Thread: Pop-ups, Slowness, Oh My!
View Single Post
Old 07-03-2007, 11:17 AM   #14 (permalink)
Ried
Assistant Manager, TSF Academy; Moderator/Analyst Security Team
 
Ried's Avatar
 
Join Date: Jan 2005
Location: Ohio
Posts: 27,103
OS: WinXP and Vista


Re: Pop-ups, Slowness, Oh My!
Hi Alec, my apologies for the delay but I was busy this past weekend.

One more time ought to do it--my fault on that last run as I had typed Files:: instead of File::

Open notepad and copy/paste the text in the quotebox below into it:

Quote:
File::
C:\WINDOWS\system32\tmp1390.tmp.dll
C:\WINDOWS\awtqqq.dll
C:\WINDOWS\system32\tmp12FE.tmp.dll
C:\WINDOWS\system32\tmp415.tmp.dll
C:\WINDOWS\xxywur.dll
C:\WINDOWS\gebbxx.dll
C:\WINDOWS\system32\tmp3B.tmp.dll
C:\WINDOWS\system32\tmp25.tmp.dll
C:\WINDOWS\system32\tmp1E.tmp.dll
C:\WINDOWS\system32\ddccy.exe
C:\WINDOWS\system32\gebcy.exe
C:\WINDOWS\system32\tmp7D.tmp.dll
C:\WINDOWS\system32\tmp61.tmp.dll
C:\WINDOWS\system32\tmp49.tmp.dll
C:\WINDOWS\system32\gebyw.exe
C:\WINDOWS\pmnkih.dll
C:\WINDOWS\system32\tmp30F.tmp.dll
C:\WINDOWS\system32\tmp306.tmp.dll
C:\WINDOWS\system32\tmp2EE.tmp.dll
C:\WINDOWS\system32\mljjk.exe
C:\WINDOWS\vttssp.dll
C:\WINDOWS\system32\tmp23A.tmp.dll
C:\WINDOWS\system32\tmp1A2.tmp.dll
C:\WINDOWS\system32\tmp15A.tmp.dll
C:\WINDOWS\system32\tmp132.tmp.dll
C:\WINDOWS\system32\tmpB0.tmp.dll
C:\WINDOWS\system32\tmpA4.tmp.dll
C:\WINDOWS\system32\tmp34.tmp.dll
C:\WINDOWS\system32\tmp21.tmp.dll
C:\WINDOWS\system32\pmkhi.exe
C:\WINDOWS\system32\jkhhi.exe
C:\WINDOWS\system32\vturs.exe
C:\WINDOWS\geedeb.dll
C:\WINDOWS\tuvtqo.dll
C:\WINDOWS\xxxuvs.dll
C:\WINDOWS\vttqpo.dll
C:\WINDOWS\mlkklm.dll
C:\WINDOWS\system32\tmp97.tmp.dll
C:\WINDOWS\4-efb7bab6499fc415ee93f4097033deae.exe

Registry::
[-hkey_local_machine\software\Fun Web Products]
Save this as ComboFix-Do.txt, in the same location as ComboFix.exe




Refering to the picture above, drag ComboFix-Do.txt into ComboFix.exe

Follow the prompts.

When finished, it shall produce a log for you. Post that log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall

--------------------------------------------------------------------

Clear your Internet Explorer7 cookies.

* Click on the Start button, then >Control Panel>Internet Options>General tab
* Under Browsing History, click on Delete.
* In the Delete Browsing History box that opens, click on Delete cookies

--------------------------------------------------------------------

Please post the C:\ComboFix.txt in your next reply.
__________________

Member of ASAP since 2005
Member of UNITE since 2006

"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."
Ried is offline