Desktop keeps changing after each boot up and random sites keep popping up

Status
Not open for further replies.
OTM log

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
C:\Program Files\SlySoft\AnyDVD\Patch.exe moved successfully.
C:\Windows\winsxs\x86_microsoft-windows-e..memorydevicesdriver_31bf3856ad364e35_6.0.6002.18005_none_fd0def15b6a4c89f\ecache.sys moved successfully.
G:\Micro usb\Nero 8\Nero-8.3.6.0_eng_update.exe moved successfully.
G:\Setup Files\Nero 8\Nero-8.3.6.0_eng_update.exe moved successfully.
G:\Setup Files\Program Files\Setup Files\query19402b.zip moved successfully.
G:\Setup Files\SlySoft AnyDVD HD v6.6.1.3 Multilingual WinAll Incl Keygen and Patch-BRD [Original]\Keygen folder moved successfully.
G:\Setup Files\SlySoft AnyDVD HD v6.6.1.3 Multilingual WinAll Incl Keygen and Patch-BRD [Original] folder moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Micheal
->Temp folder emptied: 8742309 bytes
->Temporary Internet Files folder emptied: 6190168 bytes
->Java cache emptied: 51633264 bytes
->FireFox cache emptied: 42763202 bytes
->Opera cache emptied: 1574905 bytes
->Flash cache emptied: 39003 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 4819908 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 66141 bytes
RecycleBin emptied: 19034091 bytes

Total Files Cleaned = 129.00 mb


OTM by OldTimer - Version 3.1.12.2 log created on 06302010_140530

Files moved on Reboot...
File C:\Windows\temp\TMP00000067FDED77F2A1404F13 not found!

Registry entries deleted on Reboot...
 
Firewall back on and even UAC, even installed microsoft security essentials which updated from microsoft defender.
 
Good work! :bigthumb:

Uninstall Combofix
  • Click START then RUN
  • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the /U, it needs to be there.
The above procedure will:
  • Delete the following: ComboFix and its associated files and folders.
  • Reset the clock settings.
  • Hide file extensions, if required.
  • Hide System/Hidden files, if required.
  • Reset System Restore.

********************

  • Make sure you have an Internet Connection.
  • Double-click OTM.exe to run it.
  • Click on the CleanUp! button
  • A list of tool components used in the Cleanup of malware will be downloaded.
  • If your Firewall or Real Time protection attempts to block OTM to rech the Internet, please allow the application to do so.
  • Click Yes to beging the Cleanup process and remove these components, including this application.
  • You will be asked to reboot the machine to finish the Cleanup process. If you are asked to reboot the machine choose Yes.

****************************

Sounds like you have a pretty good security plan in place now.

In addition to updating and using what you currently have you may want to consider the following:

Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.
A tutorial on installing & using this product can be found here:
Using SpywareBlaster to protect your computer from Spyware and Malware

Install Winpatrol -
Use Winpatrol to take control of your PC and provide another layer of security.
Help file and tutorial can be found Here

Block unwanted parasites with a custom hosts file -
http://www.mvps.org/winhelp2002/hosts.htm

Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly or set your computer to receive automatic updates. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

Update all of your Anti-Malware programs regularly - Make sure you update all the programs I have listed and the ones you are currently running regularly. Without regular updates you Will Not be protected when new malicious programs are released.

Keep your applications up to date -
Use Secunia Personal Software Inspector to help stay on top of application updates that could leave your PC vulnerable to attack.

I'll leave the thread open a few days in case you have questions or issues.

Regards,
Dave
 
Thanx Much Appreciated

Thanx for all of your help with the problems that i was having i really appreciate the help. I will go through the rest of the recommendations that you have given to me and in the future be more vigilant in regards to security on my computers.
P.S. There may be some problems with some of the other comps that i own too is there any way i could come directly to you for help again??:D::D::D::D:
 
There may be some problems with some of the other comps that i own too is there any way i could come directly to you for help again??
Click to expand...
Just go ahead and start new topics (one for each PC) with the appropriate logs and someone (maybe me) will pick them up. We're only volunteers here and I can't commit to personal assistance, but as always if I have time I will help.

Take care,
Dave
 
Status
Not open for further replies.
Back
Top