Hi,
This is new & fresh malware, if you have will, stay little bit on. I just need to find sources …
-
Read guide for running RogueKiller from >> here << and attach here all RK reports.
-
Delete all zoek logs ( delete all C:\zoek-results.log ). I don’t want to mix with fresh logs.
-
Then run this zoek script:
{41525333-0076-A76A-76A7-7A786E7484D7};c
c:\program files (x86)\AskPartnerNetwork\Toolbar;fs
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar];r
"{41525333-0076-A76A-76A7-7A786E7484D7}"=-;r
wuaudit.exe;z
wuaudit.exe;a
dwm.exe;z
dwm.exe;a
iswizard;z
startupall;
filesrcm;
firefoxlook;
chromelook;