log file of Trend Micro HijackThis from another virtumonde victim

Status
Not open for further replies.
the mbam log - no malicious items found

Malwarebytes' Anti-Malware 1.28
Database version: 1203
Windows 5.1.2600 Service Pack 2

25-09-08 11:05:54
mbam-log-2008-09-25 (11-05-54).txt

Scan type: Full Scan (C:\|D:\|E:\|)
Objects scanned: 255432
Time elapsed: 50 minute(s), 10 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 
the ESET Nod32 Scan finished - OK

I have finished succesfully the scans - do i have to post something like a log from the ESET Nod32 scan?

What Should I do next with all the softwarwe we used for cleaning my PC:

1.Spybot S & D - (do I have to turn back ON the Tea Timer?)

2.HiJackThis

3.Malwarebytes - AntiMalware

4.ATF-Cleaner

and finally will we use the Recovery Console (from the Windows CD). I haven't done nothing with the CD so far.

...and Once again THANK YOU, SOLDIER :)

Regards: Peter Simeonov
 
1.Spybot S & D - (do I have to turn back ON the Tea Timer?)
Yes

2.HiJackThis
Valuable tool, see all it does:
http://www.bleepingcomputer.com/tutorials/tutorial42.html
I have had a copy for ten years, but you may do as you wish with it.

3.Malwarebytes - AntiMalware
Freeware? Keep it as a backup scanner if you wish.

4.ATF-Cleaner
No better free cleaner available anywhere, need I say more.

and finally will we use the Recovery Console (from the Windows CD). I haven't done nothing with the CD so far.
Let's hope you never need RECOVERY console

Thanks
 
Question about Spybot scan

Hi again,

I have question about spybot:
I checked TeaTimer back and today I turned on the PC and Spybot started scanning before windows was completely loaded - the desktop icons and toolbars hadn't appeared, and in the middle of the scan the clock and the files scanned counter stopped. I restarted in safe mode (the brutal way) the pc and ran spybot again - tyhis time it didn't stopped, but while "running scan bot" it went through virtumonde.dll, virtumonde.sci and virtumonde.sdn. I'm sure there were more extensions of virtumonde. And also Zlob Downloader?
But at the end It said Congratulations No immediate threats found.

Should I be worried about that? Is it normal.

Thank You
 
Have a look around the forum to orientate yourself:
http://forums.spybot.info/index.php and you will see the
Spybot-S&D <<< the forum where experts with the tool reside
http://forums.spybot.info/forumdisplay.php?f=4

I am not sure why it started when you booted the computer, but it may be set to scan at startup or it may have tried to remove something and needed to run at startup to complete the removal.
Understand also, when you are seeing those names at the bottom during the scan, those are items Spybot is looking for, not items on the computer (that is the database)
Here is a link to FAQ's that may be helpful:
http://www.safer-networking.org/en/faq/index.html

Thanks
 
alert

RUNDLL
Error loading C:\WINDOWS\system32\brttaiig.dll
The specified module could not be found


This alert appears on starting the windows every time since we did the malware removal. What can I do about it?

Thank You.
 
about brttaiig.dll

I made the hidden files visible, but there isn't brttaiig.dll in WINDOWS/system32/ I'm posting you a new hjt log.

Thank You
 
Status
Not open for further replies.
Back
Top