Thread: Virus gone? But system won't load properly
View Single Post
Join Date: Jan 2008
Posts: 14
Reputation: Iggystooge is an unknown quantity at this point 
Solved Threads: 0
Sponsor
Iggystooge Iggystooge is offline Offline
Newbie Poster

Re: Virus gone? But system won't load properly

 
0
  #5
Jan 8th, 2009
Thanks much for the help. Too all night, but the malware finally finished. Found 19 objects, I removed them and rebotted to safe mode. Here is the log file:

Malwarebytes' Anti-Malware 1.32
Database version: 1616
Windows 5.1.2600 Service Pack 3

1/8/2009 7:15:13 AM
mbam-log-2009-01-08 (07-14-56).txt

Scan type: Full Scan (C:\|)
Objects scanned: 190918
Time elapsed: 2 hour(s), 31 minute(s), 21 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 1
Registry Data Items Infected: 2
Folders Infected: 0
Files Infected: 15

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\xpreapp (Malware.Trace) -> No action taken.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ojopuluke (Trojan.Agent) -> No action taken.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: c:\windows\system32\userinit.exe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit (Trojan.Agent) -> Data: system32\userinit.exe -> No action taken.

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\axenitoba.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\ntdll64.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\senekalvfhosty.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\senekampmysllt.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\senekasudioird.dll (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\senekadf.dat (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\seneka.dat (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\senekalog.dat (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\drivers\seneka.sys (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\drivers\senekavyyoegqw.sys (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\warning.gif (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Administrator.GNAT\Local Settings\Temp\ntdll64.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Administrator.GNAT\Local Settings\Temp\mousehook.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Administrator.GNAT.000\Local Settings\Temp\ntdll64.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\Administrator.GNAT.000\Local Settings\Temp\mousehook.dll (Trojan.FakeAlert) -> No action taken.

This is where I am now, I haven't tried anything else. Thanks again for the help!
Reply With Quote