exe killed successfully. ========== SERVICES/DRIVERS ========== ========== REGISTRY ========== ========== FILES ========== C:\WINDOWS\system32\ttutv.bak1 moved successfully. C:\WINDOWS\system32\ttutv.bak2 moved successfully. C:\WINDOWS\system3
  7. geopat89
    Here is the log. --------------------\\ Lop S&D 4.2.4-8 XP/Vista Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3100+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Owner ( Administrator ) BOOT : Normal boot Antivirus : AVG Anti-Virus Free 8.0 (Not Activated) C:\ (Local Disk) - NTFS - Total:107 Go (Free:92 Go) D:\ (Local Disk) - FAT32 - Total:4 Go (Free:2 Go) E:\ (CD or DVD) G:\ (USB) H:\ (USB) I:\ (USB) J:\ (USB) "C:\Lop SD" ( MAJ : 27-10-2008|09:15 ) Option : [1] ( Tue
  8. geopat89
    Can someone please help me interpret my log file results from HijackThis and help me manually clean my system of malware. I'm hoping someone can provide information on which items might be causing me problems and how to remove them safely from my computer. Logfile_of_Trend_Micro_HijackThis_v2.doc StartupList_report.doc