Solved XP Security 2012 Malware

Latest OTL Scan


All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Guertins
->Temp folder emptied: 166024 bytes
->Temporary Internet Files folder emptied: 13354126 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 470 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 29968 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 27158 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 13.00 mb


[EMPTYFLASH]

User: All Users

User: Default User

User: Guertins
->Flash cache emptied: 0 bytes

User: Guest

User: LocalService

User: NetworkService
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.31.0 log created on 12232011_114811

Files\Folders moved on Reboot...
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\A60OQ1KK\101253-active-xp-security-2012-malware-3[1].html moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\A60OQ1KK\ba41f783-c96b-4b2d-8be8-46ee74bd1e3b__3rd_party_BBS.[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\A60OQ1KK\context_sync[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\A60OQ1KK\fastbutton[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\5ZNZZ0BB\ads[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\5ZNZZ0BB\ddc[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\5ZNZZ0BB\si[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\0N28FAUC\drts[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\0N28FAUC\like[3].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\0N28FAUC\p-01-0VIaSjnOLg[1].gif moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\0N28FAUC\pixel[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\Content.IE5\0N28FAUC\visitormatch[1].htm moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
C:\Documents and Settings\Guertins\Local Settings\Temporary Internet Files\SuggestedSites.dat moved successfully.
File\Folder C:\Documents and Settings\NetworkService\Local Settings\Temp\Perflib_Perfdata_7b4.dat not found!

Registry entries deleted on Reboot...

 

I've installed WOT and Secunia. Can I remove all the programs we've loaded from my desktop? Other than loading slow it seems to run just fine.


Lastly, I'd like to take this time to thank you for your help and patience. I will be making a donation to the this forum.