IOBit Software
|
IOBit Software
|
|
|
||||||
| Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient. |
|
|
Thread Tools | Display Modes |
|
#1
02-19-11, 23:00
|
|||
|
|||
restart pc = missing file every reboot!!!
well every time i restart my pc, i have to reinstall windows xp because theres always a file missing at start up,
after i reinstalled xp i ran a virus scan and theres 31 infections and many, different viruses in my system32 folder. heres the log Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5815 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 2/19/2011 11:32:21 PM mbam-log-2011-02-19 (23-32-18).txt Scan type: Quick scan Objects scanned: 128342 Time elapsed: 28 minute(s), 45 second(s) Memory Processes Infected: 4 Memory Modules Infected: 1 Registry Keys Infected: 6 Registry Values Infected: 10 Registry Data Items Infected: 1 Folders Infected: 0 Files Infected: 13 Memory Processes Infected: c:\WINDOWS\Temp\34byl.exe (Trojan.Downloader) -> 3568 -> No action taken. c:\WINDOWS\Temp\o6jv.exe (Trojan.Dynamer) -> 3608 -> No action taken. c:\WINDOWS\Temp\o6jv.exe (Trojan.Dynamer) -> 2652 -> No action taken. c:\WINDOWS\svc2.exe (Trojan.Sisproc.Gen) -> 2192 -> No action taken. Memory Modules Infected: c:\WINDOWS\system32\nwcwks.dll (Trojan.Inject) -> No action taken. Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{248DD896-BB45-11CF-9ABC-0080C7E7B78D} (Worm.Nyxem) -> No action taken. HKEY_CLASSES_ROOT\TypeLib\{248DD890-BB45-11CF-9ABC-0080C7E7B78D} (Worm.Nyxem) -> No action taken. HKEY_CLASSES_ROOT\Interface\{248DD892-BB45-11CF-9ABC-0080C7E7B78D} (Worm.Nyxem) -> No action taken. HKEY_CLASSES_ROOT\MSWinsock.Winsock.1 (Worm.Nyxem) -> No action taken. HKEY_CLASSES_ROOT\MSWinsock.Winsock (Worm.Nyxem) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advan ced\Folder\Hidden\NOHIDORSYS (Malware.Trace) -> No action taken. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explo rer\Run\2z4in (Trojan.Downloader) -> Value: 2z4in -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explo rer\Run\s4u9 (Trojan.Dynamer) -> Value: s4u9 -> No action taken. HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\NetLog2 (Trojan.Sisproc.Gen) -> Value: NetLog2 -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explo rer\Run\apps (Trojan.Agent) -> Value: apps -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\userini (Rootkit.ADS) -> Value: userini -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explo rer\Run\userini (Rootkit.ADS) -> Value: userini -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\userini (Rootkit.ADS) -> Value: userini -> No action taken. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explor er\Run\userini (Rootkit.ADS) -> Value: userini -> No action taken. HKEY_USERS\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\Windows\win (Malware.Trace) -> Value: win -> No action taken. HKEY_USERS\.DEFAULT\Software\Microsoft\Windows NT\CurrentVersion\Windows\init (Malware.Trace) -> Value: init -> No action taken. Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advan ced\Folder\Hidden\SHOWALL\CheckedValue (PUM.Hijack.System.Hidden) -> Bad: (0) Good: (1) -> No action taken. Folders Infected: (No malicious items detected) Files Infected: c:\WINDOWS\system32\nwcwks.dll (Trojan.Inject) -> No action taken. c:\WINDOWS\Temp\34byl.exe (Trojan.Downloader) -> No action taken. c:\WINDOWS\Temp\o6jv.exe (Trojan.Dynamer) -> No action taken. c:\WINDOWS\svc2.exe (Trojan.Sisproc.Gen) -> No action taken. c:\WINDOWS\Fonts\services.exe (Trojan.Agent) -> No action taken. c:\WINDOWS\system32\MSWINSCK.OCX (Worm.Nyxem) -> No action taken. c:\WINDOWS\system32\calc.exe (Trojan.Agent.Gen) -> No action taken. c:\WINDOWS\Temp\7cx66hjl.exe (Malware.Packer.Gen) -> No action taken. c:\WINDOWS\Temp\eq88jce8p.exe (Trojan.Sisproc.Gen) -> No action taken. c:\WINDOWS\system32\6c6s4.log (Malware.Trace) -> No action taken. c:\documents and settings\brandon\application data\wiaservg.log (Malware.Trace) -> No action taken. c:\WINDOWS\Temp\wpv411298036282.exe (Trojan.Agent) -> No action taken. c:\WINDOWS\explorer.exe:userini.exe (Rootkit.ADS) -> No action taken. im not sure if i should remove them or not HELP!!!!!!!!!!!!  
|
| Sponsored links |
|
|
| Tags |
| boot, malware, reboot, reinstall, restart |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Windows file missing, can't reboot | Stephy | Software | 2 | 11-19-09 00:18 |
| Reboot/Restart Prob | deegazzo | Software | 2 | 11-13-09 12:57 |
| ReBoot-Restart Scheduling applications...? | tarmin8or | Software | 3 | 01-01-09 12:15 |
| Shareware For Missing \system32\ Missing File ??? | gregory447 | Software | 19 | 07-27-07 12:47 |
| my computer erases any changes after reboot or restart... | moreno | Hardware | 33 | 09-23-05 15:57 |
Threaded Mode
