Thank you!

Good afternoon! I wanted to take a moment to thank you for the great instructions on how to get rid of malware from my computer. I am not computer savvy, but I can follow directions and it seems to have worked! However, before I do a toggle of my system restore points, how do I know that all trojans, etc are removed?

Again, I appreciate your help more than you could know!

 

Thanks for taking the time to look at these! I didn't know if there was an easier way, and I appreciate your help! The other logs will be coming in a minute.

 

Last, but not least!

 

for the c:\windows\8088984.dat I got the following:
Antivirus Version Last Update Result
a-squared 4.5.0.50 2010.03.12 -
AhnLab-V3 5.0.0.2 2010.03.12 -
AntiVir 8.2.1.180 2010.03.12 -
Antiy-AVL 2.0.3.7 2010.03.12 -
Authentium 5.2.0.5 2010.03.12 -
Avast 4.8.1351.0 2010.03.12 -
Avast5 5.0.332.0 2010.03.12 -
AVG 9.0.0.787 2010.03.12 -
BitDefender 7.2 2010.03.12 -
CAT-QuickHeal 10.00 2010.03.12 -
ClamAV 0.96.0.0-git 2010.03.12 -
Comodo 4239 2010.03.12 -
DrWeb 5.0.1.12222 2010.03.12 -
eSafe 7.0.17.0 2010.03.11 -
eTrust-Vet 35.2.7357 2010.03.12 -
F-Prot 4.5.1.85 2010.03.12 -
F-Secure 9.0.15370.0 2010.03.12 -
Fortinet 4.0.14.0 2010.03.09 -
GData 19 2010.03.12 -
Ikarus T3.1.1.80.0 2010.03.12 -
Jiangmin 13.0.900 2010.03.12 -
K7AntiVirus 7.10.996 2010.03.12 -
Kaspersky 7.0.0.125 2010.03.12 -
McAfee 5918 2010.03.12 -
McAfee+Artemis 5918 2010.03.12 -
McAfee-GW-Edition 6.8.5 2010.03.12 -
Microsoft 1.5502 2010.03.12 -
NOD32 4940 2010.03.12 -
Norman 6.04.08 2010.03.12 -
nProtect 2009.1.8.0 2010.03.12 -
Panda 10.0.2.2 2010.03.11 -
PCTools 7.0.3.5 2010.03.12 -
Prevx 3.0 2010.03.12 -
Rising 22.38.04.03 2010.03.12 -
Sophos 4.51.0 2010.03.12 -
Sunbelt 5842 2010.03.12 -
Symantec 20091.2.0.41 2010.03.12 -
TheHacker 6.5.2.0.232 2010.03.12 -
TrendMicro 9.120.0.1004 2010.03.12 -
VBA32 3.12.12.2 2010.03.12 -
ViRobot 2010.3.12.2224 2010.03.12 -
VirusBuster 5.0.27.0 2010.03.12 -

Additional information
File size: 230 bytes
MD5...: d14e60120aca673adfb390bfdd65d8e3
SHA1..: 92f1715731f16925583ed4c21658777a78ac6aba
SHA256: 9d20803277af829f25d2283b0b84f7d74955bfbeccd3802e6d10dea762abd15a
ssdeep: 6:0uGeijYes0Zl3ZHpxaZZMmBJJSZDZLgkst3ZHpP:0fvs0DpHpxaM+AFLZ+pHpP<BR>
PEiD..: -
PEInfo: -
RDS...: NSRL Reference Data Set<BR>-
pdfid.: -
trid..: Unknown!
sigcheck:<BR>publisher....: n/a<BR>copyright....: n/a<BR>product......: n/a<BR>description..: n/a<BR>original name: n/a<BR>internal name: n/a<BR>file version.: n/a<BR>comments.....: n/a<BR>signers......: -<BR>signing date.: -<BR>verified.....: Unsigned<BR>


For the c:\windows\system32\stu32 file I got the following:
MD5: 39b1ffb03c2296323832acbae50d2aff
First received: 2007.11.19 23:54:56 UTC
Date: 2010.03.10 23:26:42 UTC [+1D]
Results: 0/42
Permalink: analisis/5b5d71718108e132d10bafb0c217f469a1e3cc13f79ff8d9cbe3bf4918aff7b7-1268263602

I have also attached the requested log, but never got any commands to enter delete.

 

I don't believe I have any other problems. My IE is working fine, as well as my FF. Nothing is slow. A couple weeks ago my 19 month old hit a bunch of buttons on the computer, it started acting funny, the background changed, and at first I thought she was a genious who knew how to navigate the computer to change the background. I'm pretty sure in her keyboard banging she turned something off that allowed us to be "attacked." I quickly figured out that it was a trojan, did all of your steps, and I haven't had any other issues. I assumed that when all was clear my background would go back to what it was and I would know it was free and clear, but it didn't, so I wasn't sure how to tell if everything was gone.

I sincerely appreciate all of your help. Your directions were clear, I was able to follow them, and it appears the computer is free of infections! YAY!