Page 2 of 5 FirstFirst 12345 LastLast
Results 11 to 20 of 41

Thread: Can't remove Win32.Autorun.tmp

  1. #11
    Senior Member
    Join Date
    Feb 2010
    Location
    Port Hedland, Western Australia
    Posts
    155

    Default

    Hi

    OK good. But the Database version you used to run Malwarebytes' Anti-Malware was woefully out of date. The current Database version is 4570 (at the time of this post).

    Can you run Malwarebytes' again, ensuring you click the Update tab then Check for Updates before conducting the scan. Then post the log.

    Cheers

  2. #12
    Junior Member
    Join Date
    Sep 2010
    Posts
    21

    Default

    I tried updating but got this error message:



    Any ideas? Thanks again

  3. #13
    Junior Member
    Join Date
    Sep 2010
    Posts
    21

    Default

    EDIT: Never mind - just realised I needed to change the proxy settings! Running the scan again now

  4. #14
    Senior Member
    Join Date
    Feb 2010
    Location
    Port Hedland, Western Australia
    Posts
    155

    Default

    OK, good

  5. #15
    Junior Member
    Join Date
    Sep 2010
    Posts
    21

    Default

    Hey, sorry, the scan was running really slowly last night so I abandoned it and tried again this morning - much faster.

    Anyway, here's the log:


    Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org

    Database version: 4576

    Windows 5.1.2600 Service Pack 2
    Internet Explorer 6.0.2900.2180

    9/09/2010 10:16:30 AM
    mbam-log-2010-09-09 (10-16-30).txt

    Scan type: Full scan (C:\|)
    Objects scanned: 195308
    Time elapsed: 19 minute(s), 58 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 4
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 4
    Files Infected: 136

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7} (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\chrome (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults\preferences (Adware.BarDiscover) -> Quarantined and deleted successfully.

    Files Infected:
    C:\Documents and Settings\willmonotti\Local Settings\Temp\709.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\621.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\047.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\421.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\188.exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\995.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temp\889.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\C1IJGD6N\vewmknm[1].exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\C1IJGD6N\fekoikj[1].exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\0P2BWPI3\fewmok[1].exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\0P2BWPI3\fewmkojk[1].exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\G9MBOXE3\fewmi[1].exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\G9MBOXE3\jmokjo1[1].exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Local Settings\Temporary Internet Files\Content.IE5\0DE3S56V\dfwemklm[1].exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\pkfgbh60jef.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\jjkf08hm.exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\91whidj.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\gbxx2dtkk.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\vrhhxd66u81.exe (Trojan.DDox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\86i81uf.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\siy0zpv6.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\xnndj66a8.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\kpfl60ntdz.exe (Worm.Autorun) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\tup03g0h.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\0wwriid.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\gccxoojaav.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\hcc6oo6aa81.exe (Worm.Autorun) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1tjpvbh.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\s8jpvbhnz.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\vwhntjpvgrs.exe (Worm.Autorun) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\glwhidj6.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fbwxc81zu.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\g6w81itup.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\bxx66o86.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\86c81o3.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\dzpplbbx.exe (Backdoor.Agent) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6kk6ww6.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\qqlccxooja.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\zvggrchsdez.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\m86y81kvw.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\w1mns86e3a.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6dtz0fq.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\ddtz0fqlc.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\tjjfvvrh.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\lccxooz870b.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\2bcx081.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\chsdezf6.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\3cxyy0z.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fl5ccsty.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1yjpfl2.exe (BackDoor.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\d0ze81b5cn0.exe (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\0ssneef.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\r1cteeffbw.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\z03q1hn1y.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1bh0xtt.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\u87wcx1jj.exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\ieezqqlccx.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\jfvvrhhd.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\3wwriid.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\g1cyytkk.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\m70njee6q.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6yy6kk6.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\pfl2rx2d.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\f66rs1i3.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\di3e1aq1rs.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\hdd66u86.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\yy13avg86.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\91itupf.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\w81itupv2.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fq1ghm81.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\jfaq1mc1y.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\aql0ccsi1z.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\yo1f70bmsn.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\up084xnn.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\zuklq6rcnoj.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\g3msn0eeu.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\kpalmhn2.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\gbrstju1.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\l0ccxytup.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1vfbwxc.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\ll2c5xtop.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fgb081yopu.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\eezqqlccxo.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\cxyu5ghy.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\94uufq5.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\citzkf253x.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\ekl271it.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\u3l0rx0t26.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6g0hndd.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\q81cnojzavl.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\nxtopu81g8.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\w86i81ufgbr.exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\s9efvvrcsxt.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\hcdi81fabg.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\w1n70jzf.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\c86o81almhx.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\2y5tpkl.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\mhn60pvfbw.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\91mxytz.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\2too6aa.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\r0xtoo6aa.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\wriiduupgg.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\riiduupggbs.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1wssnee.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\a1wssneezq.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\rmm6yy6kk.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\llhxxtjjfvv.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\1t703a0.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\i6y86k81w.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\j70qqgw1n7.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\0oojffb.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\0uk0ggb.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\ggbssnee.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fbrrnddz.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\70lhcc6.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\nnjzup6rhhd.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6qq6cc6.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\neezqqlccxo.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\avmmhddz.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\6mxyytk.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\fa1whi0eez.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\zavlmhs8.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\081cnoj.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\lr66i86u.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\w6m81yjkf.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\mc0dtz66q8.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\sxnt60vblh.exe (Trojan.Refroso.Gen) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\rnn2tppll2r.exe (Trojan.Refroso) -> Quarantined and deleted successfully.
    C:\Documents and Settings\willmonotti\Start Menu\Programs\Startup\q3cxd601v7.exe (Trojan.Lethic) -> Quarantined and deleted successfully.
    C:\System Volume Information\_restore{7800EBD7-CFEF-41F0-BA9C-926303D6447E}\RP2\A0001383.exe (Worm.P2P) -> Not selected for removal.
    C:\System Volume Information\_restore{7800EBD7-CFEF-41F0-BA9C-926303D6447E}\RP2\A0001384.exe (Trojan.Agent) -> Not selected for removal.
    C:\FOUND.022\FILE0001.CHK (Trojan.Ddox) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\install.rdf (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\chrome.manifest (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\chrome\bardiscover.jar (Adware.BarDiscover) -> Quarantined and deleted successfully.
    C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults\preferences\prefs.js (Adware.BarDiscover) -> Quarantined and deleted successfully.

  6. #16
    Senior Member
    Join Date
    Feb 2010
    Location
    Port Hedland, Western Australia
    Posts
    155

    Default

    Hi

    That looks better. Let's try ComboFix again. Delete the version of ComboFix you have & download it again:
    Link 1
    Link 2

    Run it following instructions previously posted & post the resulting log.

  7. #17
    Junior Member
    Join Date
    Sep 2010
    Posts
    21

    Default

    Quote Originally Posted by alphabet_soup View Post
    Hmmm...still didn't work! :(

    After pressing OK again when I got the message about the Licence Agreement, this is what came up



    Then I pressed "close" and the same error message showed up again.
    ^^^ Unfortunately I'm still getting this error...

  8. #18
    Senior Member
    Join Date
    Feb 2010
    Location
    Port Hedland, Western Australia
    Posts
    155

    Default

    Hi

    Leave ComboFix for the time being.

    OTL
    Download OTL by Old Timer from Here & save it to your Desktop.
    • Double click on the icon to run it. Make sure all other windows are closed & to let it run uninterrupted
    • Click on Minimal Output at the top
    • Download the following file scan.txt to your Desktop - Click here to download it. You may need to right click on it and select "Save"
    • Double click inside the Custom Scan box at the bottom
    • A window will appear saying Click Ok to load a custom scan from a file or Cancel to cancel
    • Click the OK button and navigate to the file scan.txt which we just saved to your desktop
    • Select scan.txt & click Open. Writing will now appear under the Custom Scan box
    • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long
      • When the scan completes, it will open two notepad windows OTL.Txt & Extras.Txt. These are saved in the same location as OTL
      • Copy/paste the contents of these files, one at a time & post them in your next reply
    To post in next reply:
    Contents of OTL.txt
    Contents of Extras.txt
    These are large logs, so one log per post please

  9. #19
    Senior Member
    Join Date
    Feb 2010
    Location
    Port Hedland, Western Australia
    Posts
    155

    Default

    What happens if you click Ignore on that message?

  10. #20
    Junior Member
    Join Date
    Sep 2010
    Posts
    21

    Default

    Quote Originally Posted by jmw3 View Post
    What happens if you click Ignore on that message?
    I haven't tried it; I assumed it would start running the scan without the Recovery Console?

    Will do the OTL stuff now

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •