Forum: Malware Removal
February 7th, 2009, 01:11 AM
|
Replies: 22
Views: 3,756
Mon 28 Aug 2006 505,520 A..H. ---...
Mon 28 Aug 2006 505,520 A..H. --- "C:\Documents and Settings\Administrator\Local Settings\Temp\NIS10.0.0.86\Setup\Setup\APP\IDSDefs\SymIDSI.dll"
Tue 5 Sep 2006 163,464 A..H. ---...
|
Forum: Malware Removal
February 7th, 2009, 01:11 AM
|
Replies: 22
Views: 3,756
Sat 2 Sep 2006 120,480 A..H. ---...
Sat 2 Sep 2006 120,480 A..H. --- "C:\Documents and Settings\Administrator\Local Settings\Temp\NIS10.0.0.86\Support\ccCommon\ccCommon\ccErrDsp.dll"
Sat 2 Sep 2006 206,496 A..H. ---...
|
Forum: Malware Removal
February 7th, 2009, 01:08 AM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 7th, 2009, 01:07 AM
|
Replies: 22
Views: 3,756
Wed 6 Sep 2006 1,681,072 A..H. ---...
Wed 6 Sep 2006 1,681,072 A..H. --- "C:\Documents and Settings\Administrator\Local Settings\Temp\NIS10.0.0.86\SymSetup.EXE"
Tue 5 Sep 2006 415,376 A..H. --- "C:\Documents and...
|
Forum: Malware Removal
February 7th, 2009, 01:06 AM
|
Replies: 22
Views: 3,756
Sun 18 Feb 2007 46,713 A..H. ---...
Sun 18 Feb 2007 46,713 A..H. --- "C:\Documents and Settings\Administrator\Local Settings\Temp\DIO63.tmp"
Wed 21 Feb 2007 46,713 A..H. --- "C:\Documents and Settings\Administrator\Local...
|
Forum: Malware Removal
February 7th, 2009, 01:05 AM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 7th, 2009, 01:02 AM
|
Replies: 22
Views: 3,756
C:\Program...
C:\Program Files\Helper\WebHelp\whgdata\whlstf4.htm - Deleted
C:\Program Files\Helper\WebHelp\whgdata\whlstf5.htm - Deleted
C:\Program Files\Helper\WebHelp\whgdata\whlstf6.htm - Deleted
C:\Program...
|
Forum: Malware Removal
February 7th, 2009, 12:59 AM
|
Replies: 22
Views: 3,756
C:\Program...
C:\Program Files\Helper\WebHelp\scheduler\Changing_and_cancelling_appointments.htm - Deleted
C:\Program Files\Helper\WebHelp\scheduler\Copying_appointments.htm - Deleted
C:\Program...
|
Forum: Malware Removal
February 7th, 2009, 12:58 AM
|
Replies: 22
Views: 3,756
C:\Program...
C:\Program Files\Helper\WebHelp\image\Picture_in_security1_doc.gif - Deleted
C:\Program Files\Helper\WebHelp\image\Picture_in_transaction1_doc.gif - Deleted
C:\Program...
|
Forum: Malware Removal
February 7th, 2009, 12:57 AM
|
Replies: 22
Views: 3,756
more from SDFix:
C:\Program...
more from SDFix:
C:\Program Files\Helper\WebHelp\SCCExportOtherOptions.jpg - Deleted
C:\Program Files\Helper\WebHelp\SCCLogin.jpg - Deleted
C:\Program...
|
Forum: Malware Removal
February 7th, 2009, 12:53 AM
|
Replies: 22
Views: 3,756
Another log from SDFix:
SDFix: Version...
Another log from SDFix:
SDFix: Version 1.240
Run by Kelly Buchanan on Fri 02/06/2009 at 02:20 PM
Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix
Checking Services :
...
|
Forum: Malware Removal
February 7th, 2009, 12:51 AM
|
Replies: 22
Views: 3,756
This is a log after running Malware:
...
This is a log after running Malware:
Malwarebytes' Anti-Malware 1.33
Database version: 1654
Windows 5.1.2600 Service Pack 3
2/6/2009 1:49:11 PM
mbam-log-2009-02-06 (13-49-11).txt
Scan type:...
|
Forum: Malware Removal
February 6th, 2009, 10:40 PM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 6th, 2009, 08:04 PM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 6th, 2009, 07:52 PM
|
Replies: 22
Views: 3,756
SFR-->MsiExec.exe...
SFR-->MsiExec.exe /I{C354C9B6-A4E0-4BB0-A368-6DC6BCA0E314}
SFR2-->MsiExec.exe /I{A0AF08BA-3630-4505-BFB2-A41F3837B0D0}
Shockwave-->C:\WINNT\system32\Macromed\SHOCKW~1\UNWISE.EXE...
|
Forum: Malware Removal
February 6th, 2009, 07:51 PM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 6th, 2009, 07:47 PM
|
Replies: 22
Views: 3,756
Here is the RSIT info log:
info.txt logfile...
Here is the RSIT info log:
info.txt logfile of random's system information tool 1.05 2009-02-06 00:44:05
======Uninstall list======
-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe...
|
Forum: Malware Removal
February 6th, 2009, 07:43 PM
|
Replies: 22
Views: 3,756
|
Forum: Malware Removal
February 6th, 2009, 07:42 PM
|
Replies: 22
Views: 3,756
C:\Documents and Settings\All Users\Start...
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
HP Digital Imaging Monitor.lnk - C:\Program...
|
Forum: Malware Removal
February 6th, 2009, 07:41 PM
|
Replies: 22
Views: 3,756
======Scheduled tasks folder====== ...
======Scheduled tasks folder======
C:\WINNT\tasks\Ad-Aware Update (Weekly).job
C:\WINNT\tasks\AppleSoftwareUpdate.job
C:\WINNT\tasks\Check Updates for Windows Live Toolbar.job
C:\WINNT\tasks\ISP...
|