Ken545, please can you look at this thread
http://forums.spybot.info/showthread.php?t=62601
it is another computer and a new thread.
Thank You
Type: Posts; User: matson; Keyword(s):
Ken545, please can you look at this thread
http://forums.spybot.info/showthread.php?t=62601
it is another computer and a new thread.
Thank You
KEN545 YOU'RE GOOD!!!!!
I follow your instruction and the scan came CLEAN!!!!!!!!!!
well I think the machine is back on track. I'll put some protection to surf safer and THANK YOU VERY MUCH...
So the emulation driver is enable, thank you.
i ran spybot and again, click.giftload. I am so afraid I took no action.
I am still sick? I mean the computer, beside that, no redirect so far and no...
ok you answered all the questions except that one:
"I remembered that I used defogger to disable some thing, but I don't remember what. do I have to reinstall defogger in order to unable whatever...
One more thing can you please have a look at this scan from RogueKiller
before I use to have a host file (some 125....) now this is Yp1. is it bad?
RogueKiller V4.3.7 by Tigzy
contact at...
I did exactly what you told me to do.
Technically, the virus is gone. I'll monitor the behavior of the computer the next hours to be sure.
OTL did not remove everything. for example, aswmbr.exe,...
about the keyboard icon, this the language icon of windows which usually stays next to the system tray.
if i reload the recovery DVD, I'll have to reinstall the whole system I think..
log of eset scan
C:\System Volume Information\_restore{D5341F9C-33F7-43CF-8BD2-1AE937C9BA1B}\RP2\A0002492.exe probably a variant of Win32/Agent.EDQCSRE trojan
New OTL log after reboot and fix
OTL logfile created on: 2011-05-08 16:56:16 - Run 3
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Documents and Settings\NICOU\Desktop
Windows XP Home...
here is the OTL log after the runfix with the code
All processes killed
========== PROCESSES ==========
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E...
I just checked IE add-ons, I don't see bigseekpro there too.
I just realized that I have a program named "any video to DVD"
I think I never installed that program. it's really suspicious because I...
Bigssekpro is not installed in firefox add-ons.
I don't see it in the firefox add-ons.
I am a bit confuse
Ken545 I have a question:
I disable IE as my main internet browser. the problem is I can't find it anymore to go delete the add-on...
How and where can I find the ie icon to start internet...
I think the keyboard icon went away after one of the fixes...
I am doing the back up of the registry and the scan
the log are coming next
after checking in google, That bigseekpro thing get installed after installation of the add-on IMTOO in firefox. the thing is I did not install any of them...
so I am being used!!!! big time...
I have no idea what is BigseekPro!!!!!
I don't even know that thing was on the computer.
I want to get rid of it just like the whole virus. Please i want my perfectly working computer back!!!!
I...
I just notice that I don't have the small keyboard icon next to the system tray. the space is there but it is empty...
OTL log
OTL logfile created on: 2011-05-07 21:55:38 - Run 2
OTL by OldTimer...
part5
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4...
part4
+ 2011-05-07 18:15 . 2010-12-20 23:59 1210880 c:\windows\ie8updates\KB2497640-IE8\urlmon.dll
+ 2011-05-07 18:15 . 2010-12-20 23:59 5961216 ...
part3
- 2004-08-04 08:00 . 2008-08-14 10:04 138496 c:\windows\system32\drivers\afd.sys
+ 2004-08-04 08:00 . 2008-10-16 14:43 138496 c:\windows\system32\drivers\afd.sys
+...
part2
.
((((((((((((((((((((((((((((( SnapShot@2011-04-29_23.54.55 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-07-30 00:10 . 2008-07-30 00:10 26112 ...
part 1
ComboFix 11-05-07.01 - NICOU 2011-05-07 20:21:01.3.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1573 [GMT -3:00]
Running from: c:\documents and...
I already installed Combo Fix. So here the log
ComboFix 11-04-29.02 - NICOU 2011-05-07 19:54:42.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1621 [GMT -3:00]...
Malwarebytes log
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6528
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
DDS log
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by NICOU at 15:12:11,48 on 2011-05-07
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_22
Microsoft Windows XP Home Edition ...
So I ran the program as you said and at the fix step the computer got stuck for a while. so restarted and scanned again this time nothing showed up, I guess the fix worked
her ethe log of the...
Thank You Ken545, here is the log
aswMBR version 0.9.5.256 Copyright(c) 2011 AVAST Software
Run date: 2011-05-06 16:16:55
-----------------------------
16:16:55.453 OS Version: Windows...
svchost.exe takes 100%
random advertising windows open
I am being redirected to crazy websites
and the computer is slow and the processor is working 100%
and I have a message Generic Hort Process...