I have given myself a TornTV problem
Thought I was downloading a book in pdf but I clicked too quick and didn't notice the exe file extension until too late- my dumb.
MBAM, Avast and Windows defender. All returned a nothing found result. Avast was running at the time of infection.
Spy Hunter which found 600+ issues but required payment before removal. Not sure who's idea it was to ask for Cr card details on an infected machine. Not sure that entire process was legit or just part of the scam.
Kaspersky Pure 3.0 No items found. Took a really long time to download 7.7 million definitions and over two hours to run.
Avast was removed after Kaspersky was downloaded and was run offline, (modem unpluged)
Killing things in Hijackthis hasn't helped as I'm unsure of the role of many of the enties listed so my kill runs are incomplete.
Actual home page (The hijack) I wonder what Hitachi has to do with it?
System - Windows 8
Browser - Firefox, latest. When I open the Firefox properties dialog box, under the shortcut tab, in the Target box, I found the iStart address tacked onto the mozilla address. Not sure what should be there. Message - "The name, xxxxxxx specified in the Target box is not valid.Make sure the path and file name are correct."
Apart from the browser hijack and some game that seems to have gone away, I've read references to Google Chrome, (which has been repeatedly removed from this system) when Kaspersky was installing and also a number of files ending in xxx/chrome.exe.
MS IE made an uninvited reappearance down on the task bar as well despite having been previously removed.
Neither GChrome nor IE appear in the Add/Remove list. Kinda wierd. I know MS and Google really persistant with trying to get people to use their browsers but malware use seems a stretch even for them.
Thanks for your help. Afraid I can't beat this one with out it.
Edited by Turtleneck, 16 September 2014 - 11:56 PM.