Solved Services.exe infected with Sirefef.b

OLT log:

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: lg
->Temp folder emptied: 1086992 bytes
->Temporary Internet Files folder emptied: 192682107 bytes
->Java cache emptied: 2027 bytes
->Flash cache emptied: 5045 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 13072260 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 36064494 bytes
RecycleBin emptied: 101121 bytes

Total Files Cleaned = 232.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: lg
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: lg
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.55.0 log created on 07312012_152900
Files\Folders moved on Reboot...
C:\Users\lg\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File move failed. C:\Windows\temp\TmpFile1 scheduled to be moved on reboot.
PendingFileRenameOperations files...
File C:\Users\lg\AppData\Local\Temp\FXSAPIDebugLogFile.txt not found!
[2012/07/31 15:34:24 | 008,405,015 | ---- | M] () C:\Windows\temp\TmpFile1 : Unable to obtain MD5
Registry entries deleted on Reboot...
 
It seems to be doing great! No threats, and the Windows services are working (except Defender which I'm ignoring). I ran Windows Update as well.
Is there anything left for me to do?
 
Thank you so much! :D I wouldn't have been able to do this a million years and 5 degrees later lol.
I really appreciate it, thanks a lot.
 
Hahaha...

You're very welcome
th_smiley_says_hello.gif
 
You must log in or register to reply here.

Similar threads

A
Infected: Antivirus says it's Trojan:Script/Wacatac.H!ml
Replies
12
Views
2K
adidaman27
A
S
  • Locked
Inactive Am I infected?
Replies
8
Views
3K
Broni
Broni
Shawn Knight
LG hops on the foldable laptop bandwagon with the new Gram Fold
Replies
4
Views
383
vposi
vposi

Latest posts

Back