Fix result of Farbar Recovery Scan Tool (x64) Version:16-11-2015
Ran by Rhonda (2015-11-18 18:55:49) Run:2
Running from C:\Users\Rhonda\Desktop
Loaded Profiles: Rhonda & (Available Profiles:...
Type: Posts; User: rockmypunkk; Keyword(s):
Fix result of Farbar Recovery Scan Tool (x64) Version:16-11-2015
Ran by Rhonda (2015-11-18 18:55:49) Run:2
Running from C:\Users\Rhonda\Desktop
Loaded Profiles: Rhonda & (Available Profiles:...
C:\AdwCleaner\Quarantine\C\Users\Tom\AppData\Roaming\Mozilla\Firefox\Profiles\o1jqgqx1.default\Extensions\39ffxtbr@www.mapsgalaxy.com\chrome\39ffxtbr.jar.vir JS/Mindspark.A potentially unwanted...
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/16/2015
Scan Time: 7:50 PM
Logfile:
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2015.11.16.07
Fix result of Farbar Recovery Scan Tool (x64) Version:16-11-2015
Ran by Rhonda (2015-11-16 18:51:55) Run:1
Running from C:\Users\Rhonda\Desktop
Loaded Profiles: Rhonda (Available Profiles: Rhonda...
Everything is still looking fine, 1-3% cpu when doing nothing. I think we're nice and clean now
This is unrelated to my other open thread on here, https://forums.spybot.info/showthread.php?72899-javaws-exe-and-90-100-cpu-usage-and-locking-up/page2
this is for my family members laptop,...
Looking okay so far on the cpu usage, will need to monitor over the next few days.
Fix result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by SnowSakura (2015-11-15 19:01:47) Run:2...
C:\Program Files (x86)\Cheat Engine 6.3\cheatengine-i386.exe a variant of Win32/HackTool.CheatEngine.AB potentially unsafe application
C:\Program Files (x86)\Cheat Engine 6.3\standalonephase1.dat a...
Push the Back button.
Place a checkmark next to and click .
Did that get cut off? Next to what?
Looks alright now
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 11/15/2015
Scan Time: 7:53 AM
Logfile:
Administrator: Yes
Fix result of Farbar Recovery Scan Tool (x64) Version:07-11-2015
Ran by SnowSakura (2015-11-14 20:01:17) Run:1
Running from C:\Users\SnowSakura\Desktop
Loaded Profiles: SnowSakura (Available...
Hello, I recently updated java through the update checker on my windows toolbar and as soon as it finished the website couldn't verify it and thousands upon thousands of instances of javaws.exe ran...
I cannot thank you enough for your help I am truly grateful, thank you :bigthumb::thanks::thanks:
Okay I have uninstalled combofix
No I think otl removed combofix on the cleanup
I had actually removed internet explorer over a year ago but combofix brought it back, I'll just remove it again. Revo was unable to remove adobe it came up with the same notification about the patch...
Results of screen317's Security Check version 0.99.32
Windows XP Service Pack 3 x86
Internet Explorer 6 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows...
Couldn't remove Adobe Reader 9.3.4 received the notification
This patch package could not be opened. Verify that the patch package exists and that you can access it, or contact the application...
No I'm not seeing any other problems currently, just need to remove stopzilla and defrag so it's not so slow
MiniToolBox by Farbar Version: 18-01-2012
Ran by Chris (administrator) on 11-04-2012 at 15:04:16
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal...
ComboFix 12-04-09.05 - Chris 1/2012 Wed 13:37:24.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.932.81.1033.18.1012.501 [GMT -5:00]
Running from: c:\documents and...
Same problem it freezes as soon as the killing processes phase starts
Is it normal for OTL to become unresponsive while killing tasks? Its been like that for 10 minutes i closed all open programs and disabled avast teatimer and mbam
Okay flushing the dns didn't work it's still failing at the same spot for repairing the connection, and sorry that took so long I didn't think it would take 2 hours
ESETSmartInstaller@High as...
dds attach log
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_31
Run by Chris at 16:47:43 on 2012-04-10
Microsoft Windows XP Home Edition ...
NIRCMD.exe file not found error popped up again after running combofix, and my wireless card keeps getting disabled or it fails the ARP cache clear when repairing it
ComboFix 12-04-09.05 - Chris...
Okay I've installed avast av and await further instructions
Ran stopzilla again and 100 of the infections are gone but 67 still remain I'll type them out and their locations
GASF count 1 type trojan severity 5/5 location c:\system volume...
Once combofix finished I got the error windows cannot find the file NIRCMD.exe
Do you know if it also cleaned the infections stopzilla found?
ComboFix 12-04-09.05 - Chris 9/2012 Mon 16:43:01.1.2...
As my computer did not come with install discs I would like to attempt to clean the machine
Finally got DDS to run
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_31
Run by Chris at 15:43:38 on 2012-04-09
Microsoft Windows XP Home Edition...
OTL Extras logfile created on: 4/9/2012 3:22:52 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Chris\My Documents\Downloads
Windows XP Home Edition Service...
[2012/03/29 16:59:36 | 000,023,376 | R--- | C] (iS3, Inc.) -- C:\WINDOWS\System32\SZIO5.dll
[2012/03/29 16:59:24 | 000,546,640 | R--- | C] (iS3, Inc.) -- C:\WINDOWS\System32\SZComp5.dll
[2012/03/29...
[2012/03/29 18:31:11 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2012/03/29 18:31:07 | 000,040,704 | ---- | C] (Creative Technology Ltd.) --...
[2012/03/29 18:49:04 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2012/03/29 18:48:57 | 000,019,840 | ---- | C] (Microsoft Corporation) --...
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} -...
O1 HOSTS File: ([2012/04/03 01:34:23 | 000,000,021 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670}...
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =...
OTL logfile created on: 4/9/2012 3:22:52 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Chris\My Documents\Downloads
Windows XP Home Edition Service Pack 3...
Sorry but I can't run rkill, I keep getting the error windows cannot find file h/explorer.exe and h/iexplore.exe which it eventually crashed and blue screened
Update, along with the redirect infection I ran a scan with spybot and malware bytes which found nothing then ran STOPzilla and found 161 infections of GASF
Rogue.Win32.AntiVirus8...
As stated in the sticky thread, I cannot run DDS on the infected computer to upload the logs but I need help
Hm it won't let me remove it because it can't find the file SymNet.msi
Well I can't update symanatec since it expired over a year ago but the computer is running a lot better now
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:22:42 PM, on 2/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
...
ComboFix 09-02-10.01 - Owner 2009-02-10 15:24:00.5 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.932.81.1033.18.1015.565 [GMT -6:00]
Running from: c:\documents and...
Uninstall list
”??g??
Action Replay Code Manager
Adobe Flash Player Plugin
Adobe Reader 7.0.9
Adobe Shockwave Player
Agere Systems PCI Soft Modem
AIM 6
AppCore
ATI - Software Uninstall...
The dll error is gone now but the desktop icon text is still white
combofix log
ComboFix 09-02-10.01 - Owner 2009-02-10 13:58:27.4 - NTFSx86
Microsoft Windows XP Professional ...
Sorry for some reason it wouldn't disable from task manager new HJT log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:48:01 PM, on 2/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)...