Home > Help With > Help With DDS And GMER Logs

Help With DDS And GMER Logs

Scan with Malwarebytes Anti-Malware Download Malwarebytes Anti-Malware and follow these steps: > Open mbam-setup.exe and follow the instructions to install. I suggest: TechSpot.com. HELP! Attached Files ARK.zip (3.0 KB, 8 views) Attach zip.zip (3.8 KB, 11 views) Remove Advertisements Sponsored Links TechSupportForum.com Advertisement Gear in this thread AMD Athlon 64 2650e / navigate here

Follow these instruction to request assistance: > Register for forum membership at TechSpot.com > After registration is complete, point your browser to this page. Sep 10, 2010 #19 Broni Malware Annihilator Posts: 53,103 +349 We still have some "baddies". C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1\A0000017.exe (Trojan.Banker) -> Quarantined and deleted successfully. This message contains very important information, so please read through all of it before doing anything.

Contents of the 'Scheduled Tasks' folder 2010-08-31 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 19:34] 2010-09-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1085031214-602162358-1177238915-1003Core.job - c:\documents and settings\user\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-07-07 18:06] 2010-09-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1085031214-602162358-1177238915-1003UA.job - c:\documents and settings\user\Local This will start ComboFix again. 6. Self Protection;c:\windows\system32\drivers\aswSP.sys [2010-7-7 114768] R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-9-9 142592] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-7-7 20560] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-9-10 304464] R3 amsint32;amsint32;\??\c:\windows\system32\drivers\jnkppj.sys --> c:\windows\system32\drivers\jnkppj.sys [?] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-9-10 20952] S2 Recommended Free Anti-Virus Software: AVG and Avira and Avast all offer great free antivirus / computer security software.

Facebook Google+ Twitter YouTube Subscribe to TechSpot RSS Get our weekly newsletter Search TechSpot Trending Hardware The Web Culture Mobile Gaming Apple Microsoft Google Reviews Graphics Laptops Smartphones CPUs Storage Cases Now install the Java SE Runtime Environment (JRE) package you downloaded (it comes with a toolbar pre-selected, so make sure you uncheck the box) You can delete JavaRa (zip and exe) Sign Up All Content All Content Advanced Search Browse Forums Guidelines Staff Online Users Members More Activity All Activity My Activity Streams Unread Content Content I Started Search More Malwarebytes.com Malwarebytes Completion time: 2009-08-18 20:34 - machine was rebooted ComboFix-quarantined-files.txt 2009-08-18 01:34 Pre-Run: 25,676,832,768 bytes free Post-Run: 25,509,224,448 bytes free Current=2 Default=2 Failed=3 LastKnownGood=4 Sets=1,2,3,4 219 --- E O F --- 2009-08-03

Please re-enable javascript to access full functionality. When JavaRa is done, a notice will appear that a logfile has been produced. This will start ComboFix again. 6. Follow the instructions that pop up for posting the results.

c:\dell\bldbubg.exe c:\documents and settings\All Users\Start Menu\Programs\PC VGA [email protected] Plus c:\documents and settings\All Users\Start Menu\Programs\PC VGA [email protected] Plus \AmCap.lnk c:\documents and settings\All Users\Start Menu\Programs\PC VGA [email protected] Plus \Unins Home Interesting Click No for the Optional_Scan. > Follow the instructions. i had put my laptop on loan for a week last week and it had an Amd athalon 2650e 64 processor running in 32 bit OS of windows vista home basic Notepad will open with the results.

Cheers, Paul ***************************************************************************************************************************************** ***************************************************************************************************************************************** ComboFix 11-04-04.01 - Anyone 05/04/2011 8:22.1.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3326.2859 [GMT 10:00] Running from: c:\documents and settings\Anyone\Desktop\username123.exe FW: ZoneAlarm Firewall *Disabled* {829BDA32-94B3-44F4-8446-F8FCFF809F8B} . . Mail Scanner;avast! GMER [look.exe] - http://www.gmer.net Rootkit scan 2009-08-17 17:23:34 Windows 5.1.2600 Service Pack 2 ---- Devices - GMER 1.0.15 ---- AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.) AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 My computer is always running @ 100%, IE is on & off, and computer is constantly freezing.

antivirus 4.8.1368 [VPS 100910-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_AMSINT32 -------\Service_amsint32 ((((((((((((((((((((((((( Files Created from 2010-08-11 to 2010-09-11 ))))))))))))))))))))))))))))))) . http://exomatik.net/help-with/help-with-rogue-killer-logs-please.php And, it was the only program that could remove the last Trojan on my computer. So get it, maybe it is even worth trying first before going through all the steps below. Preparation for Malware/Virus Removal: Fortunately, virus problems are almost always curable.

I use AVG Free, Spyboy S&D, Ad-Aware & Zonealarm. Register now! O4 - Global Startup: Digital Line Detect.lnk = ? http://exomatik.net/help-with/help-with-my-dds-logs-please-not-sure-about-the-infection.php Click Yes at the next prompt for Optional Scan.

No doubt I have heaps of useless stuff among other things. Sign In Sign Up Browse Back Browse Forums Guidelines Staff Online Users Members Activity Back Activity All Activity My Activity Streams Unread Content Content I Started Search Malwarebytes.com Back Malwarebytes.com Malwarebytes Close any open browsers.

All Activity Home Malware Removal Help Malware Removal for Windows Resolved Malware Removal Logs MBAM AND DDS/GMER LOGS-help requested Privacy Policy Contact Us Back to Top Malwarebytes Community Software by Invision

The above is bad news. That may cause it to stall or freeze **** Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser. uStart Page = hxxp://mystart.incredibar.com/mb139?a=6R8yCV2mGT&i=26 mStart Page = hxxp://start.funmoods.com/?f=1&a=adknlg&chnl=adknlg&cd=2XzutAtN2Y1L1Qzu0A0CzztCtCtB0CtBtBtCtDzzyC0EtB0AtN0D0TzutBtDtCtBtDyDtByD&cr=1890422566 mWinlogon: Userinit=userinit.exe BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: ADDICT-THING Class: {680e52ed-d9e0-d397-c4e8-316a688939de} - C:\ProgramData\ADDICT-THING\bhoclass.dll BHO: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No C:\DOCUME~1\Anyone\LOCALS~1\Temp\mbr.sys The system cannot find the file specified. ! ---- User code sections - GMER 1.0.15 ---- .text C:\WINDOWS\System32\svchost.exe[1232] ntdll.dll!NtProtectVirtualMemory 7C90D6EE 5 Bytes JMP 006E000A .text C:\WINDOWS\System32\svchost.exe[1232] ntdll.dll!NtWriteVirtualMemory 7C90DFAE 5 Bytes

Close any open browsers. C:\Qoobox\Quarantine\C\WINDOWS\system32\netlogon.dll.vir (Rootkit.Agent) -> Quarantined and deleted successfully. Re-booted, then 2nd scan went through fine. weblink Very Important!

Please, do it now. 1. When the scan has completed, click Save Report As... ACER Z520 with numerous rogue apps... » Site Navigation » Forum> User CP> FAQ> Support.Me> Steam Error 118>> Trusteer Endpoint Protection All times are GMT -7. C:\cleanup.exe . ---- Previous Run ------- .