Hello,Trojan-W32/Sinowal.C drops and loads a password stealing component on the infected system and tries to steal account information from it. It also tries to steal information that is required to access certain online banks' and online payment systems' websites.
Clean some temp files ...TFC by OT
Please download TFC
by Old Timer and save it to your desktop. alternate download link
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe
to run it. If you are using Vista, right-click on the file and choose Run As Administrator
Click the Start
button to begin the cleaning process and let it run uninterrupted to completion. Important!
If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Please run the tool here How to remove Google Redirects
When it is done, a log file should be created on your C: drive called "TDSSKiller.txt
" please copy and paste the contents of that file here.Rerun MBAM (MalwareBytes) like this:
Open MBAM in normal mode and click Update
tab, select Check for Updates
scan and scan (normal mode).
After scan click Remove Selected
, Post new scan log
into normal mode.
Edited by boopme, 21 October 2010 - 03:50 PM.