Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect


  • This topic is locked This topic is locked
3 replies to this topic

#1 mranonymous333

mranonymous333

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:06 AM

Posted 04 May 2011 - 02:02 AM

A few days ago I noticed google search results were slow to appear in firefox and they are redirecting mostly to scour.com

I've scanned with SpybotS&D, Malwarebytes, and my Eset Nod32 with no luck.

Here are my logs....

DDS LOG

.
DDS (Ver_11-03-05.01) - NTFSx86
Run by JUSTIN at 1:40:14.85 on Wed 05/04/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_24
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2941.2376 [GMT -5:00]
.
AV: ESET Smart Security 4.0 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled*
.
============== Running Processes ===============
.
C:\WINXP\system32\svchost -k DcomLaunch
svchost.exe
C:\WINXP\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINXP\Explorer.EXE
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\RocketDock\RocketDock.exe
svchost.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
svchost.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\JUSTIN\My Documents\Downloads\dds.scr
.
============== Pseudo HJT Report ===============
.
BHO: IeMonitorBho Class: {bf00e119-21a3-4fd1-b178-3b8537e75c92} - c:\program files\megaupload\mega manager\MegaIEMn.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [RocketDock] "c:\program files\rocketdock\RocketDock.exe"
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: c:\documents and settings\all users\application data\megamedia\megakey\msadm.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1302768960468
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
TCP: {97F08787-176D-4CF0-8D3F-E00DC8D2DCA5} = 208.67.222.222,208.67.220.220
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\winxp\system32\wpdshserviceobj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\docume~1\justin\applic~1\mozilla\firefox\profiles\iwt9bwo9.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo
FF - prefs.js: browser.startup.homepage - hxxp://ipb.quicksilverscreen.im/
FF - prefs.js: network.proxy.type - 0
FF - component: c:\documents and settings\justin\application data\mozilla\firefox\profiles\iwt9bwo9.default\extensions\{0b457caa-602d-484a-8fe7-c1d894a011ba}\platform\winnt_x86-msvc\components\SSSLauncher.dll
FF - plugin: c:\documents and settings\justin\application data\mozilla\firefox\profiles\iwt9bwo9.default\extensions\{1bc9ba34-1eed-42ca-a505-6d2f1a935bbb}\plugins\npietab2.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\winxp\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: DownThemAll!: {DDC359D1-844A-42a7-9AA1-88A850A938A8} - %profile%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: FireShot: {0b457cAA-602d-484a-8fe7-c1d894a011ba} - %profile%\extensions\{0b457cAA-602d-484a-8fe7-c1d894a011ba}
FF - Ext: Image Zoom: {1A2D0EC4-75F5-4c91-89C4-3656F6E44B68} - %profile%\extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}
FF - Ext: IE Tab 2 (FF 3.6+): {1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} - %profile%\extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF - Ext: UnPlug: unplug@compunach - %profile%\extensions\unplug@compunach
FF - Ext: Downloads in Tab: downintab@max.max - %profile%\extensions\downintab@max.max
FF - Ext: Fasterfox Lite: FasterFox_Lite@BigRedBrent - %profile%\extensions\FasterFox_Lite@BigRedBrent
.
============= SERVICES / DRIVERS ===============
.
R1 ehdrv;ehdrv;c:\winxp\system32\drivers\ehdrv.sys [2009-11-16 108792]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2009-11-16 735960]
R3 BCMH43XX;N+ Wireless USB Adapter Driver;c:\winxp\system32\drivers\bcmwlhigh5.sys [2009-11-6 642432]
R3 xcpip;TCP/IP Protocol Driver;c:\winxp\system32\drivers\xcpip.sys --> c:\winxp\system32\drivers\xcpip.sys [?]
R3 xpsec;IPSEC driver;c:\winxp\system32\drivers\xpsec.sys --> c:\winxp\system32\drivers\xpsec.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\winxp\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\winxp\system32\drivers\ssadbus.sys [2011-4-16 96488]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\winxp\system32\drivers\ssadmdfl.sys [2011-4-16 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\winxp\system32\drivers\ssadmdm.sys [2011-4-16 121576]
S3 WinRM;Windows Remote Management (WS-Management);c:\winxp\system32\svchost.exe -k WINRM [2008-4-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\winxp\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-05-04 06:23:22 388096 -c--a-r- c:\docume~1\justin\applic~1\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2011-05-04 06:23:22 -------- dc----w- c:\program files\Trend Micro
2011-05-03 10:30:35 38224 -c--a-w- c:\winxp\system32\drivers\mbamswissarmy.sys
2011-05-03 10:30:34 -------- dc----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2011-05-03 10:30:32 20952 -c--a-w- c:\winxp\system32\drivers\mbam.sys
2011-05-03 10:30:32 -------- dc----w- c:\program files\Malwarebytes' Anti-Malware
2011-05-03 10:08:48 -------- dc----w- c:\program files\TeaTimer (Spybot - Search & Destroy)
2011-05-03 10:08:48 -------- dc----w- c:\program files\SDHelper (Spybot - Search & Destroy)
2011-05-03 10:08:48 -------- dc----w- c:\program files\Misc. Support Library (Spybot - Search & Destroy)
2011-05-03 10:08:48 -------- dc----w- c:\program files\File Scanner Library (Spybot - Search & Destroy)
2011-05-03 10:06:13 -------- dc----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2011-05-03 10:06:12 -------- dc----w- c:\program files\Spybot - Search & Destroy
2011-05-03 09:46:27 -------- dc----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2011-05-03 09:45:55 -------- dc----w- c:\program files\SUPERAntiSpyware
2011-05-03 09:45:55 -------- dc----w- c:\docume~1\justin\applic~1\SUPERAntiSpyware.com
2011-05-02 09:32:18 103296 -c--a-w- c:\winxp\system32\drivers\Rtenicxp.sys
2011-05-02 09:32:17 -------- dc----w- c:\winxp\OPTIONS
2011-05-02 09:32:12 -------- dc----w- C:\swsetup
2011-05-01 22:09:56 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\ESET
2011-04-29 04:51:42 -------- dc----w- c:\documents and settings\justin\dwhelper
2011-04-27 06:35:28 -------- dc----w- c:\program files\VideoLAN
2011-04-24 22:43:54 -------- dc----w- c:\program files\AllToAVI
2011-04-24 22:10:55 -------- dc----w- c:\program files\JDownloader
2011-04-22 22:40:37 1060864 -c--a-w- c:\winxp\system32\mfc71.dll
2011-04-22 22:40:30 1060864 -c--a-w- c:\winxp\mfc71.dll
2011-04-22 08:38:42 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\Identities
2011-04-22 08:34:41 650752 -c--a-w- c:\winxp\system32\xvidcore.dll
2011-04-22 08:34:41 240640 -c--a-w- c:\winxp\system32\xvidvfw.dll
2011-04-22 08:34:41 152064 -c--a-w- c:\winxp\system32\xvid.ax
2011-04-22 08:34:39 -------- dc----w- c:\program files\Xvid
2011-04-22 07:07:42 -------- dc----w- c:\documents and settings\justin\.tucan
2011-04-22 06:59:37 -------- dc----w- c:\docume~1\justin\applic~1\adma
2011-04-22 06:59:28 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\IsolatedStorage
2011-04-22 06:59:19 -------- dc----w- c:\program files\adma
2011-04-22 04:38:26 73728 -c--a-w- c:\winxp\system32\javacpl.cpl
2011-04-22 04:38:26 472808 -c--a-w- c:\winxp\system32\deployJava1.dll
2011-04-22 04:36:18 -------- dc----w- c:\winxp\system32\appmgmt
2011-04-18 08:17:07 -------- dc----w- c:\program files\APKInstall
2011-04-18 00:30:52 -------- dc----w- c:\docume~1\justin\applic~1\Megaupload
2011-04-17 08:17:34 -------- dc----w- c:\docume~1\justin\applic~1\FireShot
2011-04-17 08:17:04 -------- dcsh--w- c:\docume~1\alluse~1\applic~1\System Restore
2011-04-16 07:35:08 96488 -c--a-w- c:\winxp\system32\drivers\ssadbus.sys
2011-04-16 07:35:08 30312 -c--a-w- c:\winxp\system32\drivers\ssadadb.sys
2011-04-16 07:35:08 1416680 -c--a-w- c:\winxp\system32\WdfCoInstaller01005.dll
2011-04-16 07:35:08 12776 -c--a-w- c:\winxp\system32\drivers\ssadmdfl.sys
2011-04-16 07:35:08 121576 -c--a-w- c:\winxp\system32\drivers\ssadmdm.sys
2011-04-16 07:35:08 10344 -c--a-w- c:\winxp\system32\drivers\ssadcmnt.sys
2011-04-16 07:35:08 10216 -c--a-w- c:\winxp\system32\drivers\ssadwhnt.sys
2011-04-15 10:59:56 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\ApplicationHistory
2011-04-15 10:59:14 -------- dc----w- c:\winxp\system32\winrm
2011-04-15 10:59:14 -------- dc----w- c:\winxp\system32\GroupPolicy
2011-04-15 10:44:01 0 -c--a-w- C:\ngen.exe
2011-04-15 10:39:04 0 -c--a-w- c:\documents and settings\justin\ngen.exe
2011-04-15 09:56:59 -------- dc----w- c:\docume~1\justin\applic~1\ESET
2011-04-15 09:53:05 -------- dc----w- c:\program files\CCleaner
2011-04-15 09:24:41 -------- dc----w- c:\winxp\pss
2011-04-15 07:57:56 -------- dc----w- c:\docume~1\alluse~1\applic~1\Skype Extras
2011-04-15 07:53:22 -------- dc----r- c:\program files\Skype
2011-04-14 09:28:59 -------- dc----w- c:\docume~1\justin\applic~1\TrueCrypt
2011-04-14 09:12:34 -------- dc----w- c:\docume~1\justin\applic~1\LEAPS
2011-04-14 09:10:46 -------- dc----w- c:\winxp\system32\Lang
2011-04-14 09:10:45 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\Ahead
2011-04-14 09:05:44 -------- dc----w- c:\program files\Foxit Software
2011-04-14 09:05:17 -------- dc----w- c:\program files\RocketDock
2011-04-14 09:03:31 1081616 -c--a-w- c:\winxp\system32\MSCOMCTL.OCX
2011-04-14 09:02:33 -------- dc----w- c:\program files\TNod User & Password Finder
2011-04-14 09:01:53 -------- dc----w- c:\docume~1\justin\applic~1\Pegasys Inc
2011-04-14 09:00:52 -------- dc----w- c:\program files\SiFEU
2011-04-14 09:00:52 -------- dc----w- c:\program files\ESET
2011-04-14 08:58:53 356864 -c--a-w- c:\winxp\TrueCrypt Setup.exe
2011-04-14 08:58:53 193632 -c--a-w- c:\winxp\system32\drivers\truecrypt.sys
2011-04-14 08:58:53 -------- dc----w- c:\program files\TrueCrypt
2011-04-14 08:58:32 59488 -c--a-w- c:\winxp\system32\GenSvcInst.exe
2011-04-14 08:58:32 145504 -c--a-w- c:\winxp\system32\bgsvcgen.exe
2011-04-14 08:58:32 13567 -c--a-w- c:\winxp\system32\drivers\CDRBSDRV.SYS
2011-04-14 08:58:23 -------- dc----w- c:\program files\Pegasys Inc
2011-04-14 08:57:31 -------- dc----w- c:\program files\VirtualDub-1.8.3
2011-04-14 08:55:00 143360 -c--a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2011-04-14 08:54:39 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\Apple
2011-04-14 08:54:31 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\Apple Computer
2011-04-14 08:52:35 -------- dc----w- c:\program files\PowerISO
2011-04-14 08:52:31 -------- dc----w- c:\program files\Nero
2011-04-14 08:49:11 -------- dc----w- c:\docume~1\justin\applic~1\Megamedia
2011-04-14 08:49:10 -------- dc----w- c:\docume~1\alluse~1\applic~1\Megamedia
2011-04-14 08:49:09 -------- dc----w- c:\docume~1\justin\locals~1\applic~1\Megamedia
2011-04-14 08:48:16 -------- dc----w- c:\program files\Megaupload
2011-04-14 08:48:01 -------- dc----w- C:\JDownloader
2011-04-14 08:47:17 -------- dc----w- c:\program files\MediaInfo
2011-04-14 08:46:32 -------- dc----w- c:\program files\The KMPlayer
2011-04-14 08:45:44 -------- dc----w- c:\program files\Haali
2011-04-14 08:42:56 -------- dc----w- c:\program files\common files\DivX Shared
2011-04-14 08:40:56 -------- dc----w- c:\program files\DivX
2011-04-14 08:39:35 -------- dc----w- c:\docume~1\alluse~1\applic~1\DivX
2011-04-14 08:39:01 -------- dc----w- c:\program files\DAMN NFO Viewer
2011-04-14 08:37:57 -------- dc----w- c:\program files\AviSynth 2.5
2011-04-14 08:37:38 -------- dc----w- c:\program files\AutoGK
2011-04-14 08:37:13 -------- dc----w- c:\winxp\ie8updates
2011-04-14 08:37:05 86683 -c--a-w- c:\winxp\system32\pthreadGC2.dll
2011-04-14 08:37:04 -------- dc----w- c:\program files\AoA Audio Extractor
2011-04-14 08:36:25 -------- dc----w- c:\program files\AC3Filter
2011-04-14 08:35:19 -------- dc----w- c:\program files\Alarm Clock
2011-04-14 08:34:28 -------- dc----w- c:\winxp\system32\XPSViewer
2011-04-14 08:34:15 89088 -c--a-w- c:\winxp\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2011-04-14 08:34:11 89088 -c----w- c:\winxp\system32\dllcache\filterpipelineprintproc.dll
2011-04-14 08:34:11 597504 -c----w- c:\winxp\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2011-04-14 08:34:11 597504 -c----w- c:\winxp\system32\dllcache\printfilterpipelinesvc.exe
2011-04-14 08:34:11 117760 -c----w- c:\winxp\system32\prntvpt.dll
2011-04-14 08:34:10 575488 -c----w- c:\winxp\system32\xpsshhdr.dll
2011-04-14 08:34:10 575488 -c----w- c:\winxp\system32\dllcache\xpsshhdr.dll
2011-04-14 08:34:10 1676288 -c----w- c:\winxp\system32\xpssvcs.dll
2011-04-14 08:34:10 1676288 -c----w- c:\winxp\system32\dllcache\xpssvcs.dll
2011-04-14 08:32:11 -------- dc----w- c:\winxp\system32\URTTemp
2011-04-14 08:32:02 6272 -c--a-w- c:\winxp\system32\drivers\splitter.sys
2011-04-14 08:32:02 6272 -c--a-w- c:\winxp\system32\dllcache\splitter.sys
2011-04-14 08:32:01 83072 -c--a-w- c:\winxp\system32\drivers\wdmaud.sys
2011-04-14 08:32:01 83072 -c--a-w- c:\winxp\system32\dllcache\wdmaud.sys
2011-04-14 08:32:00 52864 -c--a-w- c:\winxp\system32\drivers\DMusic.sys
2011-04-14 08:32:00 52864 -c--a-w- c:\winxp\system32\dllcache\dmusic.sys
2011-04-14 08:29:37 2192768 -c----w- c:\winxp\system32\dllcache\ntoskrnl.exe
2011-04-14 08:28:42 7680 -c----w- c:\winxp\system32\dllcache\iecompat.dll
2011-04-14 08:16:26 21728 -c--a-w- c:\winxp\system32\wucltui.dll.mui
2011-04-14 08:16:26 17632 -c--a-w- c:\winxp\system32\wuaueng.dll.mui
2011-04-14 08:16:26 15072 -c--a-w- c:\winxp\system32\wuaucpl.cpl.mui
2011-04-14 08:16:26 15064 -c--a-w- c:\winxp\system32\wuapi.dll.mui
2011-04-14 08:16:26 -------- dc----w- c:\winxp\system32\SoftwareDistribution
2011-04-14 08:13:22 -------- dc----w- c:\winxp\system32\ReinstallBackups
2011-04-14 08:08:02 53248 -c--a-w- c:\winxp\system32\CSVer.dll
2011-04-14 08:07:08 -------- dc----w- C:\SWTOOLS
2011-04-14 08:02:27 -------- dc----w- c:\program files\Realtek
.
==================== Find3M ====================
.
2011-03-24 21:03:38 56936 -c--a-w- c:\winxp\system32\RtkCoInstXP.dll
2011-03-21 22:13:34 20053096 -c--a-w- c:\winxp\RTHDCPL.EXE
2011-03-20 02:00:38 151552 -c--a-w- c:\winxp\system32\AC3ACM.acm
2011-03-07 05:31:47 692736 -c--a-w- c:\winxp\system32\inetcomm.dll
2011-03-04 06:35:38 420864 -c--a-w- c:\winxp\system32\vbscript.dll
2011-03-03 13:27:43 1866880 ----a-w- c:\winxp\system32\win32k.sys
2011-02-26 00:37:00 1284712 -c--a-w- c:\winxp\RtlExUpd.dll
2011-02-22 23:27:04 919552 ----a-w- c:\winxp\system32\wininet.dll
2011-02-22 23:27:04 43520 -c--a-w- c:\winxp\system32\licmgr10.dll
2011-02-22 23:27:04 1469440 -c--a-w- c:\winxp\system32\inetcpl.cpl
2011-02-18 12:08:32 385024 -c--a-w- c:\winxp\system32\html.iec
2011-02-17 12:32:12 5120 -c--a-w- c:\winxp\system32\xpsp4res.dll
2011-02-15 13:05:45 290432 ----a-w- c:\winxp\system32\atmfd.dll
2011-02-09 13:53:52 270848 -c--a-w- c:\winxp\system32\sbe.dll
2011-02-09 13:53:52 186880 -c--a-w- c:\winxp\system32\encdec.dll
2011-02-08 13:33:55 978944 -c--a-w- c:\winxp\system32\mfc42.dll
2011-02-08 13:33:55 974848 ----a-w- c:\winxp\system32\mfc42u.dll
.
============= FINISH: 1:40:46.42 ===============


Any help is appreciated. Thank you.

Attached Files


Edited by mranonymous333, 04 May 2011 - 02:07 AM.


BC AdBot (Login to Remove)

 


#2 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:12:06 PM

Posted 04 May 2011 - 04:10 PM

Good evening. :)

Download TDSSKiller.zip from Kaspersky from here and save it to your Desktop.

  • You will then need to extract the file(s) from the zipped folder.
  • To do this: Right-click on the zipped folder and from the menu that appears, click on Extract All...
    In the Extraction Wizard window that opens, click on Next> and in the next window that appears, click on Next> again.
    In the final window, click on Finish

  • Please close all open programs as this may result in a reboot being necessary.
  • Double click TDSSKiller.exe to begin.
  • Click Start scan and allow the tool to do just that.
  • One the scan has completed, if the tool has identified anything allow it to carry out it's default action(s) - you'll need to click Continue where appropriate.
  • Finally, if it prompts you to reboot your machine, please click Reboot Now and ensure that your machine does so.
  • If the scan finds nothing, please click the Report button and let me have a copy of the text file that opens.
  • If you reboot your machine, the log, which i'd like to see, will be located at the root of you hard drive as C:\TDSSKiller.Version_Date_Time_log.txt.
    Please check that you get the one with the right date and time. :)

So long, and thanks for all the fish.

 

 


#3 mranonymous333

mranonymous333
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:06 AM

Posted 08 May 2011 - 08:01 PM

My issue has been resolved. I've reformatted so no longer a problem. Thanks anyways guys.

#4 Noviciate

Noviciate

  • Malware Response Team
  • 5,277 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Numpty HQ
  • Local time:12:06 PM

Posted 09 May 2011 - 01:23 PM

Good evening. :)

I've reformatted so no longer a problem.

That tends to solve a lot of issues - thanks for letting us know.

As this issue appears to have been resolved, this thread is now closed.

So long, and thanks for all the fish.

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users