Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

may have fake virus scan, not sure


  • This topic is locked This topic is locked
12 replies to this topic

#1 lisa0477

lisa0477

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 26 January 2011 - 04:38 PM

This is my 5th attempt at posting my problem. I don't know what is going on with my computer, but it is crazy. I was following the instructions on what to do before we post and when I got to the gmer part, it shuts down my computer once the scan reaches system 32 or something like that. I only get a quick glance before the computer reboots. It takes five minutes sometimes just to get my computer to do ANYTHING. The circle goes round and round and always says not responding forever. I am in Nursing school and I do everything through the computer so this is more than annoying. I always get the page that is pretending to scan my computer for fake viruses. Thought it was removed but apparently not. I wasn't having a problem until my children got on my computer. That will not happen again. I hope I have given you enough information. Please help! Don't kill me, but I have probably posted the DDs wrong..uggh. Sorry


DDS log


DDS (Ver_10-12-12.02)

Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 2007-02-26 9:51:48 PM
System Uptime: 2011-01-18 5:18:35 PM (187 hours ago)

Motherboard: ASUSTek Computer INC. | | Hematite-XL
Processor: AMD Athlon™ 64 X2 Dual Core Processor 3800+ | Socket AM2 | 1000/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 225 GiB total, 127.445 GiB free.
D: is FIXED (NTFS) - 8 GiB total, 0.005 GiB free.
E: is CDROM ()
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft Tun Miniport Adapter
Device ID: ROOT\*TUNMP\0001
Manufacturer: Microsoft
Name: Microsoft Tun Miniport Adapter #2
PNP Device ID: ROOT\*TUNMP\0001
Service: tunmp

==== System Restore Points ===================


==== Installed Programs ======================

360Share Pro(remove only)
Abacast Client
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Community Help
Adobe Creative Suite 5 Design Premium
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Media Player
Adobe Photoshop Elements 2.0
Adobe Reader 9.3.3
Adobe Shockwave Player 11
Apple Application Support
Apple Mobile Device Support
Apple Software Update
BlackBerry Device Software Updater
Body Spectrum
Bonjour
Camera Window
Canon Camera TWAIN Driver
Canon Camera Window for ZoomBrowser EX
Canon EOS 10D TWAIN Driver
Canon PhotoRecord
Canon Utilities File Viewer Utility 1.2
Canon Utilities PhotoStitch 3.1
Canon Utilities RemoteCapture 2.7
Canon Utilities ZoomBrowser EX
Chinese Simplified Fonts Support For Adobe Reader 9
Conduit Engine
Contents
Cooliris for Internet Explorer
Corel PaintShop Photo Pro X3
Coupon Printer for Windows
Davis's Dosage Calculators
Davis's Drug Search for Nurses, 11e
DeviceIO
Evolve Reach RN Studyware
File Viewer Utility 1.2.1
getPlus® Download Manager for Corel
getPlus® for Adobe
Google Chrome
Google Earth Plug-in
Google Toolbar for Internet Explorer
Google Update Helper
Google Updater
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Update
HPAsset component for HP Active Support Library
ICA
Interactive Case Studies to Accompany Davis's Drug Guide for Nurses, 11e
IPM_PSP_Pro
iTunes
Japanese Fonts Support For Adobe Reader 9
Java Auto Updater
Java™ 6 Update 2
Java™ 6 Update 22
Java™ 6 Update 3
Java™ 6 Update 7
Kernel for Outlook Evaluation ver 7.05.01
Kitchen Brigade (remove only)
LeapFrog Connect
LeapFrog Crammer Plugin
LeapFrog Didj Plugin
LeapFrog Leapster2 Plugin
Lexmark 5400 Series
Lexmark Toolbar
Lexmark Tools for Office
Lexmark Z2400 Series
LG USB Drivers
LG USB Modem driver
LightScribe System Software
Linksys EasyLink Advisor 1.6 (0032)
LiveUpdate 3.2 (Symantec Corporation)
Logitech Legacy USB Camera Driver Package
Logitech QuickCam
Logitech QuickCam Driver Package
Malwarebytes' Anti-Malware
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Math 3.0
Microsoft Money Plus
Microsoft Money Shared Libraries
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard 2007
Microsoft Office Ultimate 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Works
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MLE
Move Media Player
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MVision
My HP Games
NVIDIA Drivers
Octoshape add-in for Adobe Flash Player
OGA Notifier 2.0.0048.0
OpenOffice.org Installer 1.0
PDF Download for Internet Explorer
PDF Settings CS5
PhotoStitch
Picasa 3
PSPH10Pro
PSPPContent
PSPPRO_DCRAW
PureHD
QuickTime
Realtek High Definition Audio Driver
RemoteCapture 2.7.1
Safari
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB982312)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB2288953)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Windows Media Encoder (KB2447961)
Security Update for Windows Media Encoder (KB979332)
Setup
Share
Silvestri Comp Review PN 4e
Soft Data Fax Modem with SmartCP
sp37532
Spelling Dictionaries Support For Adobe Reader 9
Stellar Phoenix Outlook PST Repair v3.0
Swag_Bucks Toolbar
The Digital Arts and Crafts Studio
TranslatorBar 3.2 Toolbar
Tutorials to Accompany Davis's Drug Guide for Nurses, 11e
twitter_search Toolbar
Unity Web Player
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Outlook 2007 Junk Email Filter (kb2410711)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Crammer Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Didj Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Leapster2 Plugin)
V CAST Music Manager
VCE 3.0 - Skilled Nursing Patient Set
VIO
Windows Live Messenger
Windows Media Encoder 9 Series
WOT for Internet Explorer
Yahoo! Messenger
Yahoo! Music Jukebox
Yahoo! Software Update
Yahoo! Toolbar
Yoono for Internet Explorer
Zoodles
Zune
Zune Language Pack (DE)
Zune Language Pack (ES)
Zune Language Pack (FR)
Zune Language Pack (IT)

==== End Of File ===========================

BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:01:55 PM

Posted 31 January 2011 - 03:15 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

Please take note:

  • If you have since resolved the original problem you were having, we would appreciate you letting us know.
  • If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.
  • If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.
  • If you have already posted a DDS log, please do so again, as your situation may have changed.
  • Use the 'Add Reply' and add the new log to this thread.

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We also need a new log from the GMER anti-rootkit Scanner.

Please note that if you are running a 64-bit version of Windows you will not be able to run GMER and you may skip this step.

Please first disable any CD emulation programs using the steps found in this topic:

Why we request you disable CD Emulation when receiving Malware Removal Advice

Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:

How to create a GMER log


Thanks and again sorry for the delay.


Regards,
Georgi :hello:

cXfZ4wS.png


#3 lisa0477

lisa0477
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 08 February 2011 - 03:16 AM

I did what you asked. I ran DDS again and I am attaching. I cannot do the Gmer. I am still having problems doing anything on the computer. Especially pulling up my internet or email. It takes forver for a page to load at times then it will redirect to the fake virus scan pages.

Attached Files

  • Attached File  DDS3.txt   22.75KB   15 downloads


#4 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 09 February 2011 - 10:59 AM

Hello lisa0477

I will be handling your log to help you get cleaned up. I apologize for the delay but the forum is very busy.

As you can see the logs we ask for are very extensive and take a lot of time to investigate.

Please subscribe to this topic. Click on the Watch Topic button, select Immediate Notification and click on proceed.

Please make sure Word Wrap in notepad is turned off. When copying and pasting logs paste them directly in the reply box only attach logs if asked to. Do not wrap logs in codebox or code tags. It makes it very difficult to read and analyze them. Please paste them directly into the reply box.
Please do not make any changes to your system until we are through. Fixes are based upon information that is current from your system so any changes can affect our strategy. Please refrain from running any tools we may use without specific instructions.

If your operating system is Windows Vista or Windows 7 it may be necessary to right click then choose Run as Administrator any programs we use.

Before we begin please check and follow the instructions on How to Show Hidden Files and Folders in Windows Vista and Windows XP and How to show hidden files in Windows 7

Because the e-mail notification system is not completely reliable, please check your topic once a day for responses.

If you have since resolved the original problem you were having, we would appreciate you letting us know.

If you have not done so, include a clear description of the problems you are having, along with any steps you may have performed so far.


Thanks!!
PW

#5 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 09 February 2011 - 12:12 PM

Hello lisa0477,


Step 1.

RKill by Grinler

Link #1
Link #2
Link #3

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Download Link #1.
  • Save it to your Desktop.
  • Double click the RKill desktop icon.
    If you are using Vista please right click and run as Admin!
  • A black screen will briefly flash indicating a successful run.
  • If this does not occur please delete that application and download Link #2.
  • Continue process until the tool runs.
  • If the tool does not run from any of the links tell me about it.
  • It shall produce a log located at C:\RKill. Please copy and paste it into your next reply.


Step 2.

Please download Malwarebytes' Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2Malwarebytes' may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to this Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes' when done.
Note: If Malwarebytes' encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes' from removing all the malware.


Step 3.

Download Combofix from any of the links below, and save it to your desktop.

Link 1
Link 2
  • Disable your AntiVirus and AntiSpyware applications as they will interfere with our tools and the removal. If you are unsure how to do this, please refer to our sticky topic How to Disable your Security Applications
    Note - If you have AVG or CA installed, due to recent changes in how these AV's target the tool's internal files, they must be uninstalled before running ComboFix. If you have difficulty uninstalling the AV, download Opswat AppRemover http://www.appremover.com/supported-applications <----Important
    Refer to this page if you are not sure how. You can reinstall AVG when we are finished and can temporarily install another antivirus if you wish. Some good antivirus programs free for non-commercial home use are:
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


In your next reply please include the following:


MBAM log
Combofix.txt



Thanks!!

Edited by pwgib, 09 February 2011 - 12:15 PM.

PW

#6 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 14 February 2011 - 03:18 AM

Hello lisa0477,



Do you still need assistance?
PW

#7 lisa0477

lisa0477
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 16 February 2011 - 06:12 PM

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 2011-02-16 at 17:02:16.
Operating System: Windows Vista ™ Home Premium


Processes terminated by Rkill or while it was running:

C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Windows\system32\runonce.exe


Rkill completed on 2011-02-16 at 17:04:25.

#8 lisa0477

lisa0477
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 16 February 2011 - 06:14 PM

Yes, I very much so need assistance. I am trying to do all the things you asked me to. My computer is going very slow and it is taking some time.

#9 lisa0477

lisa0477
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 17 February 2011 - 05:40 PM

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5777

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.19019

2011-02-16 8:57:22 PM
mbam-log-2011-02-16 (20-56-53).txt

Scan type: Full scan (C:\|)
Objects scanned: 524658
Time elapsed: 2 hour(s), 38 minute(s), 18 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\Users\jeff lisa\AppData\Local\Temp\0.5511248242118245.gif (Extension.Mismatch) -> No action taken.

#10 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 18 February 2011 - 11:14 AM

Hello lisa0477,

Your log(s) show that you are using so called peer-to-peer or file-sharing programs (in your case 360Share Pro). These programs allow file sharing between users as the name(s) suggest. In today's world cyber crime has become an enormous problem. Different ways are used to infect personal computers to make use of their stored data or machine power for further propagation of malware files. A popular means is the use of file-sharing tools as a huge amount of prospective victims can be reached through them.

It is therefore possible to be infected by downloading infected files via peer-to-peer tools and so these tools must be used with extreme care. Some further reading on this subject, along with included links, are as follows: "File-Sharing, otherwise known as Peer To Peer" and "Risks of File-Sharing Technology."

It is also important to note that sharing entertainment files and proprietary software infringes on copyright laws in many countries over the world and you are putting yourself at risk of of being indicted through organizations watching over the rights of the authors of such files (i.e. the RIAA for music files, or the MPAA for movie files in the USA) or the authors of the files themselves.

Naturally there are also legal ways to use these services, such as downloading Linux distributions or office suites such as "Open Office."

If you decide to keep this program please refrain from using it until we get your computer clean.



Did you install My Faster PC and Uniblue RegistryBooster? They appear in your logs but don't show as Add/Remove Programs entries. Both contain Registry Cleaners.

Please be aware that bleepingcomputer staff do not recommend the usage of registry cleaners / tools due to the following facts:
  • Registry tools can cause irreparable damage to your Operating System
  • Registry tools can, as a result of the above, render your pc to be inoperable.
This is done, assuming that the major audience here at this board might be inexperienced users and thus a suggested safeguard from our side.
If you feel you have the need for a registry cleaner, then you are just as welcome to keep it. This is what we refer to an "optional fix" and is up to the user, so just take this as a recommendation from my side.

More information about registry cleaners can be found at Miekiemoes Blog

Are you getting pop-ups or re-directed or is it just a slow computer?

If you are having trouble running Combofix please do this instead.


Step 1.

Please download Rootkit Unhooker from one of the following links and save it to your desktop.
Link 1 (.exe file)
Link 2 (zipped file)
Link 3 (.rar file)In order to use this tool if you downloaded from either of the second two links, you will need to extract the RKUnhookerLE.exe file using a program capable of extracing ZIP and RAR compressed files. If you don't have an extraction program, you can downlaod, install and use the free 7-zip utility.

  • Double-click on RKUnhookerLE.exe to start the program.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • Click the Report tab, then click Scan.
  • Check Drivers, Stealth, and uncheck the rest.
  • Click OK.
  • Wait until it's finished and then go to File > Save Report.
  • Save the report to your Desktop.
  • Copy and paste the contents of the report into your next reply.
-- Note: You may get this warning...just ignore it, click OK and continue: "Rootkit Unhooker has detected a parasite inside itself! It is recommended to remove parasite, okay?".


Step 2.

We need to create an OTL Report
  • Please download OTL from the following mirror:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized


In your next reply please include the following:


RKUnhooker report
OTL.txt <-- Will be opened
Extra.txt <-- Will be minimized



Thanks!!

Edited by pwgib, 18 February 2011 - 11:20 AM.

PW

#11 lisa0477

lisa0477
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:05:55 AM

Posted 18 February 2011 - 12:04 PM

I will get right on it. I have some pop ups, but nothing really bad. Combofix keeps telling me files are corrupted to reinstall, when I do that it tells me I have CA antivirus which I cannot find on my computer anywhere. About the 360, I paid for that a long time ago, I didn't think it was like limewire and all of those sites so I will delete it if it could cause me problems. I just bought it for music.

Yes I did that stupid myfaster pc and even when it pops up when I start my computer and I click the uninstall button. The stupid thing comes back I never even used it, but it WON'T come off, so if you can help me get it off I would appreciate it.

Slow isn't even the word I would use for this computer. It all of a sudden just went haywire. I have waited an hour for the internet to load at times because every thing seems to freeze up, my internet always stops working. I have had a highjacker on my old computer and it redirected everything, this one does not do that too often. I really have not had any problems until here lately. Even using ms word and outlook will freeze up on me and quit working. This is why it is taking me forever to do what you are asking....slow....so very slow.

I am going to start doing the other things you told me.

Thanks!

#12 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 28 February 2011 - 10:03 AM

Hello lisa0477,



Are you still with me?


Thanks!!
PW

#13 pwgib

pwgib

  • Malware Response Team
  • 2,957 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:God's Country
  • Local time:05:55 AM

Posted 14 March 2011 - 03:37 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.
PW




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users