Jump to content

Change Mode

essexboy

Trusted Malware Techs
  • Content Count

    752
  • Joined

  • Last visited

Everything posted by essexboy

  1. So the big question is - how is your system running now ?
  2. That doesn't look to bad now so lets go for the waifs and strays Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Quick Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan is complete, click OK, then Show Results to view the r
  3. All MBAM found was a registry orphan Now the best part of the day ----- Your log now appears clean :thumbsup: Double click OTCleanit and you should see a CleanUp! button, press that button, you may get prompted by your firewall that OTCleanitwants to contact the internet, allow this, a cleanup.txt will be downloaded. This will delete all the tools you have downloaded plus itself. MBAM will need to be uninstalled via Add/remove Now to get you off to a good start we will re-set your restore points so that all the bad stuff is gone for good. Then if you need to restore at some st
  4. Hi lots of meanies there I think - so lets get our hands dirty and clean you up. This is a long fix so I would recommend copying this post to a text file for reference A malicious .DLL file is disrupting the LSP chain on your computer. We need to get rid of it.Please download LSPFix from here. Run the LSPFix.exe that you have just finished downloading. Check the I know what I'm doing box. In the Keep box you should see one or more instances of ouviewer.dll. Select every instance of ouviewer.dll and move each one to the Remove box by clicking the >> button. When you are done c
  5. That looks a lot better now I would like to do a further sweep to ensure that all orphan registry entries are cleared. And download a small programme to do a cleanup at the end Please download and save to your desktop http://download.bleepingcomputer.com/oldtimer/OTCleanIt.exe THEN Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and i
  6. Hi - as I sent you here I might as well fix you. It is vitally important that you read the following carefully before downloading the programme, as if it is not done correctly it will not work Please download ComboFix from Here or Here to your Desktop. **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved and renamed following this process directly to your desktop** If you are using Firefox, make sure that your download settings are as follows:Tools->Options->Main tab Set to "Always ask me wher
  7. No problem - just be happy my first thoughts were ill founded I will keep this open for you
  8. From that it appears that several of your system files have been corrupted, can you get hold of a 2000 disc ? What you should do now is uninstall all of the anti-virus programmes and download and install a fresh copy of the one you want to keep. I can see no evidence of malware on your logs but sfc did replace several files from the dll cache. Let me know how you progress and I will see if I can find any further info
  9. Nothing evident on that scan Lets check the integrity of your files next and see where that gets us From the Start menu, select Run. In the Open field, type sfc /scannow (Note: There is a space between sfc and /scannow) Select the OK button. Follow the prompts throughout the System File Checker process. Reboot the computer when System File Checker completes. Let me know the result
  10. OK lets go a different route then cease combofix Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.
  11. Is the message not a valid win32 application by any chance ? Please download ComboFix from Here or Here to your Desktop. **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved and renamed following this process directly to your desktop** If you are using Firefox, make sure that your download settings are as follows:Tools->Options->Main tab Set to "Always ask me where to Save the files". During the download, rename Combofix to Combo-Fix as follows: It is important you rename Combofix dur
  12. OK go to the Hijackthis forum and post a log to get you cleaned up
  13. If that does restore the taskbar and icons I would highly recommend posting in the hijackthis forum
  14. If you could post a Hijackthis log in the forum I will pick it up Can you access task manager ? Download the file to where you can access it Then run fixshell.com as a new task (use browse to find the file)
  15. That is usually an indication of malware I do have a shell registry fix on my website http://cid-32d8666f4048075b.skydrive.live....Malware%20files download the fixshell.cmd or fixshell.zip then run the command file
  16. In that case subject to you having no more problems Now the best part of the day ----- Your log now appears clean You may now delete the programmes I had you download Now to get you off to a good start we will re-set your restore points so that all the bad stuff is gone for good. Then if you need to restore at some stage you will be clean. There are several ways to reset your your restore point but this is my method: 1. Select Start > All Programs > Accessories > System tools > System Restore. 2. On the dialogue box that appears select Create a Restore Poin
  17. Hi Gem and welcome back Well your log looks pretty good now. Just one more scan to clear the orphan registry entries Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Quick Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan
  18. No problem on the timing - well we have removed one rootkit so far and I believe this little divil hides within the windows startup or as an ads to a legitimate file .. But we shall see. Have a nice weekend
  19. OK that cleared one little nasty so lets now go for the main culprit Please download Navilog1 by IL-MAFIOSO: http://pagesperso-orange.fr/il.mafioso/Navifix/Navilog1.exe (*Alternate download location Here) * Save it to your Desktop. * Double-click on Navilog1.exe to install the program. * When the installation is complete, the tool will start automatically. * If it doesn't start automatically, please double-click on the Navilog1 shortcut on your Desktop to run it. * Press E for English from the language Menu. * Type 1 in the next Menu to select Search and
  20. Hi Gemma this looks like a sneaky one - and I do love them Firstly nothing is showing in your log so I will run a general purpose tool to see what is what Please download ComboFix from Here or Here to your Desktop. **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop** Please, never rename Combofix unless instructed. Close any open browsers. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. ----------------------
  21. It is brand new and is an intrusion prevention type programme I downloaded it and am trialing it on Vista. If I like it it will stay - if not I will bin it Running Avast - SAS no problems yet
×
×
  • Create New...