Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Support
Windows Malware Removal Help & Support
Police Ransom Virus
Message
<blockquote data-quote="edward1" data-source="post: 94346" data-attributes="member: 4314"><p>Hi Fiery. All seems well. Very well indeed for which very many thanks. I just need to sort my internet connections. Currently I am having to swap a dialup to my broadband between machines and want to get back to wireless to laptop and ethernet to pc.</p><p>Below are the logs you requested:-</p><p>Malwarebytes Anti-Malware 1.70.0.1100</p><p>www.malwarebytes.org</p><p></p><p>Database version: v2013.01.06.04</p><p></p><p>Windows XP Service Pack 3 x86 NTFS</p><p>Internet Explorer 8.0.6001.18702</p><p>Jane :: PETERCOMPUTERNO [administrator]</p><p></p><p>06/01/2013 16:01:53</p><p>mbam-log-2013-01-06 (16-01-53).txt</p><p></p><p>Scan type: Quick scan</p><p>Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM</p><p>Scan options disabled: P2P</p><p>Objects scanned: 341571</p><p>Time elapsed: 8 minute(s), 39 second(s)</p><p></p><p>Memory Processes Detected: 0</p><p>(No malicious items detected)</p><p></p><p>Memory Modules Detected: 0</p><p>(No malicious items detected)</p><p></p><p>Registry Keys Detected: 1</p><p>HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f34c9277-6577-4dff-b2d7-7d58092f272f} (PUP.Datamngr) -> Quarantined and deleted successfully.</p><p></p><p>Registry Values Detected: 0</p><p>(No malicious items detected)</p><p></p><p>Registry Data Items Detected: 0</p><p>(No malicious items detected)</p><p></p><p>Folders Detected: 0</p><p>(No malicious items detected)</p><p></p><p>Files Detected: 1</p><p>C:\Documents and Settings\Jane\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Quarantined and deleted successfully.</p><p></p><p>(end)</p><p>15:37:59.0000 3656 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35</p><p>15:37:59.0015 3656 ============================================================</p><p>15:37:59.0015 3656 Current date / time: 2013/01/06 15:37:59.0015</p><p>15:37:59.0015 3656 SystemInfo:</p><p>15:37:59.0015 3656 </p><p>15:37:59.0015 3656 OS Version: 5.1.2600 ServicePack: 3.0</p><p>15:37:59.0015 3656 Product type: Workstation</p><p>15:37:59.0015 3656 ComputerName: PETERCOMPUTERNO</p><p>15:37:59.0015 3656 UserName: Jane</p><p>15:37:59.0015 3656 Windows directory: C:\WINDOWS</p><p>15:37:59.0015 3656 System windows directory: C:\WINDOWS</p><p>15:37:59.0015 3656 Processor architecture: Intel x86</p><p>15:37:59.0015 3656 Number of processors: 2</p><p>15:37:59.0031 3656 Page size: 0x1000</p><p>15:37:59.0031 3656 Boot type: Normal boot</p><p>15:37:59.0031 3656 ============================================================</p><p>15:38:00.0312 3656 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054</p><p>15:38:00.0359 3656 Drive \Device\Harddisk1\DR4 - Size: 0x1CDC7E800 (7.22 Gb), SectorSize: 0x200, Cylinders: 0x3AD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'</p><p>15:38:00.0359 3656 ============================================================</p><p>15:38:00.0359 3656 \Device\Harddisk0\DR0:</p><p>15:38:00.0375 3656 MBR partitions:</p><p>15:38:00.0375 3656 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681</p><p>15:38:00.0375 3656 \Device\Harddisk1\DR4:</p><p>15:38:00.0375 3656 MBR partitions:</p><p>15:38:00.0375 3656 \Device\Harddisk1\DR4\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xE6DDA1</p><p>15:38:00.0375 3656 ============================================================</p><p>15:38:00.0406 3656 C: <-> \Device\Harddisk0\DR0\Partition1</p><p>15:38:00.0406 3656 ============================================================</p><p>15:38:00.0406 3656 Initialize success</p><p>15:38:00.0406 3656 ============================================================</p><p>15:38:24.0093 3692 Deinitialize success.</p><p>Sorry, I did merge the two desktop items as instructed but they have separated and I don't know where the log is.</p></blockquote><p></p>
[QUOTE="edward1, post: 94346, member: 4314"] Hi Fiery. All seems well. Very well indeed for which very many thanks. I just need to sort my internet connections. Currently I am having to swap a dialup to my broadband between machines and want to get back to wireless to laptop and ethernet to pc. Below are the logs you requested:- Malwarebytes Anti-Malware 1.70.0.1100 www.malwarebytes.org Database version: v2013.01.06.04 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Jane :: PETERCOMPUTERNO [administrator] 06/01/2013 16:01:53 mbam-log-2013-01-06 (16-01-53).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 341571 Time elapsed: 8 minute(s), 39 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 1 HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f34c9277-6577-4dff-b2d7-7d58092f272f} (PUP.Datamngr) -> Quarantined and deleted successfully. Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 1 C:\Documents and Settings\Jane\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Quarantined and deleted successfully. (end) 15:37:59.0000 3656 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 15:37:59.0015 3656 ============================================================ 15:37:59.0015 3656 Current date / time: 2013/01/06 15:37:59.0015 15:37:59.0015 3656 SystemInfo: 15:37:59.0015 3656 15:37:59.0015 3656 OS Version: 5.1.2600 ServicePack: 3.0 15:37:59.0015 3656 Product type: Workstation 15:37:59.0015 3656 ComputerName: PETERCOMPUTERNO 15:37:59.0015 3656 UserName: Jane 15:37:59.0015 3656 Windows directory: C:\WINDOWS 15:37:59.0015 3656 System windows directory: C:\WINDOWS 15:37:59.0015 3656 Processor architecture: Intel x86 15:37:59.0015 3656 Number of processors: 2 15:37:59.0031 3656 Page size: 0x1000 15:37:59.0031 3656 Boot type: Normal boot 15:37:59.0031 3656 ============================================================ 15:38:00.0312 3656 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 15:38:00.0359 3656 Drive \Device\Harddisk1\DR4 - Size: 0x1CDC7E800 (7.22 Gb), SectorSize: 0x200, Cylinders: 0x3AD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 15:38:00.0359 3656 ============================================================ 15:38:00.0359 3656 \Device\Harddisk0\DR0: 15:38:00.0375 3656 MBR partitions: 15:38:00.0375 3656 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C0681 15:38:00.0375 3656 \Device\Harddisk1\DR4: 15:38:00.0375 3656 MBR partitions: 15:38:00.0375 3656 \Device\Harddisk1\DR4\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xE6DDA1 15:38:00.0375 3656 ============================================================ 15:38:00.0406 3656 C: <-> \Device\Harddisk0\DR0\Partition1 15:38:00.0406 3656 ============================================================ 15:38:00.0406 3656 Initialize success 15:38:00.0406 3656 ============================================================ 15:38:24.0093 3692 Deinitialize success. Sorry, I did merge the two desktop items as instructed but they have separated and I don't know where the log is. [/QUOTE]
Insert quotes…
Verification
Post reply
Top
