Search:

Ken, I currently have no access to another computer to verify if the modem is infected.

ComboFix 11-06-11.01 - Tim 06/12/2011 12:51:19.7.1 - x86 NETWORK
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.254.150 [GMT -4:00]
Running from: C:\Documents and...

File already submitted: The file sent has already been analysed by VirusTotal in the past. This is same basic info regarding the sample itself and its last analysis:

MD5:...

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/10/2011 at 12:21 PM

Application Version : 4.53.1000

Core Rules Database Version : 7245
Trace Rules Database Version:...

Ken, Busy with work, having difficulty finding time to catch up! I will be performing theses tasks over the next couple of days.. Thanks for all your help. T

I ran the Hitman and then did a search under a new tab, once again and was redirected to scour, it's the devil!!!

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:49:41 PM, on 6/7/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
...

I ran both of these applications as requested and did a reboot with the cable modem disconnected. Once back up and running and attempted a search under a new tab and was redirected once again, scour...

Ken, I just have an icon for the RSIT, no Hijack This. Maybe I'm confused, long day. However, either send me a link or clue so we can attempt this process. Thanks again, T

info.txt logfile of random's system information tool 1.08 2011-06-07 07:45:39

======Uninstall list======

-->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\System32\\MSIEXEC.EXE...

Logfile of random's system information tool 1.08 (written by random/random)
Run by Tim at 2011-06-07 07:44:52
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 15 GB (44%) free...

SystemLook 04.09.10 by jpshortstuff
Log created at 07:30 on 07/06/2011 by Tim
Administrator - Elevation successful

========== filefind ==========

Searching for "Scour.com"
No files found.
...

The same thing happened on a previous run, the extras log is MIA. I went into the c:/ OTL folder, and looked for the file, its not present.

OTL logfile created on: 6/6/2011 9:27:15 PM - Run 4
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Tim\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600)...

.
DDS (Ver_2011-06-03.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_23
Run by Tim at 21:13:26 on 2011-06-06
Microsoft Windows XP Home Edition ...

Scour was not listed, google and yahoo, thats it!

I have a simple hook up with Fios cable Internet service. I just did a simple search for "beach cruisers" and was redirected. Without posting the link it looks like it says, scour.com, If I click on...

Yes, I just opened a new tab and attempted a google search and was redirected, otherwise it seems to being operating nicely!

Avira AntiVir Personal
Report file date: Monday, June 06, 2011 12:00

Scanning for 2708155 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online...

This process went smoothly, and yes I am interested in upgrading the memory if it will allow me to salvage this unit for another year or so. in addition the anti-virus located a virus. I will send...

OTL logfile created on: 6/5/2011 2:28:40 PM - Run 3
OTL by OldTimer - Version 3.2.23.0 Folder = C:\Documents and Settings\Tim\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600)...

Malwarebytes, No Malicious Threats found.

GMER 1.0.15.15640 - http://www.gmer.net
Rootkit scan 2011-06-05 12:23:03
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3...

Still getting the redirect on a google search, and no sound from the internet.


aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-05 10:07:39...

Ken, I was able to reboot out of safemode mode but very sluggish. I then noticed a yellow triangle with an exclamation mark appear in the the toolbar. As soon as put the pointer over it without...

I re-installed a fresh copy of the TDSSKiller, but once again it will not perform after I click the run tab. In addition it appears that all other functions are working properly except for the sound....

Out of Safe Mode, did it by itself during the combo fix: See Log.

ComboFix 11-06-04.02 - Tim 06/04/2011 13:39:43.6.1 - x86 NETWORK
Microsoft Windows XP Home Edition ...

After complete all the tasks you had requested I took one on the chin. The computer locked up after combo fix had displayed the log. So I had to reboot with hopes of recovering the log to send to...

I cleared out all the previously downloaded folders and attempted a new download as indicated. After extracting all files, the run box prompts, I click the run box and nothing happens from there...

aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-04 07:13:23
-----------------------------
07:13:23.328 OS Version: Windows 5.1.2600 Service Pack 3
07:13:23.328 ...

aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-03 20:55:22
-----------------------------
20:55:22.203 OS Version: Windows 5.1.2600 Service Pack 3
20:55:22.203 ...

Ken, After sending you that last post I had a chance to use the computer, I thought all systems were a go, however I tried a search under a new tab and was redirected. I attempted a few other searchs...

Ken, Sorry for the confusion the fix was left in an OTL folder on the C drive from when I previously used your services in January. I looked numerous places for the extra log which was not displayed...

Update: Running quicker now, I spoke to soon.

All processes killed
========== OTL ==========
No active process named explorer.exe was found!
Service DUAYVYQW stopped successfully!
Service...

Update: The good news is there are no pop ups or re-directs, however extremely slow.....Night and day difference from when I was operating in Safe Mode. More so with pulling up programs... The first...

ATF cleaner complete, ESET complete as well.

C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP2114\A0256769.exe a variant of Win32/Kryptik.OGD trojan
C:\System...

I think were in luck!

****This is the message I got when I attempted to upload the log.***

(Your file of 128.9 KB bytes exceeds the forum's limit of 48.8 KB for this filetype.)

I am getting a message indicating that the post is too long for the combo fix report. The TDSKiller would not work as well, I deleted it and re-loaded it but it would not fire up!!!

Sorry about the resend of the original I could not see the post in the thread, but good now!

aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-01 20:59:01...

aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-01 18:40:54
-----------------------------
18:40:54.859 OS Version: Windows 5.1.2600 Service Pack 3
18:40:54.859 ...

aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-06-01 18:40:54
-----------------------------
18:40:54.859 OS Version: Windows 5.1.2600 Service Pack 3
18:40:54.859 ...

I was unable to run the TDS Killer, however I ran the other requested programs. See log from Malwarebytes.

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Database version: 6745
...

This lame virus, Windows XP Recovery, appeared yesterday. I have booted up in Safe Mode with Networking, however I can not see all my programs and my desk top is black. I think this virus has been...

Please help, Thanks

Ken,
Once again, thanks for your assistance with this matter. I do not want to reinstall AVG based on my past experience. The computer is running great at this time but would like a...

ComboFix 11-01-02.02 - Tim 01/02/2011 21:58:49.4.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.254.102 [GMT -5:00]
Running from: c:\documents and settings\Tim\My...

"Pay Dirt", the Revo Uninstaller located that CA Pest Patrol Realtime Protection!!! Would you like me to run the Combo Fix now? AVG has been deleted once again for now, it was choking me out and I...

Sorry moving slow here! I attempted to locate anything that looked like the below listed program in add/remove programs but was unsuccessful in my efforts. I see that OTL found it but I can't at this...

So I ran the App Remover both ways, "Remove Security Application" and "Clean Up a Failed Uninstall". Both yielded negative results for "CA", just the AVG. I did not remove the AVG yet and will be...

Negative, I can even remember using CA anti-virus nor can I locate any files associated with it on the computer. We just need a simple Anti-virus software, is there such a thing?