Jump to content

Shaba

Trusted Malware Techs
  • Content Count

    43
  • Joined

  • Last visited

About Shaba

  • Rank
    Member

Previous Fields

  • Teams:
    Nothing Selected
  1. Since this issue appears resolved ... this Topic is closed. If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
  2. Hi Then you're clean! Now that you are clean, please follow these simple steps in order to keep your computer clean and secure: You can remove all tools we used. Looking over your log, it seems you don't have any evidence of a third party firewall. As the term conveys, a firewall is an extra layer of security installed onto computers, which restricts access to systems from the outside world. Firewalls protect against hackers and malicious intruders. I want you to download a free firewall NOW from one of these excellent vendors: 1) Comodo 2) Sunbelt/Kerio 3) Agnitum
  3. Since this issue appears resolved ... this Topic is closed. If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
  4. Hi Empty these folders: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\ C:\QooBox\Quarantine C:\VundoFix Backups\ Empty Recycle Bin All viruses other are in system restore and inactive. I give you later instructions how to empty it. Other than that, any problems left?
  5. Hi Please do an online scan with Kaspersky Online Scanner. You will be prompted to install an ActiveX component from Kaspersky, Click Yes. The program will launch and then start to download the latest definition files. Once the scanner is installed and the definitions downloaded, click Next. Now click on Scan Settings In the scan settings make sure that the following are selected: o Scan using the following Anti-Virus database: + Extended (If available otherwise Standard) o Scan Options: + Scan Archives
  6. Since this issue appears resolved ... this Topic is closed. If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
  7. Hi Open HijackThis, click do a system scan only and checkmark these: R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: (no name) - {2E9D4C81-9F27-4c14-B804-7B0F6BC88A4F} - C:\Program Files\Outerinfo\Outerinfo.dll (file missing) O2 - BHO: (no name) - {554B7FB3-226C-4C14-A649-B8B455F4ED15} - C:\WINDOWS\system32\awtsq.dll (file missing) O2 - BHO: (no name) - {6119178A-DC64-8BBC-1864-8C8DB956D2CB} - C:\WINDOWS\system32\qestzfwy.dll (file missing) O2 - BHO: (no name) - {614
  8. Hi Then you're clean! Now that you are clean, please follow these simple steps in order to keep your computer clean and secure: Update Acrobat Reader to version 8.1. Disable and Enable System Restore. - If you are using Windows XP then you should disable and re-enable system restore to make sure there are no infected files found in a restore point. You can find instructions on how to enable and reenable system restore here: Windows XP System Restore Guide Reenable system restore with instructions from tutorial above Make your Internet Explorer more secure - This can
  9. Hi "While running the Kaspersky scanner, not only did Kaspersky find viruses, my Norton Autodetect also found a bunch of viruses including many instances of Vunda, Downloader, and Trojan Horse. Looks like there is more work to do" That's normal that Norton warns when kaspersky scans files. Empty these folders: C:\Program Files\Norton AntiVirus\Quarantine C:\QooBox\Quarantine C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
  10. Hi Tek12 Please download VundoFix.exe to your desktop. Double-click VundoFix.exe to run it. Click the Scan for Vundo button. Once it's done scanning, click the Remove Vundo button. You will receive a prompt asking if you want to remove the files, click YES Once you click yes, your desktop will go blank as it starts removing Vundo. When completed, it will prompt that it will reboot your computer, click OK. Please post the contents of C:\vundofix.txt and a new HiJackThis log in a reply to this thread. Note: It is possible that VundoFix encountered a file it could not remove. In this case,
  11. Hi Open HijackThis, click do a system scan only and checkmark these: R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O2 - BHO: (no name) - {465E08E7-F005-4389-980F-1D8764B3486C} - (no file) O2 - BHO: (no name) - {6008102B-2ACC-428A-989A-0FD82670D768} - C:\WINDOWS\system32\vtutt.dll (file missing) O2 - BHO: (no name) - {86a270ba-7eff-4978-8f78-d9510c458056} - C:\WINDOWS\system32\qqtqnio.dll (file missing) O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE Close all windows including browser and press fix checked. Reboot. Please do an online scan
  12. Hi HijackThis log cuts off. Please re-send it
  13. Hi Much better Open notepad and copy/paste the text in the quotebox below into it: File:: C:\WINDOWS\system32\ekoplmhh.dll C:\WINDOWS\system32\ybaehlmy.dll C:\WINDOWS\system32\maliyjrr.dll C:\WINDOWS\system32\gjkqobcp.dll C:\WINDOWS\system32\qqtqnio.dll Folder:: C:\temp Save this as "CFScript" This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply together with a new HijackThislog.
  14. Hi Please download VundoFix.exe to your desktop. Double-click VundoFix.exe to run it. Click the Scan for Vundo button. Once it's done scanning, click the Remove Vundo button. You will receive a prompt asking if you want to remove the files, click YES Once you click yes, your desktop will go blank as it starts removing Vundo. When completed, it will prompt that it will reboot your computer, click OK. Please post the contents of C:\vundofix.txt and a new HiJackThis log in a reply to this thread. Note: It is possible that VundoFix encountered a file it could not remove. In this case, VundoF
  15. Hi Then you're clean! Now that you are clean, please follow these simple steps in order to keep your computer clean and secure: Fix this entry with HijackThis (it's a leftover): O20 - Winlogon Notify: tuvvwts - tuvvwts.dll (file missing) Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. A malicious site could render Java content under older, vulnerable versions of Sun's software if the user has not removed them. Please follow these steps to remove older version Java components and update: Download the latest version o
×
×
  • Create New...