also @ TechSpot: Microsoft wants Xbox to be the entertainment hub for all your devices

TechSpot

[Solved] Congratulations You Won!

Discussion in 'Virus and Malware Removal' started by jeezybaby43, Feb 4, 2011.

Thread Status:
Not open for further replies.
Page 2 of 2

  1. jeezybaby43 Newcomer, in training

    i ran the program twice but no log opened. it says no logged was saved.
    jeezybaby43, Feb 6, 2011
    #21

  2. Broni Malware Annihilator

    Broni, Feb 6, 2011
    #22

  3. jeezybaby43 Newcomer, in training

    changed the dns settings and got the check mark on OpenDNS.
    that damned soundbite still plays...ARGH
    jeezybaby43, Feb 6, 2011
    #23

  4. Broni Malware Annihilator

    Please download Sophos Anti-rootkit & save it to your desktop.

    IMPORTANT!
    • Disconnect from the Internet or physically unplug you Internet cable connection.
    • Clean out your temporary files.
    • Close all open programs, scheduling/updating tasks and background processes that might activate during the scan including the screensaver.
    • Temporarily disable your anti-virus and real-time anti-spyware protection.
    • After starting the scan, do not use the computer until the scan has completed.
    • When finished, re-enable your anti-virus/anti-malware (or reboot) and then you can reconnect to the Internet.

    • Double-click sar_15_sfx.exe to begin the installation, read the license agreement and click Accept.
    • Allow the default location of C:\Program Files\Sophos\Sophos Anti-Rootkit and click Install.
    • A message will appear "Sophos Anti-Rootkit was successfully installed. Click 'yes' to start it now". Click Yes.
    • Make sure the following are checked:
      • Running processes
      • Windows Registry
      • Local Hard Drives

    • Click Start scan.
    • Sophos Anti-Rootkit will scan the selected areas and display any suspicious files in the upper panel.
    • When the scan is complete, a pop-up screen will appear with "Rootkit Scan Results". Click OK to continue.
    • Click on the suspicious file to display more information about it in the lower panel which also includes whether the item is recommended for removal.
      • Files tagged as Removable: No are not marked for removal and cannot be removed.
      • Files tagged as Removable: Yes (clean up recommended) are marked for removal by default.
      • Files tagged as Removable: Yes (but clean up not recommended) are not marked for removal because Sophos did not recognize them. These files will require further investigation.

    • Select only items recommended for removal, then click "Clean up checked items". You will be asked to confirm, click Yes.
    • A pop up window will appear advising the cleanup will finish when you restart your computer. Click Restart Now.
    • After reboot, a dialog box displays the files you selected for removal and the action taken.
    • Click Empty list and then click Continue to re-scan your computer a second time to ensure everything was cleaned.
    • When done, go to Start > Run and type or copy/paste: %temp%\sarscan.log
    • This should open the log from the rootkit scan. Please post this log in your next reply. If you have a problem, you can find sarscan.log in C:\Documents and Settings\<username>\Local Settings\Temp\
    Broni, Feb 6, 2011
    #24

  5. jeezybaby43 Newcomer, in training

    When I ran the program I was unable to scan for running processes(grayed out) but I scanned twice and didn't come up with anything that needed to be removed.


    Sophos Anti-Rootkit Version 1.5.4 (c) 2009 Sophos Plc
    Started logging on 2/6/2011 at 14:45:06 PM
    User "Jeezys" on computer "JEEZYS-PC"
    Windows version 6.1 SP 0.0 build 7600 SM=0x300 PT=0x1 WOW64
    Info: Starting registry scan.
    Info: Starting disk scan of C: (NTFS).
    Hidden: file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\%3Dtrue%3Bkvvchoiceselect%3Dtrue%3B%3B%3Bkvtakeover%3Dtrue;loc=100;noperf=1;target=_blank;cc=2;sub1=1159961;sub2=1159959;sub3=1159957;sub4=1159958;misc=685526894[1]
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\05ba5b8c242055;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\7c1624f7b218a8;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\baa9dce6d6a27a;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\0761a4f77141dc;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\85cc12e8d0b0c9;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\831fef9e8dd137;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\5b32e307756e73;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\d559008f833ced;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\e954c46feca7c0;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\dbdfbea4a5e2004;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\45c27c984f5194;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\28fe37bd60a5fa9;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt35=100;kvagt18=100;kvagt25=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\e15bcdb670c94f8;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\2967f68dbf5508;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\Music\iTunes\iTunes Media\Music\Lil Wayne\Lil.Wayne-Im.Not.A.Human.Being.EP-(Retail)-2010-[NoFS]\12-Lil Wayne Ft. Lil Twist, Lil’ Chuckee, Gudda Gudda, Jae Millz, And Nicki Minaj - YM Salute (Bonus Track) (Prod. by Lil Wayne, Mr. Pyro, & Polow da Don).mp3
    Hidden: file C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.3.0.10958-enUS-patch.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\a7d00ec3dc006b;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\f2628b0e3649ee;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\53120ce49e73e7;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\9198623996d52d;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\8fa2e41e7a3c9ea;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\430e3f7e51a74b;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\%3Dtrue%3Bkvvchoiceselect%3Dtrue%3B%3B%3Bkvtakeover%3Dtrue;loc=100;noperf=1;target=_blank;cc=2;sub1=1159961;sub2=1159959;sub3=1159957;sub4=1159958;misc=469771708[1]
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\798e397d939ba8;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\5b077ce433b446;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Windows\PEV.exe
    Hidden: file C:\Program Files (x86)\Coupons\uninstall.exe
    Hidden: file C:\Program Files (x86)\DAEMON Tools Lite\imgengine.dll
    Hidden: file C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
    Hidden: file C:\Windows\System32\drivers\sptd.sys
    Hidden: file C:\Windows\Installer\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}\moh.exe
    Hidden: file C:\Program Files\Verizon V CAST Media Manager\Setup.exe
    Hidden: file C:\Users\Jeezys\Downloads\266.58_desktop_win7_winvista_64bit_english_whql.exe
    Hidden: file C:\Users\Jeezys\Downloads\MBRCheck.exe
    Info: Starting disk scan of F: (NTFS).
    Info: Starting disk scan of P: (NTFS).
    Stopped logging on 2/6/2011 at 15:17:06 PM


    Sophos Anti-Rootkit Version 1.5.4 (c) 2009 Sophos Plc
    Started logging on 2/8/2011 at 15:26:39 PM
    User "Jeezys" on computer "JEEZYS-PC"
    Windows version 6.1 SP 0.0 build 7600 SM=0x300 PT=0x1 WOW64
    Info: Starting registry scan.
    Info: Starting disk scan of C: (NTFS).
    Hidden: file C:\Users\Jeezys\Desktop\RKUnhookerLE.EXE
    Hidden: file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\tmp.edb
    Hidden: file C:\Program Files\World of Warcraft\WoW-3.2.0-enUS-patch.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\%3Dtrue%3Bkvvchoiceselect%3Dtrue%3B%3B%3Bkvtakeover%3Dtrue;loc=100;noperf=1;target=_blank;cc=2;sub1=1159961;sub2=1159959;sub3=1159957;sub4=1159958;misc=685526894[1]
    Hidden: file C:\Users\Jeezys\Downloads\TFC.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\05ba5b8c242055;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\7c1624f7b218a8;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\baa9dce6d6a27a;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\0761a4f77141dc;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\85cc12e8d0b0c9;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\831fef9e8dd137;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\5b32e307756e73;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\d559008f833ced;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\e954c46feca7c0;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Program Files\World of Warcraft\WoW-3.3.0.11159-to-3.3.2.11403-enUS-patch.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\dbdfbea4a5e2004;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\45c27c984f5194;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\28fe37bd60a5fa9;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt35=100;kvagt18=100;kvagt25=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\Downloads\OTL.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\e15bcdb670c94f8;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt18=100;kvagt35=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\2967f68dbf5508;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Program Files (x86)\uTorrent\uTorrent.exe
    Hidden: file C:\Windows\SysWOW64\pbsvc.exe
    Hidden: file C:\Users\Jeezys\Music\iTunes\iTunes Media\Music\Lil Wayne\Lil.Wayne-Im.Not.A.Human.Being.EP-(Retail)-2010-[NoFS]\12-Lil Wayne Ft. Lil Twist, Lil’ Chuckee, Gudda Gudda, Jae Millz, And Nicki Minaj - YM Salute (Bonus Track) (Prod. by Lil Wayne, Mr. Pyro, & Polow da Don).mp3
    Hidden: file C:\Program Files\World of Warcraft\WoW-3.2.0.10192-to-3.3.0.10958-enUS-patch.exe
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\a7d00ec3dc006b;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\f2628b0e3649ee;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\53120ce49e73e7;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\9198623996d52d;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva1834=100;kva2534=100;kva2544=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\8fa2e41e7a3c9ea;kvexpandable=0;kvdim=728x90;kvbw=0;kvpid=1778378;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt25=100;kvagt35=100;kvagt18=100;kvgf=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\430e3f7e51a74b;kvexpandable=0;kvdim=300x250;kvbw=1;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\%3Dtrue%3Bkvvchoiceselect%3Dtrue%3B%3B%3Bkvtakeover%3Dtrue;loc=100;noperf=1;target=_blank;cc=2;sub1=1159961;sub2=1159959;sub3=1159957;sub4=1159958;misc=469771708[1]
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\798e397d939ba8;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt35=100;kvagt25=100;kvagt18=100;kvgm=100[1].htm
    Hidden: file C:\Users\Jeezys\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BKTTMY8O\5b077ce433b446;kvexpandable=0;kvdim=300x250;kvbw=0;kvpid=1778380;kva1824=100;kva2534=100;kva2544=100;kva1834=100;kvagt18=100;kvagt25=100;kvagt35=100;kvgm=100[1].htm
    Hidden: file C:\Windows\PEV.exe
    Hidden: file C:\Program Files (x86)\DAEMON Tools Lite\imgengine.dll
    Hidden: file C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
    Hidden: file C:\Windows\System32\drivers\sptd.sys
    Hidden: file C:\Windows\Installer\{415030B8-3E8B-462A-8C03-41D95AA3AB3B}\moh.exe
    Hidden: file C:\Program Files\Verizon V CAST Media Manager\Setup.exe
    Hidden: file C:\Users\Jeezys\Downloads\266.58_desktop_win7_winvista_64bit_english_whql.exe
    Hidden: file C:\Users\Jeezys\Downloads\MBRCheck.exe
    Info: Starting disk scan of F: (NTFS).
    Info: Starting disk scan of P: (NTFS).
    Stopped logging on 2/8/2011 at 16:04:58 PM
    jeezybaby43, Feb 8, 2011
    #25

  6. Broni Malware Annihilator

    Let's try something, what helped in another similar case.

    Create new profile with admin rights and seem if you have same issue there.
    Broni, Feb 8, 2011
    #26

  7. jeezybaby43 Newcomer, in training

    Been logged on for like five minutes on a test admin account and havent heard the usual soundbite... so obvisouly it has something to do with my account. how did you guys go about troubleshooting that one?
    jeezybaby43, Feb 8, 2011
    #27

  8. Broni Malware Annihilator

    Good news :)

    It looks like your original profile got corrupted by the infection.

    You'll have to move all data from the old profile to the new profile and delete old one.
    Broni, Feb 8, 2011
    #28

  9. jeezybaby43 Newcomer, in training

    Thanks for everything! It seems to be working... And don't think I would ask for all this help without rewarding a certain someone. :)
    jeezybaby43, Feb 9, 2011
    #29

  10. Broni Malware Annihilator

    You're very welcome :)

    Good luck and stay safe :)
    Broni, Feb 9, 2011
    #30
Page 2 of 2
Thread Status:
Not open for further replies.