Thank you Ken for looking over everything :bigthumb::thanks:
Type: Posts; User: girlie100; Keyword(s):
Thank you Ken for looking over everything :bigthumb::thanks:
ok I downloaded from the link above, it started updating and then bluescreened my PC, so I restarted ran again and then got an error msg that there was a newer version which took me to the website...
Thanks Ken,
My computer bluescreened a couple of times whilst trying to run the ESET scanner, but combofix ran fine and it didn't crash after that. I know Vista isn't the best OS around and I need...
ComboFix 13-04-15.01 - User 15/04/2013 12:56:49.1.4 - x64
Microsoft® Windows Vista™ Ultimate 6.0.6002.2.1252.44.1033.18.5886.3440 [GMT 1:00]
Running from: c:\users\User\Downloads\ComboFix.exe...
Morning Ken,
ESET scanner only gets to about 30% and then the PC crashes? have tried to run it about 6 times now :sad:
Morning Ken,
I have had to leave the scanner running as it crashed a couple of times, I'm away the weekend so won't be back at PC till Monday when hopefully I will have a log file for you. please...
It should be there over 3 posts
Morning Ken,
I had to split the report up due to length, hope thats OK.
It only found one threat 'Akamai' which I think is a douwnloader for Autodesk so I didn't remove it thought I would check...
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:53:55.0860 2868 NetTcpPortSharing - ok
08:53:55.0930 2868 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 ...
C:\Windows\System32\browser.dll
08:53:38.0378 2868 Browser - ok
08:53:38.0519 2868 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
08:53:38.0533 2868...
08:53:00.0124 2868 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:53:00.0820 2868 ============================================================
08:53:00.0820 2868 Current date /...
When I run OTL I just get as attached;
aswMBR updated and started the scan got quite a bit through it before it closed with the attached screen grab.
:sad:
thanks Ken, yep everything has been right clicked and run as administrator.
log from Rkill:
Rkill 2.4.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013...
Morning Ken,
Tried OTL in safe mode but same problem, OTL encountered a problem and then closes.
There has been no pop ups or browser re-directs since spybot removed it.
Here is the log from Malwarebytes:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Database version:...
OTL won't run, just asks to close.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.8.3 (04.05.2013:1)
OS: Windows (TM) Vista Ultimate x64
Ran by User on 09/04/2013 at...
Thanks Ken for looking at this, I did do a Spybot scan in safe mode yesterday and it appeared to remove the Yontoo.pageRage which then allowed me to uninstall the Iminent toobar which has now gone...
Please help, malware that Spybot cannot remove:
DDS txt:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.6001.19401 BrowserJavaVersion: 10.17.2
Run by User at 13:08:07 on...
:D: thanks for all your help!!
Zara
oh yeah, i have tried IE with no add ons and it is much better, so its probably the toolbars installed for noton ect.
i have completed the steps that you gave and all the tools removed except the ATF-Cleaner. shall i remove this myself or leave it for now?
have deleted both folders, its slow loading homepage when you start up and slow loading pages when you go to new websites, however, i'm used to using firefox so it may just be me??
its slow starting up, and loading new pages sometimes. where do i uninstall registry patrol from? its not in add/remove? thanks
apologies, i found the spybot report, if this helps?
--- Report generated: 2010-02-18 18:00 ---
Congratulations!: No immediate threats were found. (Status)
--- Spybot - Search &...
The scan completed, but no log file that i could see, however i could export this as a txt file:
C:\Program Files\Registry Patrol\RegistryPatrol.exe a variant of Win32/Adware.RegistryPatrol...
i cant get the kaspersky online scanner to run:
Program download is in progress. Please wait. To allow further operations of Kaspersky Online Scanner 7.0, agree in the security warning to launch...
the timestamp is correct so here is the log file:
ComboFix 10-02-19.04 - Any Authorised User 20/02/2010 12:25:20.3.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.502.267...
i dragged the CFScript into combofix and the scan run as normal, however where the last log file was just on my c drive, i cant find the new log file, there is a combofix.txt in the combofix folder,...
Sorry, it was my last try before i restored from disks,
log file:
ComboFix 10-02-17.02 - Any Authorised User 18/02/2010 16:44:26.2.1 - x86
Microsoft Windows XP Professional ...
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-12-01.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install...
DDS (Ver_09-12-01.01) - NTFSx86
Run by Any Authorised User at 10:53:56.21 on 20/02/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.502.99 [GMT...
Please help, Malwarebytes said its clean but its not as spybot scans virtumonde.dll, virtumonde.sdc among many others!!!! i think its deep in the registry...........Please Help
Please help,
i am trying to remove Virtumonde from a laptop running XP, at first i had no function from internet explorer, just kept trying to reload the page, i uninstalled iexplorer 8 and...