Jump to content
zap

[RESOLVED] Malware is onboard. Owner never updated software.

Recommended Posts

zap   

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: spudger
->Temp folder emptied: 48216 bytes
->Temporary Internet Files folder emptied: 8957143 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1915 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 9.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Public

User: spudger
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Public

User: spudger
->Java cache emptied: 0 bytes

Total Java Files Cleaned = 0.00 mb

Restore point Set: OTL Restore Point

OTL by OldTimer - Version 3.2.69.0 log created on 09292013_200828

Files\Folders moved on Reboot...
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MEZ69VN4\postmessageRelay[1].htm moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MEZ69VN4\xd_arbiter[1].htm moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HXQ1CW2H\fastbutton[1].htm moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HXQ1CW2H\like[1].htm moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HXQ1CW2H\xd_arbiter[1].htm moved successfully.
C:\Users\spudger\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5GCYOSSW\page-2[1].htm moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now


  • Recently Browsing   0 members

    No registered users viewing this page.

×