Search:

Hi Blade-

I think the new firewall did the trick. MBMW has been clean each time since I installed it. I think, keeping fingers crossed, we're good to go. Thanks again for all the help.

The latest MBMW came back clean. A good start but this has happened numerous times before only to return. I'll post another update tomorrow.

Ok, downloaded and installed Comodo firewall and deleted the 4 four files. Will run a new MBMW and update in a couple hours.

The last MBMW results:

Malwarebytes' Anti-Malware 1.28
Database version: 1202
Windows 5.1.2600 Service Pack 3

10/17/2008 12:03:09 PM
mbam-log-2008-10-17 (12-03-09).txt

Scan type: Full...

Hi Blade-

Here is what AVG has found since this whole Trojan nightmare. As you can see last night it discovered something again.

Infection Object ...

Running RSIT only produced the following log file. There wasn't an info.txt file generated.

Logfile of random's system information tool 1.04 (written by random/random)
Run by Mr.Sleepy at...

Hi Blade-

Below is the latest HJT log. I didn't get any warnings from either opening emails or visiting sites. I keep running the MBMW a couple of times a day just to be safe and that's when the...

Hi Blade-

Looks like I was premature in declaring victory. Here are the last two MBMW logs:

Malwarebytes' Anti-Malware 1.28
Database version: 1202
Windows 5.1.2600 Service Pack 3
...

Hi Blade-

I've run 4 scans now and each has been clean. I think it's safe to say my system is now free of the Trojan. Thanks again for all your help.

Hi Blade-

I reset the restore point and uninstalled Combofix per your instructions. I've run both Kaspersky and MBMW today and both came up clean. I'll continue to check both the next few days but...

Hi Blake-

I ran MBMW 3 times today and each time it came back clean. Here's the last results.

Malwarebytes' Anti-Malware 1.28
Database version: 1202
Windows 5.1.2600 Service Pack 3
...

Hi Blade-

The latest MBAM report came back clean. This has happened for a day or 2 before then it reappears so I'm not quite ready to celebrate but at least for now everything looks good. I'll...

Unfortunately the Trojan keeps coming back. Results below:

Malwarebytes' Anti-Malware 1.28
Database version: 1202
Windows 5.1.2600 Service Pack 3

10/10/2008 12:53:49 AM
mbam-log-2008-10-10...

Hi Blake-

Unfortunately I just ran this report and it discovered 2 Trojans:

Malwarebytes' Anti-Malware 1.28
Database version: 1202
Windows 5.1.2600 Service Pack 3

10/9/2008 01:59:11 PM...

I managed to find the folder doing some searches. I've found those three files and deleted them.

I looked on the Mr. Sleepy directory and there isn't a folder named Application Data. I ran a search on the entire Documents and Settings Directory and it didn't find anything either. I'm not sure...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:30:25 AM, on 10/9/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:30:25 AM, on 10/9/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
...

--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Thursday, October 9, 2008
Operating System: Microsoft Windows XP Professional...

Hi Blake

Here are the latest results from ComboFix:

ComboFix 08-10-08.02 - Mr.Sleepy 2008-10-09 0:12:14.6 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1338 [GMT...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 04:08:54 PM, on 10/8/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
...

Hi Blade, no need to apologize thanks for responding. Here are the results from my first ComboFix scan:
ComboFix 08-10-08.02 - Mr.Sleepy 2008-10-08 15:51:37.4 - NTFSx86
Microsoft Windows XP...

Here is the content of the log.txt file:

Logfile of random's system information tool 1.04 (written by random/random)
Run by Mr.Sleepy at 2008-10-06 00:12:10
Microsoft Windows XP Professional...

Sorry my original notes didn't post with the HJT log file. My PC was infected a couple of weeks ago with a Trojan and I've used a number of programs to try to get rid of it; however Malwarebytes...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:25 AM, on 10/1/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
...