Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 2 of 2 Posts

·
Registered
Joined
·
17 Posts
Discussion Starter · #1 ·
Whats wrong : or what I notice : I cant bring up my task manager .


Log: ---------------------------------------
Malwarebytes' Anti-Malware 1.28
Database version: 1166
Windows 5.1.2600 Service Pack 2

9/18/2008 5:47:44 AM
mbam-log-2008-09-18 (05-47-27).txt

Scan type: Quick Scan
Objects scanned: 53011
Time elapsed: 24 minute(s), 58 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 12
Registry Values Infected: 0
Registry Data Items Infected: 2
Folders Infected: 4
Files Infected: 32

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\n.cs4 (Backdoor.Ciadoor) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{0958c4c9-77b0-4aa8-9364-7886bfca7e39} (Backdoor.Ciadoor) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{e14dce67-8fb7-4721-8149-179baa4d792c} (Backdoor.Ciadoor) -> No action taken.
HKEY_CLASSES_ROOT\Typelib\{c9f1c5a0-f3d8-48e2-8b8c-3e86b4cac7e3} (Backdoor.Ciadoor) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\playmp3 (Adware.PlayMP3Z) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\MediaHoldings (Adware.PlayMP3Z) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Mirar (Adware.Mirar) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\PlayMP3 (Adware.PlayMP3Z) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fbrowsingadvisor_is1 (Trojan.FBrowsingAdvisor) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ac99a099-deb4-4c87-bda8-8c412a952a12} (Adware.BHO) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{ac99a099-deb4-4c87-bda8-8c412a952a12} (Adware.BHO) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Policies\Microsoft\Windows\System\DisableCMD (Hijack.CMDPrompt) -> Bad: (1) Good: (0) -> No action taken.

Folders Infected:
C:\Program Files\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowserAdvisor (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\PlayMP3z (Adware.PlayMP3Z) -> No action taken.
C:\Documents and Settings\Hayes\Start Menu\Programs\PlayMP3z (Adware.PlayMP3Z) -> No action taken.

Files Infected:
C:\Program Files\Mozilla Firefox\regxpcom.exe (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\upd2.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem2C1.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem10.tmp.exe (Adware.Mirar) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem18.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem1AA.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem1AF.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem1B2.tmp.exe (Adware.Mirar) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem1C.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem2BD.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem2C7.tmp.exe (Adware.Mirar) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem35.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem39.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem3C.tmp.exe (Adware.Mirar) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem5.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem6.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\tem9.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\temA.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\temBB.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\temBF.tmp.exe (Adware.Agent) -> No action taken.
C:\Documents and Settings\Hayes\Local Settings\Temp\temC2.tmp.exe (Adware.Mirar) -> No action taken.
C:\Program Files\FBrowsingAdvisor\IXPCOMEvents.xpt (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowsingAdvisor\Logo.png (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowsingAdvisor\main.db (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowsingAdvisor\unins000.dat (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowsingAdvisor\unins000.exe (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\FBrowsingAdvisor\XPCOMEvents.dll (Trojan.FBrowsingAdvisor) -> No action taken.
C:\Program Files\PlayMP3z\PlayMP3.exe (Adware.PlayMP3Z) -> No action taken.
C:\Program Files\PlayMP3z\uninstall.exe (Adware.PlayMP3Z) -> No action taken.
C:\Documents and Settings\Hayes\Start Menu\Programs\PlayMP3z\Run PlayMP3z.lnk (Adware.PlayMP3Z) -> No action taken.
C:\Documents and Settings\Hayes\Application Data\addon.dat (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\winlk75.dll (Adware.BHO) -> No action taken.


Hope I did this right , and thank you for any help
 
1 - 2 of 2 Posts
Status
Not open for further replies.
Top