Need help removing malware

Solved
By Nathan Dauth
Oct 11, 2012
  1. Nathan Dauth

    Nathan Dauth Newcomer, in training Topic Starter Posts: 21

    All processes killed
    ========== OTL ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Aliu
    ->Temp folder emptied: 241474 bytes
    ->Temporary Internet Files folder emptied: 12486626 bytes
    ->Java cache emptied: 0 bytes
    ->Flash cache emptied: 492 bytes

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Public
    ->Temp folder emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32 (64bit) .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 2608 bytes
    %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 32902 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 12.00 mb


    [EMPTYFLASH]

    User: Aliu
    ->Flash cache emptied: 0 bytes

    User: All Users

    User: Default

    User: Default User

    User: Public

    Total Flash Files Cleaned = 0.00 mb


    [EMPTYJAVA]

    User: Aliu
    ->Java cache emptied: 0 bytes

    User: All Users

    User: Default

    User: Default User

    User: Public

    Total Java Files Cleaned = 0.00 mb

    Restore point Set: OTL Restore Point

    OTL by OldTimer - Version 3.2.69.0 log created on 10132012_102949
    Files\Folders moved on Reboot...
    C:\Users\Aliu\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\N4AQRWPN\ads[2].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\N4AQRWPN\page-2[1].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\MWWQZ1ST\918[1].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7V7EF2IG\bizo_multi[1].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\7V7EF2IG\partner[2].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1G12HUE7\partner[1].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1G12HUE7\partner[2].htm moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
    C:\Users\Aliu\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
    PendingFileRenameOperations files...
    Registry entries deleted on Reboot...
  2. Broni

    Broni Malware Annihilator Posts: 45,309   +243

  3. Nathan Dauth

    Nathan Dauth Newcomer, in training Topic Starter Posts: 21

    Malwarebytes Anti-Malware 1.65.0.1400
    www.malwarebytes.org
    Database version: v2012.10.11.14
    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    aliu :: ALVIN-LAPTOP [administrator]
    10/13/2012 10:37:53 AM
    mbam-log-2012-10-13 (10-37-53).txt
    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 202182
    Time elapsed: 59 second(s)
    Memory Processes Detected: 0
    (No malicious items detected)
    Memory Modules Detected: 0
    (No malicious items detected)
    Registry Keys Detected: 0
    (No malicious items detected)
    Registry Values Detected: 0
    (No malicious items detected)
    Registry Data Items Detected: 0
    (No malicious items detected)
    Folders Detected: 0
    (No malicious items detected)
    Files Detected: 0
    (No malicious items detected)
    (end)
  4. Broni

    Broni Malware Annihilator Posts: 45,309   +243

  5. Nathan Dauth

    Nathan Dauth Newcomer, in training Topic Starter Posts: 21

    I think everything is back to normal on my machine. I had to uninstall and reinstall somethings but theyre working just fine now. Thank you so much for your help, I will let you know if anything changes. :)(y)
  6. Broni

    Broni Malware Annihilator Posts: 45,309   +243

    Way to go!! [​IMG]
    Good luck and stay safe :)


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.