Tech Support Forum - View Single Post - Constant popups and warnings with erroneous messages

sUBs · 08-06-2007, 08:49 PM

Do a HijackThis scan & place a check next to these items and select "Fix checked":

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php...MjI6Ojg5&lid=2
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O4 - HKCU\..\Run: [Safe Cleaner] C:\WINDOWS\smc.bat

---------------

Open notepad and copy/paste the text in the quotebox below into it:

Code:

http://www.techsupportforum.com/security-center/hijackthis-log-help/172530-constant-popups-warnings-erroneous-messages-ultimate-defender.html#post1018184
Collect::
C:\WINDOWS\smc.bat
Suspect::
C:\WINDOWS\system32\dllcache\usbccgp.sys
Folder::
C:\PROGRA~1\WINSTR~1
Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4A2E1038-0885-4C92-8E28-A04CF8B94911}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Safe Cleaner"=-

Save this as "CFScript"

Refering to the picture above, drag CFScript.txt into ComboFix.exe

When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply.

Additonally, ComboFix will generate a zipped file on your Desktop, called Submit [Date Time].zip
Please submit this file to:

http://www.bleepingcomputer.com/subm....php?channel=4

The file must be uploaded before proceeding to the next step.

---------------

Click here perform an online scan >> Online Scanner

---------------

In your next post, please include fresh logs from:

Fresh Hijackthis log taken just before replying

Online scan

ComboFix's log

Please provide details of any problems you encountered whilst performing the above steps & update us on how the computer behaves now

08-06-2007, 08:49 PM	#4 (permalink)
sUBs Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy Join Date: May 2005 Posts: 24,353 OS: N/A	Re: Constant popups and warnings with erroneous messages - Ultimate Defender Do a HijackThis scan & place a check next to these items and select "Fix checked": R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php...MjI6Ojg5&lid=2 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O4 - HKCU\..\Run: [Safe Cleaner] C:\WINDOWS\smc.bat --------------- Open notepad and copy/paste the text in the quotebox below into it: Code: http://www.techsupportforum.com/security-center/hijackthis-log-help/172530-constant-popups-warnings-erroneous-messages-ultimate-defender.html#post1018184 Collect:: C:\WINDOWS\smc.bat Suspect:: C:\WINDOWS\system32\dllcache\usbccgp.sys Folder:: C:\PROGRA~1\WINSTR~1 Registry:: [-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4A2E1038-0885-4C92-8E28-A04CF8B94911}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Safe Cleaner"=- Save this as "CFScript" Refering to the picture above, drag CFScript.txt into ComboFix.exe When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply. Additonally, ComboFix will generate a zipped file on your Desktop, called Submit [Date Time].zip Please submit this file to: http://www.bleepingcomputer.com/subm....php?channel=4 The file must be uploaded before proceeding to the next step. --------------- Click here perform an online scan >> Online Scanner --------------- In your next post, please include fresh logs from: Fresh Hijackthis log taken just before replying Online scan ComboFix's log Please provide details of any problems you encountered whilst performing the above steps & update us on how the computer behaves now __________________ Question - what have you done for the community today?