Andro1d

Trusted Helpers
  • Content Count

    737
  • Joined

  • Last visited

Everything posted by Andro1d

  1. Hello and sorry for the delay. Step 1 I do not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause: 1) False Alarm
  2. Hello and sorry for the delay. Step 1 Please download ComboFix from Here or Here to your Desktop. **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop** For more information regarding this download, please visit this webpage: http://www.bleepingcomputer.com/combofix/how-to-use-combofix Please, never rename Combofix unless instructed. Close any open browsers. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. -----------------------
  3. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.
  4. Nice job your log looks clean! How is it running? Please use the following suggestion to help prevent reinfection. Make sure you have an Internet Connection. Double-click OTMoveIt2.exe to run it. (Vista users, please right click on OTMoveit2.exe and select "Run as an Administrator") Click on the CleanUp! button A list of tool components used in the Cleanup of malware will be downloaded. If your Firewall or Real Time protection attempts to block OtMoveit2 to rech the Internet, please allow the application to do so. Click Yes to beging the Cleanup process and remove these components, including
  5. Ok, we can try a different scanner. Please go HERE to run Panda's ActiveScan Once you are on the Panda site click the Scan your PC button A new window will open...click the Check Now button Enter your Country Enter your State/Province Enter your e-mail address and click send Select either Home User or Company Click the big Scan Now button If it wants to install an ActiveX component allow it It will start downloading the files it requires for the scan (Note: It may take a couple of minutes) When download is complete, click on My Computer to start the scan When the scan completes, if anything ma
  6. Hi, Could you repost whatever you were trying to, you just posted a blank post.
  7. Hello, Lets make sure your clean of all malware before we go in and try to remove Norton. Please do an online scan with Kaspersky WebScanner Click on Accept You will be promted to install an ActiveX component from Kaspersky, Click Yes. The program will launch and then begin downloading the latest definition files: Once the files have been downloaded click on NEXT Now click on Scan Settings In the scan settings make that the following are selected:Scan using the following Anti-Virus database: Extended (if available otherwise Standard) Scan Options: Scan Archives Scan Mail Bases [*]Click O
  8. Hello again, Step 1 Please download the OTMoveIt2 by OldTimer. Save it to your desktop. Please double-click OTMoveIt2.exe to run it. (Vista users, please right click on OTMoveit2.exe and select "Run as an Administrator") Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): C:\My Backup -- 22-03-05 2002\WINDOWS\system32\rlxf.dll C:\My Backup -- 22-03-05 2002\Program Files\Common Files\W?nSxS C:\My Backup -- 22-03-05 2002\Program Files\Common Files\Yazzle1122OinUninstaller.exe C:\My Backup -- 22-03-
  9. Well from your uninstall list Im not seeing any AV. Are you running any? Also continue from step 2 of my early post, and we will deal with the AV issue after.
  10. Ok, lemme see the following first, then we can go from there. Open HijackThis, click Config, click Misc Tools Click "Open Uninstall Manager" Click "Save List" (generates uninstall_list.txt) Click Save, copy and paste the results in your next post.
  11. Hello again, Step 1 I do not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause: 1) False Alarms: When the anti v
  12. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.
  13. Go to Microsoft's website => http://support.microsoft.com/kb/310994 Select the download that's appropriate for your Operating System. Download the file & save it as it's originally named, next to ComboFix.exe. Now close all open windows and programs, then drag the setup package onto ComboFix.exe and drop it. Follow the prompts to start ComboFix and when prompted, agree to the End-User License Agreement to install the Microsoft Recovery Console. When complete, a log named CF_RC.txt will open. Please post the contents of that log. Please do not reboot your machine until we have revie
  14. Hello and Welcome to Geeks to Go. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. Step 1 Please download FixWareout from Here or Here. Note: You will need to run this tool while having an Internet Connection. The tool will download other files while running. Save it to your desktop and run it. Click Next, then Install, make sure "Run fixit" is checked and click Finish. The fix will begin; follow the prompts. If your firewall gives an alert, (because this tool will download an additional files from the internet), please don't let your firewall block it, but
  15. Hello and Welcome to BT. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. Please download ComboFix from Here or Here to your Desktop. **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop** Close any open browsers. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix. ----------------------------------------------------------- Very Important! Temporarily disable your anti-virus, script blocking and a
  16. Thanks for the great write up! Now I will just wait for it to be on Windows Update.
  17. Hello, I am very sorry but I am going on vacation, and I have asked someone else to take this log for me. Good luck, and thanks for your cooperation. MoNsTeReNeRgY22
  18. Hey, Please download Deckard's System Scanner (DSS) to your desktop. Close all applications and windows. Double-click on dss.exe to run it, and follow the prompts. When the scan is complete, a text file will open - Main.txt Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of Main.txt in your thread in the HijackThis Log Help Forum. An additional text file, Extra.txt,will also be available (by default) in the following FOLDER, C:\Deckard\System Scanner. Please go to that folder and also copy the contents of Extra.txt to your post as well. Note: Some firewalls may warn that sigcheck.exe
  19. Glad you got it to work! You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site. Next, please reboot your computer in Safe Mode by doing the following : Restart your computer After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually; Instead of Windows loading as normal, a menu with options should appear; Select the first option, to run Windows in Safe Mode, then press "Enter". Choose your usual account. Once
  20. Hello, If you have a differnent browser installed, try downloading it through it. If not try the following, then retry the download. Download the HostsXpert 4.2 - Hosts File Manager. Unzip HostsXpert 4.2 - Hosts File Manager to a convenient folder such as C:\HostsXpert 4.2 - Hosts File Manager Run HostsXpert 4.2 - Hosts File Manager from its new home Click on "File Handling". Click on "Restore MS Hosts File". Click OK on the Confirmation box. Click on "Make Read Only?" Click the X to exit the program. Note: If you were using a custom Hosts file you will need to replace any of those entries you
  21. Hello and Welcome to BT. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. Please download SmitfraudFix (by S!Ri) to your Desktop. Double-click SmitfraudFix.exe Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present). Please copy/paste the content of that report into your next reply. **If the tool fails to launch from the Desktop, please move SmitfraudFix.exe directly to the root of the system drive (usually C:), and launch from there. Note : process.exe is detected by some antivirus programs (A
  22. TheTerrorist_75 is correct, NOD32 is under a company called ESET.
  23. I highly recommend NOD32 as well over any other program. Very easy to use, and just set it and forget it. Also, it has great hueristics even if for some reason you can't get your definition files updated. Thans for the code deaf girl, but I just orderd the ESET Smart Security Suite about a week ago!
  24. Hello, Well honestly, I wouldn't go with either since they both are known resource hogs amd have decnet detection rates. I highly recommend NOD32 AV. Very low memory usage, and great program and easy use to use. Just install and forget it, honestly. http://www.eset.com/ But if you had to go with one of the ones you posted, probably Kaspersky I would go with.
  25. Download Dr.Web CureIt to the desktop: ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe Doubleclick the drweb-cureit.exe file and Allow to run the express scan This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan. Once the short scan has finished, mark the drives that you want to scan. Select all drives. A red dot shows which drives have been chosen. Click the green arrow at the right, and the scan will start. Click 'Yes to all' if it asks if you want to cure/move the file.