Jump to content

Change Mode

essexboy

Trusted Malware Techs
  • Content Count

    752
  • Joined

  • Last visited

Everything posted by essexboy

  1. OK then one final scan to ensure I got them all Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.
  2. OK he looks better Lets do a sweep for Orphans now and then see what that shows Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Quick Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan is complete, click OK, then Show R
  3. I have it - do not run any scans now just follow the directions in the HJT forum
  4. Hmm a nice little collection there, but I am sure you do not want them - So lets go to war Please download the OTMoveIt2 by OldTimer. Save it to your desktop. Please double-click OTMoveIt2.exe to run it. Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): C:\WINDOWS\fdkowvbp.dll C:\WINDOWS\system32\udhoydbj.dll C:\WINDOWS\system32\serbw.exe C:\WINDOWS\system32\formatsys.exe C:\WINDOWS\system32\ieupdates.exe C:\Program Files\Antivirus 2008 PRO C:\WINDOWS\msmbw.exe C:\WINDOWS\eqvwamkl.dl
  5. Because it carries out malware type operations to remove malware. It is safe
  6. No problem Iit would probably have taken a few more runs to clear anyway
  7. And continuing on 1. Please open Notepad Click Start , then Run Type notepad .exe in the Run Box. 2. Now copy/paste the entire content of the codebox below into the Notepad window: KillAll:: Driver:: efipsk File:: C:\WINDOWS\system32\ophvbdkn.dll C:\WINDOWS\system32\aqzfmm.dll C:\WINDOWS\system32\aqzfmm.dll C:\WINDOWS\system32\vherfe.dll C:\WINDOWS\system32\diyxgnqa.dll C:\WINDOWS\system32\ubekozu.db C:\WINDOWS\epyvijun._dl C:\WINDOWS\ivepinoze.inf C:\WINDOWS\soluq.lib C:\WINDOWS\system32\kufofyw._dl C:\WINDOWS\system32\khfDsqOi.dll C:\DOCUME~1\Andrew\LOCALS~1\Temp\efipsk.sys
  8. It is a false positive Avast are aware and I would imagine a fix will be out with the next VPS EDIT I have just recieved an update, but not sure if the fix is in it as I don't use punkbuster
  9. OK then this will be a busy post and there may be some bloodshed so I hope you are not squeamish I would recommend copying this post to a text file for reference Download and run ERUNT http://www.larshederer.homepage.t-online.de/erunt/ Start ERUNT, confirm the Welcome message. Type in the name of a restore folder where the backed up registry files should be saved, or click "..." to browse your computer's drives and select a folder. You can also simply leave the default, which is a folder named ERDNT inside your Windows folder, the advantage being that you have access to
  10. Tell you what let me have a deeper look first Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.
  11. Could you go to this site and at the top is a scan for keyboard error resolution and driver updating http://www.softwarepatch.com/utilities/mic...ard-driver.html let me know the result
  12. Intriguing I have removed nothing associated with that, could you re-install the drivers ? Your Java is out of date. Older versions have vulnerabilities that malicious sites can use to infect your system. Please follow these steps to remove older version Java components and update: Download the latest version of Java Runtime Environment (JRE) 6 Update 6 and save it to your desktop. Scroll down to where it says "Java Runtime Environment (JRE) 6 Update 6...allows end-users to run Java applications". Click the "Download" button to the right. Read the License Agreement and then check the box t
  13. Aye not a good move - lets see if we can cure the problem Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below. F2 - REG:system.ini: Shell=explorer.exe C:\WINDOWS\Media\csrss.exe O23 - Service: hpdj - Unknown owner - C:\DOCUME~1\Owner\LOCALS~1\Temp\hpdj.exe (file missing) Now close all windows other than HiJackThis, then click Fix Checked. Close HiJackThis. THEN Next you will need to create the batch fix to do that copy and paste ALL of the above in the quote box to a notepad file. Then in the text file go to FILE > SA
  14. Now the best part of the day ----- Your log now appears clean :thumbsup: Double click OTScanit once again and you should see a CleanUp! button, press that button, you may get prompted by your firewall that OTScanit wants to contact the internet, allow this, a cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will delete all the tools you have downloaded plus itself Now to get you off to a good start we will re-set your restore points so that all the bad stuff is gone for good. Then if you need to restore
  15. A few more to kill Please double-click OTMoveIt2.exe to run it. Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): C:\Users\Diane\236.bat C:\Users\Diane\! C:\Windows\System32\kiaydxsj.dll C:\Windows\System32\ekfyglcb.dll C:\Windows\System32\ngsyxocm.dll C:\Windows\System32\ahovuy.dll C:\Windows\System32\gokuojda.dll C:\Windows\System32\cmacejtl.dll Purity Return to OTMoveIt2, right click in the "Paste List of Files/Folders to be Moved" window (under the yellow bar) and choose Paste. Cli
  16. Yep you do As a Vista user I will require that all the programmes I ask you to run, be run by right clicking the icon and selecting Run as Administrator. Otherwise some programmes may fail to do their job properly Your Java is out of date. Older versions have vulnerabilities that malicious sites can use to infect your system. Please follow these steps to remove older version Java components and update: Download the latest version of Java Runtime Environment (JRE) 6 Update 6 and save it to your desktop. Scroll down to where it says "Java Runtime Environment (JRE) 6 Update 6...allow
  17. Hi that does not look to bad what problems are you experiencig ?
  18. Hi there let me see if I can assist Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below. O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file) O2 - BHO: (no name) - {A49E097A-D6EF-4B2F-8B0F-1230E998587F} - C:\Program Files\Web Technologies\iebt.dll O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file) O3 - Toolbar: Internet Service - {F99D0C20-F8E1-43B6-AB24-3F16BFAEA77B} - C:\Program Files\Web Technologies\iebr.dll O4 - HKLM\..\Run: [NI.UERS_9999_N91S2507] "C:\Documents and Settings\Owner.YOUR-34EFF
  19. You could try this 1 - Flash Drive DisinfectorDownload Flash_Disinfector.exe by sUBs from >here< and save it to your desktop. Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear. The utility may ask you to insert your flash drive and/or other removable drives including your mobile phone. Please do so and allow the utility to clean up those drives as well. Wait until it has finished scanning and then exit the program. Reboot your computer when done. Note: Flash_Disinfector will create a hidden folder named autorun.inf in each partition and every
  20. No problem I will keep this open for a few more days
  21. Hi there - This will either be easy or not dependant on what else I find As a Vista user I will require that all the programmes I ask you to run, be run by right clicking the icon and selecting Run as Administrator. Otherwise some programmes may fail to do their job properly Download and save to your desktop OTCleanit we will use this later Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below. O2 - BHO: Media Player Classic - {CE0487CA-8B02-431E-BA63-D38844E020B5} - C:\Windows\ausctv32a.dll Now close all windows other than HiJack
  22. In that case what can I say but - you are done Now the best part of the day ----- Your log now appears clean :thumbsup: Double click Otmoveit once again and you should see a CleanUp! button, press that button, you may get prompted by your firewall that Otmoveit wants to contact the internet, allow this, a cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will delete all the tools you have downloaded plus itself . MBAM will need to be uninstalled via Add/remove Now to get you off to a good start
  23. Ref AVG I would suggest you uninstall it - I will give you installation instructions for a new free AV Ref Java - install update 5 and I will work that out later Then regfix Then Combofix Then the AV download First you have to download an antivirus. This program is basic for the security of your computer and in todays age not having one will probably lead to disaster for your computer. Please go HERE and download avast! 4 Home Edition to your desktop. Locate the file that you just downloaded, double-click on the file to launch the installation of avast! Click Next on the
  24. Hmm lots to see there Firstly your AVG is well out of date and so is your Jave, a Vundo infection has infiltrated your Authentication. You have Norton remnants on your system as well. So to work First you must update AVG Your Java is out of date. Older versions have vulnerabilities that malicious sites can use to infect your system. Please follow these steps to remove older version Java components and update: Download the latest version of Java Runtime Environment (JRE) 6 Update 5 and save it to your desktop. Scroll down to where it says "JJava Runtime Environment (JRE)
  25. Hmm I haven't seen such a small log in a while Lets have a deeper look Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.
×
×
  • Create New...