no. might it be from windows update?

No tis not windows update as that uses a different file

Could you run combofix please

Hello, I have the same problem as PackingHeat. After I used OTL and TDSSKiller, my pc works just fine and my windows defender was able to update again. Do you think the problem is solved now or do I have to do the combofixes as well?

Well, it sure would be a good idea to open a new thread for your problem…!
Welcome to the forum…!!
asyn

OTL is a purely analysis log - unless you used some removal ccommands

lol i see that site is really starting to get around now. ill have the log posted in a few minutes essex

2 other deletions. 1 of the was the autorun.inf which i suspected to be a problem.

idk if my problem is completely over yet. can you tell me why the oem file was deleted

That file if legit should be in the inf folder, Anywhere else and it is suspect

What problems do you have now ?

I used the TDSSKiller as specified in the earlier post, and it found that I had one infection. Did the Cure and rebooted and I’ve not had the cikh71… blocked again. My PC seems to be working fine now. Thanks.

Did it find the MBR TDL4 ?

Hello essexboy,

I also kept getting the cikh71 site blocked. Per your earlier post, I downloaded OTL and TDSSkiller. TDSSKiller detected 1 file and promted me to reboot. After the reboot, I check the report in my C:\ folder and it said the following:

Detected object count: 1
\HardDisk0 - will be cured after reboot
Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure
Deinitialize success

Does this mean it’s gone?

That will usually cure the main infection - run Malwarebytes after that and you stand a reasonable chance of being clean