also @ TechSpot: Exploit allows command prompt to launch at Windows 7 login screen

TechSpot
Register now for a live online demo to see how the Office 365 suite of tools
- professional email, calendars, video conferencing, and file sharing -

[Solved] Malware/browser search hijack

Discussion in 'Virus and Malware Removal' started by desahra, Dec 30, 2011.

Page 2 of 2

  1. desahra Newcomer, in training

    All processes killed
    Error: Unable to interpret <Code:> in the current context!
    Error: Unable to interpret <---------> in the current context!
    ========== OTL ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Amber
    ->Temp folder emptied: 458588 bytes
    ->Temporary Internet Files folder emptied: 237315 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 128911930 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Flash cache emptied: 823 bytes

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Mcx1-KUSHIEL-PC
    ->Temp folder emptied: 0 bytes

    User: Mcx2-KUSHIEL-PC
    ->Temp folder emptied: 0 bytes

    User: Public
    ->Temp folder emptied: 0 bytes

    User: TEMP
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: UpdatusUser
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 608 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes
    RecycleBin emptied: 513567000 bytes

    Total Files Cleaned = 613.00 mb


    [EMPTYFLASH]

    User: All Users

    User: Amber
    ->Flash cache emptied: 0 bytes

    User: Default

    User: Default User

    User: Mcx1-KUSHIEL-PC

    User: Mcx2-KUSHIEL-PC

    User: Public

    User: TEMP

    User: UpdatusUser
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0.00 mb

    Restore point Set: OTL Restore Point

    OTL by OldTimer - Version 3.2.31.0 log created on 12312011_124207

    Files\Folders moved on Reboot...
    C:\Users\Amber\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

    Registry entries deleted on Reboot...


    Computer seems fine, I have Spyware Doctor up and running and Malwarebytes is coming up clean.

    Again, Thank You!!
    desahra, Dec 31, 2011
    #21

  2. Broni Malware Annihilator

    Way to go!! [IMG]
    Good luck and stay safe :)

    [IMG]
    Broni, Dec 31, 2011
    #22
Page 2 of 2