Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Web browsers hijacked - IE 8, Firefox 3.6.3, & Google Chrome


  • Please log in to reply
1 reply to this topic

#1 emptycup

emptycup

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 22 June 2010 - 07:53 PM

Running Windows XP SP3 on a Dell Latitude E4300. I ran SUPERAntiSpyware Free Edition, CCleaner, Malwarebytes, Spybot & Avira in safe mode. The programs found some things and deleted them. I did not save what they found. All browsers are still being redirected. Just ran HijackThis but the log file is too large to post.
Appreciate your help!

Edited by Budapest, 22 June 2010 - 07:54 PM.
Moved from XP ~BP


BC AdBot (Login to Remove)

 


#2 dburress

dburress

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:08:30 PM

Posted 23 June 2010 - 09:03 AM

i was fighting the same browser issue. it is now resolved.

i first ran unhackme and it found and deleted catchme.sys, and pragmad.sys, but the redirects continued.

i then ran tdsskiller and it found and deleted tsk222a.tmp, klmdb.sys, and rasacd.sys and the redirects seem to be cleared up.

that was baddie that was very, very difficult to clear up.

any idea where it came from? it was on a corporate laptop and i have mcafee and superantispyware in place.

i guess hackers are always a step ahead of the game.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users