Get BullGuard Premium Protection to stay safe from all threats:

  • Credit card frauds and identity theft
  • WannaCry, Petya / Golden Eye Virus and all ransomware
Buy Now 60% off

All icons at my desktop and the taskbar are gone

Posted 8/29/2012 5:39 AM
#94301
User avatar

shannemark Advanced member

Date Joined Nov 2016
Total Posts: 32
i run the malwarebytes today here is my log:
Malwarebytes Anti-Malware 1.62.0.1300
www.malwarebytes.org

Database version: v2012.08.28.01

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Administrator :: JOY [administrator]

8/29/2012 8:46:13 AM
mbam-log-2012-08-29 (08-46-13).txt

Scan type: Full scan (C:\|D:\|H:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 291145
Time elapsed: 24 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
Posted 8/29/2012 5:40 AM
#94302
User avatar

shannemark Advanced member

Date Joined Nov 2016
Total Posts: 32
Unhide by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Unhide.exe can be found at this link:
http://www.bleepingcomputer.com/forums/topic405109.html

Program started at: 08/29/2012 09:23:21 AM
Windows Version: Windows XP

Please be patient while your files are made visible again.

Processing the A:\ drive
Finished processing the A:\ drive. 0 files processed.

Processing the C:\ drive
Finished processing the C:\ drive. 79990 files processed.

Processing the D:\ drive
Finished processing the D:\ drive. 49667 files processed.

Processing the H:\ drive
Finished processing the H:\ drive. 244 files processed.

The C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\smtmp\ folder does not exist!!
Unhide cannot restore your missing shortcuts!!
Please see this topic in order to learn how to restore default
Start Menu shortcuts: http://www.bleepingcomputer.com/forums/topic405109.html

Searching for Windows Registry changes made by FakeHDD rogues.
- Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
- Checking HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
- Checking HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
- Checking HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop
* HidNoChangingWallPaperden policy was found and deleted!
- Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
* Start_ShowPrinters was set to 0! It was set back to 1!
* Start_ShowSetProgramAccessAndDefaults was set to 0! It was set back to 1!
* Start_ShowNetConn was set to 0! It was set back to 1!

Restarting Explorer.exe in order to apply changes.

Program finished at: 08/29/2012 09:30:00 AM
Execution time: 0 hours(s), 6 minute(s), and 39 seconds(s)
Posted 8/29/2012 5:41 AM
#94303
User avatar

shannemark Advanced member

Date Joined Nov 2016
Total Posts: 32
i run my avast antivirus

this is the infected files i found:

A0044008.exe C:\System Volume Information\ _restore {D9350BC7.291
A0044009.exe C:\System Volume Information\ _restore {D9350BC7.291
A0044010.exe C:\System Volume Information\ _restore {D9350BC7.291
incredibar.dll.vir C:\Qoobox\Quarantine\C\Program Files\Incredibar.com
incredibartlbr.dll.vir C:\Qoobox\Quarantine\C\Program Files\Incredibar.com
  • Unread posts or replies
  • No unread posts or replies
  • Unread Posts (Read Only Forum)
  • No Unread Posts (Read Only Forum)

Forum Information

Currently it is Saturday, July 22, 2017, 12:49 AM (GMT +2)
There are a total of 61,305 posts in 13,482 threads.
In the last 3 days there were 0 new threads and 0 reply posts.

Who's online

This forum has 38,066 registered members. Please welcome our newest member, tinytim4.
There are currently no users on-line.
We use cookies to ensure that we give you the best experience on our website. By continuing to browse, we are assuming that you have no objection in accepting cookies. You can change your cookie settings at any time.