Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Resolved HJT Threads

User Tag List

Recurring Virus Help Needed

This is a discussion on Recurring Virus Help Needed within the Resolved HJT Threads forums, part of the Tech Support Forum category. Greetings, I seem to have a virus that keeps downloading and setting up new viruses. Every so often my AV

Thread Tools Search this Thread
Old 04-13-2011, 12:22 PM   #1
Registered Member
Join Date: Aug 2007
Posts: 10
OS: 2000


I seem to have a virus that keeps downloading and setting up new viruses. Every so often my AV software detects and blocks a new virus. Currently some links are being changed in google results or when I type in a domain address. In the middle of games my fps will drop to 1 randomly. While this isnt a sure way of diagnosing a virus, I do not know of any process that would be doing anything while I was ingame... My virus protection is BitDefender Internet Security 2011. I think I may have acquired the virus prior to installing BitDefender.


DDS (Ver_11-03-05.01) - NTFSx86
Run by Erik at 21:45:53.85 on Tue 04/12/2011
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_22
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1982.1367 [GMT -4:00]
AV: BitDefender Antivirus *Disabled/Updated* {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
FW: BitDefender Firewall *Enabled*
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\Program Files\BitDefender\BitDefender 2011\vsserv.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\BitDefender\BitDefender 2011\bdagent.exe
E:\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\BitDefender\BitDefender 2011\updatesrv.exe
C:\Program Files\BitDefender\BitDefender 2011\pchooklaunch32.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Erik\My Documents\Downloads\dds.scr
============== Pseudo HJT Report ===============
uStart Page = about:blank
mStart Page = about:blank
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Bitdefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - c:\program files\bitdefender\bitdefender 2011\IEToolbar.dll
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [H/PC Connection Agent] "e:\microsoft activesync\wcescomm.exe"
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 10.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [BitDefender Antiphishing Helper] "c:\program files\bitdefender\bitdefender 2011\ieshow.exe"
mRun: [BDAgent] "c:\program files\bitdefender\bitdefender 2011\bdagent.exe"
uPolicies-explorer: RestrictRun = 0 (0x0)
mPolicies-explorer: RestrictRun = 0 (0x0)
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - e:\micros~1\INetRepl.dll
IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - e:\micros~1\INetRepl.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280639716067
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\erik\applic~1\mozilla\firefox\profiles\jppilonn.default\
FF - prefs.js: network.proxy.http -
FF - prefs.js: network.proxy.http_port - 62970
FF - prefs.js: network.proxy.type - 0
FF - component: c:\program files\bitdefender\bitdefender 2011\bdaphffext\components\bdaphff3.6.dll
FF - component: c:\program files\bitdefender\bitdefender 2011\bdaphffext\components\bdaphff3.dll
FF - plugin: c:\documents and settings\erik\application data\mozilla\firefox\profiles\jppilonn.default\extensions\[email protected]\plugins\npLogitechDeviceDetection.dll
FF - plugin: c:\documents and settings\erik\local settings\application data\google\update\\npGoogleOneClick8.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: ChatZilla: {59c81df5-4b7a-477b-912d-4e0fdf64e5f2} - %profile%\extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2}
FF - Ext: DownThemAll!: {DDC359D1-844A-42a7-9AA1-88A850A938A8} - %profile%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
FF - Ext: XULRunner: {26B8C052-E926-4141-8510-7ACAE5BED55D} - c:\documents and settings\erik\local settings\application data\{26B8C052-E926-4141-8510-7ACAE5BED55D}
FF - Ext: BitDefender Antiphishing Toolbar: [email protected] - c:\program files\bitdefender\bitdefender 2011\bdaphffext
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
============= SERVICES / DRIVERS ===============
R1 BdRawPr;BdRawPr;c:\windows\system32\drivers\bdrawpr.sys [2011-4-5 12960]
R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [2011-1-28 158736]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [2011-1-28 42960]
R2 Updatesrv;BitDefender Desktop Update Service;c:\program files\bitdefender\bitdefender 2011\updatesrv.exe [2011-3-24 43936]
R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2010-4-22 149520]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf.sys [2010-8-20 111696]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011-1-18 109328]
R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\drivers\VBoxNetFlt.sys [2011-1-18 120208]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 WSWNDA3100;WSWNDA3100;c:\program files\netgear\wnda3100v2\WifiSvc.exe [2011-2-5 272864]
S3 AWEAlloc;AWE Memory Allocation Driver;c:\windows\system32\drivers\awealloc.sys --> c:\windows\system32\drivers\awealloc.sys [?]
S3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\drivers\bcmwlhigh5.sys [2011-2-5 642432]
S3 Desura Install Service;Desura Install Service;c:\program files\common files\desura\desura_service.exe [2011-4-6 128832]
S3 NetHook_ControlCenter;ArtOfPing ControlCenter;\??\c:\program files\pingfu udp\controlcenter.sys --> c:\program files\pingfu udp\ControlCenter.sys [?]
S3 NetHook_Interceptor;ArtOfPing TDI Interceptor;\??\c:\program files\pingfu udp\interceptor.sys --> c:\program files\pingfu udp\Interceptor.sys [?]
S3 Update Server;BitDefender Update Server v2;c:\program files\common files\bitdefender\bitdefender arrakis server\bin\arrakis3.exe [2010-11-30 307544]
S3 UsbGps;LGE CDMA USB GPS NMEA Port;c:\windows\system32\drivers\lgusbgps.sys [2010-9-20 19968]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 avc3;avc3;c:\windows\system32\drivers\avc3.sys [2010-11-29 535824]
S4 avckf;avckf;c:\windows\system32\drivers\avckf.sys [2010-11-29 1066232]
=============== Created Last 30 ================
2011-04-06 23:55:16 -------- d-----w- c:\docume~1\erik\locals~1\applic~1\Desura
2011-04-06 06:09:04 -------- d-----w- c:\program files\common files\Desura
2011-04-06 06:04:18 -------- d-----w- c:\docume~1\alluse~1\applic~1\Desura
2011-04-06 06:04:16 -------- d-----w- c:\program files\Desura
2011-04-05 05:52:47 -------- d-----w- c:\docume~1\erik\applic~1\BitDefender
2011-04-05 05:52:05 -------- d-----w- c:\program files\BitDefender
2011-04-05 05:43:16 -------- d-----w- c:\docume~1\alluse~1\applic~1\1a310000-f6e-4580-9624-df1243bee6b3
2011-04-05 05:34:33 -------- d-----w- c:\docume~1\alluse~1\applic~1\17c00000-c7d8-4c85-e7e2-de67afa6bbac
2011-04-05 05:27:10 -------- d-----w- c:\docume~1\erik\applic~1\QuickScan
2011-04-05 05:26:14 -------- d-----w- c:\program files\common files\BitDefender
2011-04-05 05:26:14 -------- d-----w- c:\docume~1\alluse~1\applic~1\BitDefender
2011-04-05 05:26:06 307784 ----a-w- c:\windows\system32\drivers\trufos.sys
2011-04-05 05:26:05 785214 ----a-w- c:\docume~1\alluse~1\applic~1\bdinstall.bin
2011-04-05 05:26:05 353096 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys
2011-04-05 05:26:05 12960 ----a-w- c:\windows\system32\drivers\bdrawpr.sys
2011-04-04 22:49:39 -------- d-----w- c:\windows\tmp
2011-04-04 21:26:28 -------- d-s---w- C:\ComboFix
2011-04-04 21:14:58 0 ----a-w- c:\windows\Vgikevafide.bin
2011-04-04 21:14:39 -------- d-----w- c:\docume~1\erik\locals~1\applic~1\{26B8C052-E926-4141-8510-7ACAE5BED55D}
2011-04-04 21:12:54 208 ----a-w- c:\documents and settings\erik\delme.bat
2011-04-04 21:11:24 -------- d-----w- c:\docume~1\erik\applic~1\Sawox
2011-04-04 21:11:24 -------- d-----w- c:\docume~1\erik\applic~1\Owcio
2011-04-04 21:11:10 -------- d-----w- c:\docume~1\erik\applic~1\DED0421735A2BF8A0C65BB38EAD0ECD9
2011-03-29 23:55:46 -------- d-----w- c:\program files\Charter Security Suite
2011-03-29 23:55:24 -------- d-----w- c:\docume~1\alluse~1\applic~1\fssg
2011-03-29 23:54:35 -------- d-----w- c:\docume~1\alluse~1\applic~1\f-secure
2011-03-24 23:26:06 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2011-03-24 23:26:06 21504 ----a-w- c:\windows\system32\hidserv.dll
2011-03-21 23:57:17 -------- d-----w- c:\docume~1\erik\locals~1\applic~1\IsolatedStorage
==================== Find3M ====================
2011-03-04 17:57:42 138056 ----a-w- c:\docume~1\erik\applic~1\PnkBstrK.sys
2011-03-04 17:57:20 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-03-04 17:57:13 189248 ----a-w- c:\windows\system32\PnkBstrB.ex0
2011-03-04 17:57:12 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2011-02-21 00:30:12 252968 ----a-w- c:\windows\system32\nvdrsdb1.bin
2011-02-21 00:30:12 1 ----a-w- c:\windows\system32\nvdrssel.bin
2011-02-21 00:30:11 252960 ----a-w- c:\windows\system32\nvdrsdb0.bin
2011-02-09 13:53:52 270848 ----a-w- c:\windows\system32\sbe.dll
2011-02-09 13:53:52 186880 ----a-w- c:\windows\system32\encdec.dll
2011-02-07 00:05:02 499712 ----a-w- c:\windows\system32\msvcp71.dll
2011-02-07 00:05:02 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-02-03 18:04:42 25600 ----a-w- c:\documents and settings\erik\usbsermptxp.sys
2011-02-03 18:04:42 22768 ----a-w- c:\documents and settings\erik\usbsermpt.sys
2011-02-02 07:58:35 2067456 ----a-w- c:\windows\system32\mstscax.dll
2011-01-28 20:00:33 25992 ----a-w- c:\windows\system32\pgdfgsvc.exe
2011-01-27 11:57:06 677888 ----a-w- c:\windows\system32\mstsc.exe
2011-01-21 14:44:37 439296 ----a-w- c:\windows\system32\shimgvw.dll
2011-01-18 22:43:24 133648 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2010-07-08 14:37:14 101544 ----a-w- c:\program files\common files\LinkInstaller.exe
============= FINISH: 21:47:10.07 ===============
Attached Files
File Type: zip Attach.zip (11.4 KB, 16 views)
nod00 is offline  
Sponsored Links
Old 04-16-2011, 08:34 AM   #2
Security Team
Join Date: Apr 2007
Location: Montreal, QC. Canada
Posts: 2,656
OS: Windows 2000 Pro. - Vista SP 2, W7

Hello, Welcome to TSF.
I'm nasdaq and will be helping you.

You may wish to Subscribe to this thread (Thread Tools > Subscribe to this thread) so that you are notified when you receive a reply.

Please read these instructions carefully and then print out or copy this page to Notepad in order to assist you when carrying out the fix.

Note that the fix may take several posts. Please continue to respond to my instructions until I confirm that your logs are clean. Remember that although your symptoms may vanish, this does NOT mean that your system is clean.

If there is anything you don't understand, please ask BEFORE proceeding with the fixes.

Please ensure that you follow the instructions in the order I have them listed.

Please do not install or uninstall any programs, or run any other scanners or software, unless I specifically ask you to do so. Also please copy and paste logs into the thread, rather than add them as attachments.

Please download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop
  • Disable your Anti-Virus and Anti-Spyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Some Rookit infection may damage your boot sector. The Windows Recovery Console may be needed to restore it. Do not bypass this installation. You may regret it.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Note: If you have difficulty properly disabling your protection programs, refer to this link --> How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do not mouse click ComboFix's window while it's running. That may cause it to stall

For AVG antivirus and anti-spyware security software users only.
Due to recent changes in AVG and how it interacts with CF, AVG must be uninstalled to run ComboFix. You will get a message from CF stating such.

If AVG will not uninstall, it is first recommended to uninstall it with this AppRemover by Opswat. The AVG uninstaller can be downloaded from here > AppRemover.exe Go to their homepage and you will see they have support for removal of other AV's as well AVG appremover tool.
nasdaq is offline  
Old 04-16-2011, 10:53 AM   #3
Registered Member
Join Date: Aug 2007
Posts: 10
OS: 2000


Thank you for taking the time to help me.
I want to make you aware that I went ahead and ran combo fix after the time I made my first post and I will include that log along with a updated log per your request. I apologize for doing what im not supposed to do and hope that you will still continue to assist me.
Attached Files
File Type: txt ComboFix.4.15.txt (112.1 KB, 27 views)
File Type: txt ComboFix recent.txt (46.7 KB, 44 views)
nod00 is offline  
Sponsored Links
Old 04-16-2011, 11:45 AM   #4
Security Team
Join Date: Apr 2007
Location: Montreal, QC. Canada
Posts: 2,656
OS: Windows 2000 Pro. - Vista SP 2, W7

Your logs are clean.

Are you still being redirected ?

Is this computer connected to a router.

Please run this security check for my review.

Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
nasdaq is offline  
Old 04-16-2011, 08:05 PM   #5
Registered Member
Join Date: Aug 2007
Posts: 10
OS: 2000

I dont seem to be experiencing any redirects anymore.


Results of screen317's Security Check version 0.99.10
Windows XP Service Pack 3
Internet Explorer 8
Antivirus/Firewall Check:

Windows Firewall Disabled!
BitDefender Internet Security 2011
Anti-malware/Other Utilities Check:

Spybot - Search & Destroy
Java(TM) 6 Update 22
Out of date Java installed!
Adobe Flash Player
Adobe Reader X (10.0.1)
Mozilla Firefox (3.6.16) Firefox Out of Date!
Mozilla Thunderbird (3.1.9)
Process Check:
objlist.exe by Laurent

BitDefender BitDefender 2011 vsserv.exe
BitDefender BitDefender 2011 bdagent.exe
BitDefender BitDefender 2011 updatesrv.exe
BitDefender BitDefender 2011 pchooklaunch32.exe
``````````End of Log````````````
nod00 is offline  
Old 04-17-2011, 05:14 AM   #6
Security Team
Join Date: Apr 2007
Location: Montreal, QC. Canada
Posts: 2,656
OS: Windows 2000 Pro. - Vista SP 2, W7

Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.
Updating Java:
  • Download the latest version of Java Runtime Environment (JRE) 6.
  • In the box labeled "Java Platform, Standard Edition", click the "Download JRE" button to the right.
  • In the Window that opens, select Windows (or Windows x64), and check the "agree" box and click "Continue".
  • Click on the link to download Windows Offline Installation and save to your Desktop.
  • Then from your Desktop double-click on jre-6u24-windows-i586.exe that you have downloaded to install the newest version (the x64 version is jre-6u24-windows-x64.exe).
    - Note: If you are running Vista or Windows 7, you may need to right-click on the installation file and select Run as Administrator.

Remove this old version of Java using the Add/Remove Programs applet.
Java(TM) 6 Update 22


Time for some housekeeping
  • The following will implement some cleanup procedures as well as reset System Restore points:

    Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

    ComboFix /Uninstall
nasdaq is offline  
Old 04-26-2011, 10:25 AM   #7
amateur's Avatar
Join Date: Jun 2006
Location: here & there and everywhere
Posts: 15,384
OS: XP Win7 Win 8.1 Ubuntu 10.10

Since this issue appears resolved, this topic will now be archived. If you need continued support, please begin a new thread, and provide a link to this topic. This applies only to the original topic starter. Everyone else please begin a New Topic, after following the steps outlined here:

NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum

Surf Safely, and Think Prevention!

amateur is offline  

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
.dll files missing, browser opens new tabs, google search redirects.
Hello, I'm a complete computer novice, but I know things are not right. At startup I get two pop-ups stating some .dll files are missing. I've googled these files and only got a couple of hits, it seems they're some kind of virus. My browser also opens up new tabs on it's own, and google search...
jtatauburn Resolved HJT Threads 24 04-02-2011 09:38 PM
computer freezes redirects to different sites on google
Please help. My computer has been running slow and many times when I upload a page it says it is not responding. The other issue is that when I do a search on google and click on the correct search,it directs me to another soliciting site. I have tried to run GMER both ways and it just will not...
lubo1 Inactive Malware Help Topics 8 02-21-2011 09:28 PM
Browser Redirect Issue
I have been having an issue with both IE and Firefox redirecting Google search results a majority of the time. I had done a scan with Spybot Search & Destroy prior to posting here and "Fraud.WindowsProtectionSuite" (15 entries) and "Microsoft.Windows.RedirectedHosts" (3 entries) were the only...
bob2881 Resolved HJT Threads 21 02-21-2011 06:48 PM
error from upgradation to oel 6 from oel5_6
--> Missing Dependency: libiso9660.so.5()(64bit) is needed by package xine-lib-1.1.19-2.el5.rf.x86_64 (installed) java-1.4.2-gcj-compat-devel- from installed has depsolving problems --> Missing Dependency: python(abi) = 2.4 is needed by package...
csayantan Linux Support 1 02-20-2011 09:04 PM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

Post a Question

» Site Navigation
 > FAQ
Powered by vBadvanced CMPS v3.2.3

All times are GMT -7. The time now is 10:29 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts