Page 2 of 4 FirstFirst 1234 LastLast
Results 11 to 20 of 38

Thread: Click.GiftLoad problem.

  1. #11
    Junior Member
    Join Date
    Mar 2011
    Posts
    21

    Default

    Malwarebytes Anti-Malware Log:

    Malwarebytes' Anti-Malware 1.50.1.1100
    www.malwarebytes.org

    Database version: 6145

    Windows 6.1.7600
    Internet Explorer 8.0.7600.16385

    3/23/2011 7:16:06 PM
    mbam-log-2011-03-23 (19-16-06).txt

    Scan type: Full scan (C:\|D:\|M:\|)
    Objects scanned: 518403
    Time elapsed: 2 hour(s), 54 minute(s), 17 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 2

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    c:\Windows\System32\config\systemprofile\AppData\Local\dnu.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    c:\Windows\System32\config\systemprofile\AppData\Local\rgn.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

  2. #12
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,169

    Default

    Hi.

    I removed all suggested programs (except Weatherbug,
    OK check this for myself please:-

    Right-click a blank area on your Desktop >> and select Gadgets >> if Weatherbug is present click once on it to highlight >> now right-click on Weatherbug and select Uninstall.

    Also, there is an item on my desktop with the name desktop.ini, was this due to the OTL fix?
    Aye it should disappear when remove OTL via a specific manner.

    After the MBAM reboot, I had no startup issues.
    Good, however to play it safe/double check please carry out the below and then we will go from there...

    Run Windows 7 SRD:

    Please boot-up your machine with the Windows 7 DVD...
    • If not sure how to, a very good tutorial can be read here.
    • You will have to answer a few basic questions then select the option Repair your computer
    • At the the System Recovery Options screen click Windows 7 to highlight then Next>
    • Now click on/select Startup Repair
    • If prompted to use System Restore, select Cancel.
    • The same if prompted to Send information about this problem (recommended), select Don't send.
    • Click Finish when Startup Repair has completed, remove the SRD disc and then click on Restart
    Windows 7 - System File Checker:

    You may require your Windows 7 DVD for the below...

    • Click on Start(Windows 7 Orb).
    • Click on All Programs >> Accessories
    • Right click on Command Prompt and select Run as Administrator.
    • Click on Continue in the UAC prompt.
    • At the Command Prompt C:\Windows\System32> type in the following exactly:
    • CD C:\
    • Then depress the Enter/Return key, then type in the following exactly:
    • sfc /scannow
    • Then depress the Enter/Return key.
    Note: This may take awhile to finish. When completed close the Administrator Command Prompt window, via typing Exit then depress the Enter/Return key.
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  3. #13
    Junior Member
    Join Date
    Mar 2011
    Posts
    21

    Default

    Right-click a blank area on your Desktop >> and select Gadgets >> if Weatherbug is present click once on it to highlight >> now right-click on Weatherbug and select Uninstall.
    Ah, that did the trick.

    Ran Startup Repair and it said that no problems were detected. I'm about to have to go to work, so since you said the System File Checker scan will take awhile, I'll have it run while I'm gone. I'll reply again upon my return and its completion.

    Also, will there be a log of some sort that I'll need to provide after the SFC scan?

  4. #14
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,169

    Default

    Hi.

    Ah, that did the trick.
    Good.

    Ran Startup Repair and it said that no problems were detected. I'm about to have to go to work, so since you said the System File Checker scan will take awhile, I'll have it run while I'm gone. I'll reply again upon my return and its completion.
    OK.

    Also, will there be a log of some sort that I'll need to provide after the SFC scan?
    There will be one created but I do not actually require to review it persay...If in the event a large ammount of say system files were replaced then yes I would like to review, though you would probably have to send it to a Zip file and then attach.

    As it stands merely run the scan and all should be fine etc.
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  5. #15
    Junior Member
    Join Date
    Mar 2011
    Posts
    21

    Default

    The scan finished. It said that it did not find any integrity violations.

    I await your next instructions.

  6. #16
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,169

    Default

    Hi.

    The scan finished. It said that it did not find any integrity violations.
    Good.

    New Adobe Reader Installation:
    • Go here and click on AdbeRdr1001_en_US.exe to download the latest version of Adobe Reader.
    • Save this file to your desktop and run it to install the latest version of Adobe Reader.
    • After the new Reader is installed, Open Adobe Reader X. (Right click and Run as administrator with Windows 7)
    • OK the license.
    • Click on Edit and select Preferences.
    • On the Left, click on the Javascript category and Uncheck Enable Acrobat Javascript.
    • Click on the Security (Enhanced) category and Uncheck Automatically trust sites from my Win OS security zones.
    • Click on the Trust Manager category and Uncheck Allow opening of non-PDF file attachments with external applications.
    • Click the OK button
    New Java Installation:
    • Click here to visit Java's website.
    • Scroll down to JDK 6 Update 24 (JDK or JRE). Click on Download JRE.
    • Select Windows from the drop-down list for Platform.
    • Check (tick) Java SE Runtime Environment 6u24 with JavaFX License Agreement box and click on Continue.
    • Click on jre-6u24-windows-i586.exe link to download it and save this to a convenient location.
    • Right-click on jre-6u24-windows-i586.exe and select Run as Administrator to install Java.
    Note: During installation de-select the option to install McAfee Security Scan Plus if offered.

    Update FireFox:
    • Launch the browser >> Help >> Check for Updates...
    • Click on the Update Firefox.
    • Restart Firefox when prompted.
    TFC(Temp File Cleaner):
    • Please download TFC to your desktop,
    • Save any unsaved work. TFC will close all open application windows.
    • Right-click TFC.exe and select Run as Administrator to run the program.
    • Click the Start button in the bottom left of TFC
    • If prompted, click "Yes" to reboot.
    Note: Save your work. TFC will automatically close any open programs, let it run uninterrupted. It should not take longer than a couple of minutes , and may only take a few seconds. Only if needed will you be prompted to reboot.

    ESET Online Scanner:

    Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

    Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.
    • Please go here to run the scan.
      Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
      All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.
    • Select the option YES, I accept the Terms of Use then click on:
    • When prompted allow the Add-On/Active X to install.
    • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
    • Now click on Advanced Settings and select the following:

    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology

    • Now click on:
    • The virus signature database... will begin to download. Be patient this may take some time depending on the speed of your Internet Connection.
    • When completed the Online Scan will begin automatically.
    • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
    • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
    • Now click on:
    • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
    • Copy and paste that log as a reply to this topic.
    Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

    When completed the above, please post back the following in the order asked for:
    • How is your computer performing now, any further symptoms and or problems encountered?
    • Eset Log.
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  7. #17
    Junior Member
    Join Date
    Mar 2011
    Posts
    21

    Default

    Completed the updates/installations, as well as the scan.

    I haven't had any boot up issues today. IE has still been hanging/freezing when new tabs are opened, though not as often as before. Google links still re-direct to random ad sites/search sites.

    ESET Log:

    ESETSmartInstaller@High as CAB hook log:
    OnlineScanner.ocx - registred OK
    # version=7
    # iexplore.exe=8.00.7600.16385 (win7_rtm.090713-1255)
    # OnlineScanner.ocx=1.0.0.6425
    # api_version=3.0.2
    # EOSSerial=b73b6b1ef4003d4486f0b0459a693d18
    # end=finished
    # remove_checked=false
    # archives_checked=true
    # unwanted_checked=true
    # unsafe_checked=true
    # antistealth_checked=true
    # utc_time=2011-03-25 07:00:07
    # local_time=2011-03-25 02:00:07 (-0600, Central Daylight Time)
    # country="United States"
    # lang=1033
    # osver=6.1.7600 NT
    # compatibility_mode=5121 16777213 100 75 245389 14066634 0 0
    # compatibility_mode=5893 16776574 66 94 0 52611229 0 0
    # compatibility_mode=8192 67108863 100 0 0 0 0 0
    # scanned=390055
    # found=1
    # cleaned=0
    # scan_time=13172
    C:\_OTL\MovedFiles\03232011_154719\C_Users\Justin\AppData\Local\ahafuyip.dll_old.old a variant of Win32/Kryptik.KNA trojan (unable to clean) 00000000000000000000000000000000

  8. #18
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,169

    Default

    Hi.

    IE has still been hanging/freezing when new tabs are opened, though not as often as before. Google links still re-direct to random ad sites/search sites.
    There is a new version of IE now namely IE9 and I advise you update to this when I give the all clear. Anyway for not run the below and let myself know the outcome please...

    Reset IE8:
    • Please download this Microsoft FixIt and save it to the desktop.
    • Double click on MicrosoftFixit50195.exe select I Agree and click on Next.
    • Follow the on-screen prompts.
    • You may delete MicrosoftFixit50195.exe when finished and or keep it if any problems in the future with IE8.
    • Next time IE8 is launched you will be prompted to reapply settings again, this is normal.
    Note: Any add-ons will require to be reapplied after the above reset.
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

  9. #19
    Junior Member
    Join Date
    Mar 2011
    Posts
    21

    Default

    Finished with the IE8 Reset. I don't have much time to test, due to having work in a short while, but from what I tried I experienced no trouble opening numerous tabs and windows. Google links still re-direct, though.

  10. #20
    Security Expert-Emeritus Dakeyras's Avatar
    Join Date
    Sep 2008
    Location
    The Tundra
    Posts
    1,169

    Default

    Hi.

    Finished with the IE8 Reset. I don't have much time to test, due to having work in a short while, but from what I tried I experienced no trouble opening numerous tabs and windows. Google links still re-direct, though.
    OK run the below for me when able and we will go from there OK.

    Scan With RKUnHooker:

    • Please Download Rootkit Unhooker Save it to your desktop.
    • Now right-click on RKUnhookerLE.exe and select Run as Administrator to run it.
    • Click the Report tab, then click Scan.
    • Check (Tick) Drivers, Stealth, Files, Code Hooks. Uncheck the rest. then Click OK.
    • Wait till the scanner has finished and then click File, Save Report.
    • Save the report somewhere where you can find it. Click Close.
    • Copy the entire contents of the report and paste it in a reply here.
    Note: You may get this warning it is ok, just ignore it:

    "Rootkit Unhooker has detected a parasite inside itself!
    It is recommended to remove parasite, okay?"
    Mammuthus Hibernian Scouserus, member of ASAP and UNITE.

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •