[Closed] Please help me to understand more

Home Forums Contact

HijackThis Members

What the Tech? It's as easy as 1,2,3! ( Log In | Register )

What the Tech > Spyware / Malware / Virus Removal > Infections Removal

2 Pages

< 1 2

Closed Topic

Start new topic

[Closed] Please help me to understand more

beroo View Member Profile	Jun 20 2009, 08:53 AM Post #16
New Member Group: Authentic Member Posts: 12 Joined: 5-June 09 Member No.: 86,139 Operating System: XP	========== PROCESSES ========== Process explorer.exe killed successfully. ========== FILES ========== C:\Documents and Settings\All Users\Documents\microsoft\IdentityCRL\Production moved successfully. ========== COMMANDS ========== File delete failed. C:\DOCUME~1\KELLYC~1\LOCALS~1\Temp\etilqs_hhTwaAdXKAZG88Nl3jQq scheduled to be deleted on reboot. User's Temp folder emptied. User's Internet Explorer cache folder emptied. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\01[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\ADSAdClient31[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\iframe[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\MY_FY10_Q2W8_DHS_DT_234x60_Intel_Studioone_swf[1].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\DXXT5QAJ\OTM[1].exe scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\DXXT5QAJ\Please_help_me_understand_more_t103798[3].htm scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. User's Temporary Internet Files folder emptied. Local Service Temp folder emptied. File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. Local Service Temporary Internet Files folder emptied. Network Service Temp folder emptied. Network Service Temporary Internet Files folder emptied. File delete failed. C:\WINDOWS\temp\JETAD47.tmp scheduled to be deleted on reboot. File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7d4.dat scheduled to be deleted on reboot. Windows Temp folder emptied. Java cache emptied. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_001_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_002_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_003_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot. File delete failed. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\urlclassifier3.sqlite scheduled to be deleted on reboot. FireFox cache emptied. Temp folders emptied. Explorer started successfully OTM by OldTimer - Version 2.1.0.1 log created on 06202009_224550 Files moved on Reboot... File C:\DOCUME~1\KELLYC~1\LOCALS~1\Temp\etilqs_hhTwaAdXKAZG88Nl3jQq not found! File C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\01[1].htm not found! File C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\ADSAdClient31[1].htm not found! C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\iframe[1].htm moved successfully. File C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\IV74G1ME\MY_FY10_Q2W8_DHS_DT_234x60_Intel_Studioone_swf[1].htm not found! C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\DXXT5QAJ\OTM[1].exe moved successfully. C:\Documents and Settings\Kelly chen\Local Settings\Temporary Internet Files\Content.IE5\DXXT5QAJ\Please_help_me_understand_more_t103798[3].htm moved successfully. File C:\WINDOWS\temp\JETAD47.tmp not found! File C:\WINDOWS\temp\Perflib_Perfdata_7d4.dat not found! C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_001_ moved successfully. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_002_ moved successfully. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_003_ moved successfully. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\Cache\_CACHE_MAP_ moved successfully. C:\Documents and Settings\Kelly chen\Local Settings\Application Data\Mozilla\Firefox\Profiles\8h0gatt6.default\urlclassifier3.sqlite moved successfully. Registry entries deleted on Reboot...

SpySentinel View Member Profile	Jun 21 2009, 11:00 AM Post #17
Trusted Group: Malware Team Posts: 554 Joined: 26-January 08 From: The United States Member No.: 76,329 Operating System: Windows XP SP2	Download Dr.Web CureIt to the desktop: ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe Doubleclick the drweb-cureit.exe file and Allow to run the express scan This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan. Once the short scan has finished, mark the drives that you want to scan. Select all drives. A red dot shows which drives have been chosen. Click the green arrow at the right, and the scan will start. Click 'Yes to all' if it asks if you want to cure/move the file. When the scan has finished, in the menu, click file and choose save report list Save the report to your desktop. The report will be called DrWeb.csv Close Dr.Web Cureit.

beroo View Member Profile	Jun 27 2009, 05:13 AM Post #18
New Member Group: Authentic Member Posts: 12 Joined: 5-June 09 Member No.: 86,139 Operating System: XP	Be back in few days time

SpySentinel View Member Profile	Jun 27 2009, 05:16 PM Post #19
Trusted Group: Malware Team Posts: 554 Joined: 26-January 08 From: The United States Member No.: 76,329 Operating System: Windows XP SP2	Ok, thanks for letting me know

SpySentinel View Member Profile	Jul 3 2009, 05:04 PM Post #20
Trusted Group: Malware Team Posts: 554 Joined: 26-January 08 From: The United States Member No.: 76,329 Operating System: Windows XP SP2	Due to inactivity this topic will be closed. If you need help please start a new thread and post a new HJT log

« Next Oldest · Infections Removal · Next Newest »

2 Pages

< 1 2

Closed Topic

Start new topic

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Similar Topics

Similar Topics

Similar Topics

		Topic Title	Replies	Topic Starter	Views	Last Action
		Infections Removal [Closed] IE causes crash	2	Havoc	66	Yesterday, 03:59 PM Last post by: LDTate
		Infections Removal [Closed] Google Redirection	2	Ticker	292	Yesterday, 03:59 PM Last post by: LDTate
		Infections Removal [Closed] I need help understanding my log.	2	valhuse	86	Yesterday, 03:59 PM Last post by: LDTate
		Infections Removal [Closed] Runnin like glue.	2	emmabell22	74	Yesterday, 03:59 PM Last post by: LDTate

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Time is now: 21st November 2009 - 10:05 AM

Advertisements do not imply our endorsement of that product or service. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk.
Member site: Alliance of Security Analysis Professionals | UNITE Against Malware
Memory Forums | Auto Repair Forum
© Geeks to Go, Inc. | All Rights Reserved | Privacy Policy

Powered By IP.Board © 2009 IPS, Inc.