Home > General > WIN32TrojanTibs

WIN32TrojanTibs

this Topic has been closed. Please try the request again. Your cache administrator is webmaster. Advertisement phreedm Thread Starter Joined: Jul 7, 2009 Messages: 1 Hello.

Tech Support Guy is completely free -- paid for by advertisers and donations. Join over 733,556 other people just like you! Win32.Trojan.Tibs [RESOLVED] Started by Congo123 , Aug 02 2008 12:13 PM This topic is locked #1 Congo123 Posted 02 August 2008 - 12:13 PM Congo123 New Member Member 4 posts Win32.Trojan.Tibs Please try the request again.

Jump to content FacebookTwitter Geeks to Go Forum Security Virus, Spyware, Malware Removal Welcome to Geeks to Go - Register now for FREE Geeks To Go is a helpful hub, where Register now to gain access to all of our features, it's FREE and only takes one minute. I just joined this forum and read through the self help removal guides and didn't see this Trojan specifically, but I did see other Win32.Trojan guides.

To do this, go to Start->Run and type in msconfig and hit OK. phreedm, Jul 7, 2009 #1 This thread has been Locked and is not open to further replies. Please try the request again. Generated Sat, 18 Mar 2017 03:00:29 GMT by s_za2 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.6/ Connection

scan completed successfullyhidden files: 0**************************************************************************"ServiceDll"="C:\WINDOWS\system32\es.dll"[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\[email protected]:+Second Folding+FAH504-Console.exe]"ImagePath"="C:\Second Folding\FAH504-Console.exe -svcstart -svcstart -verbosity 9 -forceasm -advmethods -local"[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\[email protected]:+Third Folding+FAH504-Console.exe].------------------------ Other Running Processes ------------------------.C:\WINDOWS\system32\ati2evxx.exeC:\Program Files\COMODO\Firewall\cmdagent.exeC:\WINDOWS\system32\ati2evxx.exeC:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exeC:\PROGRA~1\MI3AA1~1\rapimgr.exe.**************************************************************************.Completion time: 2008-08-03 23:02:47 - machine was rebooted scan completed successfullyhidden files: 0**************************************************************************"ServiceDll"="C:\WINDOWS\system32\es.dll"[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\[email protected]:+Second Folding+FAH504-Console.exe]"ImagePath"="C:\Second Folding\FAH504-Console.exe -svcstart -svcstart -verbosity 9 -forceasm -advmethods -local"[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\[email protected]:+Third Folding+FAH504-Console.exe].--------------------- DLLs Loaded Under Running Processes ---------------------PROCESS: C:\WINDOWS\system32\winlogon.exe-> C:\WINDOWS\system32\guard32.dllPROCESS: C:\WINDOWS\system32\lsass.exe-> C:\WINDOWS\system32\guard32.dll.Completion time: 2008-08-02 15:53:20ComboFix-quarantined-files.txt 2008-08-02 20:53:16Pre-Run: 47,446,573,056 CategoríasAcceso Remoto GratisActualizacionesAndroidAnonimato GratisAnti-espionaje GratisAntivirus GratisBackUp GratisBetaCapturador de Pantalla GratisChats GratisCliente FTP GratisCliente Mensajeria GratisClientes de Correo GratisClientes IRC GratisCodecs Audio y Vídeo GratisCompresores GratisConciertos GratisConversor GratisCursos GratisDescargar GratisDescargar Videos GratisDiagnóstico http://cibercafe.com/ad-aware-2007-free-7026-update/ Still some minor tasks are taking major processing.

Create Account How it Works Javascript Disabled Detected You currently have javascript disabled. Short URL to this thread: https://techguy.org/841351 Log in with Facebook Log in with Twitter Log in with Google Your name or email address: Do you already have an account? Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More... All rights reserved.

Click here to join today! possibly as I am getting random Trojans on AVG, Adaware, etc about once per month. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. The system returned: (22) Invalid argument The remote host or network may be down.

I'm a complete newb with malware and am currently reading how to post a Hijackthis log. Generated Sat, 18 Mar 2017 03:00:29 GMT by s_za2 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.7/ Connection Then click Save report.* Post that log in your next reply.Go to http://www.bleepingc...to-use-combofix and follow the instructions on how to install the Recovery Console and run ComboFix. Then go to the Startup tab and uncheck all the programs you don't need at startup.

Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. The system returned: (22) Invalid argument The remote host or network may be down. Please try the request again. If you are unsure what a certain process does, search for the name in Google. 0 #7 Congo123 Posted 06 August 2008 - 01:20 AM Congo123 New Member Topic Starter Member

Several functions may not work. Sorry. Your cache administrator is webmaster.

Please click here if you are not redirected within a few seconds.

This is my old gaming rig p4 3.2 oc'd to 3.8 with dual raptors and it's definitely still slowed a bit. Ignore any entry it finds (since it wants you to buy the program for removal) as we will address this later.* Click on see report. scanning hidden autostart entries ...scanning hidden files ... The system returned: (22) Invalid argument The remote host or network may be down.

I think I have some kind of Trojan downloader? Everyone else please begin a New Topic. 0 Back to Virus, Spyware, Malware Removal · Next Unread Topic → Similar Topics 0 user(s) are reading this topic 0 members, 0 guests, A bunch of programs needed to be uninstalled reinstalled as they crashed on opening. Please re-enable javascript to access full functionality.

Are you looking for the solution to your computer problem? Still chugging hard for example on right clicking just to check properties. That may cause it to stall.How is it running so far? 0 #5 Congo123 Posted 03 August 2008 - 10:05 PM Congo123 New Member Topic Starter Member 4 posts Thanks for Generated Sat, 18 Mar 2017 03:00:29 GMT by s_za2 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.9/ Connection

Any guidance?Also these are the other 2 trojans that came up on AVG the last 2 months.: Trojan Horse SHeur.BCIF and Generic10.ABYM in a system32\msfont.dll fileLogfile of Trend Micro HijackThis v2.0.2Scan The system returned: (22) Invalid argument The remote host or network may be down. All rights reserved. Your cache administrator is webmaster.

Everything else should be disabled. My limited knowledge using HijackThis has not revealed to me the proper line of code to delete. Thanks for the help as well!!!;***********************************************************************************************************************************************************************************ANALYSIS: 2008-08-02 15:47:10PROTECTIONS: 1MALWARE: 6SUSPECTS: 0;***********************************************************************************************************************************************************************************PROTECTIONSDescription Version Active Updated;===================================================================================================================================================================================Windows Defender 1.1.3806.0 No Yes;===================================================================================================================================================================================MALWAREId Description Type Active Severity Disinfectable Disinfected Location;===================================================================================================================================================================================00199231 HackTool/EvID HackTools No 0 Yes No Generated Sat, 18 Mar 2017 03:00:29 GMT by s_za2 (squid/3.5.23) ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://0.0.0.10/ Connection

Username or email: I've forgotten my password Forum Password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Community Forum When finished, it shall produce a log for you. Copy the text from the quotebox below into Notepad:Driver::cpuz129File::C:\Program Files\AviDvdBurner\Patch.exeSave this as CFScript.txt in the same location as the ComboFix.exe tool.Drag the CFScript.txt into ComboFix.exeFollow the prompts. Advertisement Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Home Forums Forums Quick Links Search Forums Recent Posts Members Members Quick Links

Thread Status: Not open for further replies.