Help
This topic is locked
Google Search Redirects to Spam - Trojan?
#16
- Member
-
- Group: Members
- Posts: 42
- Joined: 13-September 09
Posted 12 August 2011 - 03:58 PM
I did not install the Unlocker... I'll remove it and run MalwareBytes again once this scan is done. Thanks for the quick reply
Back to top
#17
- To Insanity and Beyond
-
- Group: Global Moderator
- Posts: 48,775
- Joined: 10-September 04
- Gender:Male
- Location:NJ USA
Posted 12 August 2011 - 07:05 PM
Ok, thanks, let me know.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
#18
- Member
-
- Group: Members
- Posts: 42
- Joined: 13-September 09
Posted 13 August 2011 - 11:32 PM
Here is the result of the SuperAntiSpyware scan:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 08/14/2011 at 00:00 AM
Application Version : 5.0.1116
Core Rules Database Version : 7558
Trace Rules Database Version: 5370
Scan type : Complete Scan
Total Scan Time : 23:15:24
Operating System Information
Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 792
Memory threats detected : 0
Registry items scanned : 81214
Registry threats detected : 0
File items scanned : 1527911
File threats detected : 96
Trojan.Agent/Gen-FraudPack
C:\PROGRAM FILES (X86)\ADVANCED CD RIPPER PRO\VIS\OSCILLO.DLL
Trojan.Agent/Gen-Krpytik
C:\PROGRAM FILES (X86)\GDSOFT\FONTMAP\FONTMAP.EXE
Adware.Tracking Cookie
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.cpcadnet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.static.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
bridge2.admarketplace.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.admarketplace.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.advertise.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
track.napprd.netshelter.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
auth.breakmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
ads.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
auslieferung.commindo-media-ressourcen.de [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.adcentriconline.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bizzclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.xm.xtendmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.c.gigcount.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.cpcadnet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
I'm rerunning MBAM right now.
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 08/14/2011 at 00:00 AM
Application Version : 5.0.1116
Core Rules Database Version : 7558
Trace Rules Database Version: 5370
Scan type : Complete Scan
Total Scan Time : 23:15:24
Operating System Information
Windows 7 Ultimate 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 792
Memory threats detected : 0
Registry items scanned : 81214
Registry threats detected : 0
File items scanned : 1527911
File threats detected : 96
Trojan.Agent/Gen-FraudPack
C:\PROGRAM FILES (X86)\ADVANCED CD RIPPER PRO\VIS\OSCILLO.DLL
Trojan.Agent/Gen-Krpytik
C:\PROGRAM FILES (X86)\GDSOFT\FONTMAP\FONTMAP.EXE
Adware.Tracking Cookie
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.kanoodle.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.cpcadnet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.static.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
in.getclicky.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.gomediazine.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
bridge2.admarketplace.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.admarketplace.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.martiniadnetwork.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
sdesapio-conversiontracker.appspot.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.advertise.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
track.napprd.netshelter.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bevscountrycottage.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
auth.breakmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
rts.pgmediaserve.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.collective-media.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.adxpose.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.find-a-job-canada.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
ads.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
creativemac.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.digitalmedianet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mediafire.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.interclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.lucidmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
auslieferung.commindo-media-ressourcen.de [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.mm.chitika.net [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.adcentriconline.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.googleadservices.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.bizzclick.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.xm.xtendmedia.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.media6degrees.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.c.gigcount.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
www.cpcadnet.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\USERS\OWNER\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\MUN666M9.DEFAULT\COOKIES.SQLITE ]
I'm rerunning MBAM right now.
This post has been edited by chrisandsherri: 13 August 2011 - 11:33 PM
#19
- Member
-
- Group: Members
- Posts: 42
- Joined: 13-September 09
Posted 14 August 2011 - 09:13 AM
MalwareBytes found nothing.
#20
- To Insanity and Beyond
-
- Group: Global Moderator
- Posts: 48,775
- Joined: 10-September 04
- Gender:Male
- Location:NJ USA
Posted 14 August 2011 - 10:07 AM
If still redirecting>>>
Change your DNS Servers:
Are you on a router? Are other machines on it,if so are they redirecting?
Do you use Firefox?
Change your DNS Servers:
- Go to
> Run... and in the open box, type: cmd - Press OK or Hit Enter.
- At the command prompt, type or copy/paste: ipconfig /flushdns
- Hit Enter.
- You will get a confirmation that the flush was successful.
- Close the command box.
Are you on a router? Are other machines on it,if so are they redirecting?
Do you use Firefox?
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
#21
- Member
-
- Group: Members
- Posts: 42
- Joined: 13-September 09
Posted 14 August 2011 - 02:03 PM
Flush completed. Both computers are on a router but only I am affected by this virus. I do use Firefox but the same thing is happening in IE...
#22
- To Insanity and Beyond
-
- Group: Global Moderator
- Posts: 48,775
- Joined: 10-September 04
- Gender:Male
- Location:NJ USA
Posted 14 August 2011 - 02:09 PM
OK then we have a malware that is protected,probably hiding behind a driver or service.
We need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.
Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Let me know if that went well.
We need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.
Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Let me know if that went well.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook
#23
- OBleepin Investigator
-
- Group: Moderator
- Posts: 29,827
- Joined: 14-July 06
- Gender:Not Telling
- Location:Bloomington, IN
Posted 14 August 2011 - 08:13 PM
Hello,
Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic414408.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.
Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic. Good luck with your log.
Orange Blossom
Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic414408.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.
Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic. Good luck with your log.
Orange Blossom
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.
Orange Blossom
An ounce of prevention is worth a pound of cure
SuperAntiSpyware, SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript
Orange Blossom
An ounce of prevention is worth a pound of cure
SuperAntiSpyware, SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript
