Browser hijacked

system · July 5, 2014, 5:41pm

Windows 7
Browser was hijacked and lots of tool bars and redirects.

NOTE:
There is no “Fix Shortcuts” in newest version of Rogue Killer

Tdsskiller came back negative

Avast had 2 viruses detected (Win32 Dropper Gen)

See attached logs

system · July 5, 2014, 5:42pm

more logs

Lots of RED in the aswmbr scan :-\

essexboy · July 5, 2014, 5:46pm

Could you open the OTL log on your desktop and select Save as… Then select ANSI encoding. Once saved could you re attach

system · July 5, 2014, 6:01pm

ansi version attached

;D

essexboy · July 5, 2014, 6:18pm

Thanks

Download the attached fix.txt to your desktop
Run OTL and press Run Fix
A dialogue will open asking for the location of fix.txt
Navigate to the desktop and select it
Press run fix again

THEN

Please download AdwCleaner by Xplode onto your desktop.

[*]Close all open programs and internet browsers.
[*]Double click on AdwCleaner.exe to run the tool.
[*]Click on Scan.
[*]After the scan is complete click on “Clean”
[*]Confirm each time with Ok.
[*]Your computer will be rebooted automatically. A text file will open after the restart.
[*]Please post the content of that logfile with your next answer.
[*]You can find the logfile at C:\AdwCleaner[S1].txt as well.

system · July 6, 2014, 3:28pm

about to run adware cleaner.

Ran into some issues while running OTL.

got some popups about things trying to connect to interent (appeared to be from firewall - I said NO)
OTL froze and computer Blue screened. Got it back and reran - see the two logs attached.

3)Avast then started claiming aswmbr program was a virus?

running adware cleaner…will post back shortly.

system · July 6, 2014, 4:06pm

ok did 2 scans with adwarecleaner

(I thought I screwed up the first scan) :-X

essexboy · July 6, 2014, 4:19pm

Looks like OTL did the job, albeit in two stages

How is the computer behaving at the moment

system · July 6, 2014, 8:09pm

giving it the 24four test…ill let you know soon.

system · July 7, 2014, 11:32pm

everythings seems good sir.

Is it cleanup time or do we have some more checks?

essexboy · July 8, 2014, 1:13pm

In that case methinks I will send you on your merry way

Subject to no further problems

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean

A good workman always cleans up after himself so…The following will implement some cleanup procedures as well as reset System Restore points:

Download and run Delfix

https://dl.dropboxusercontent.com/u/73555776/delfix.JPG

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

CryptoPrevent install this programme to lock down and prevent crypto ransome ware

https://dl.dropboxusercontent.com/u/73555776/CryptoPrevent.JPG

Malwarebytes.

Update and run weekly to keep your system clean

It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe

system · July 9, 2014, 7:42pm

Thanks again ESSEX!

essexboy · July 9, 2014, 7:42pm

My pleasure

Browser hijacked

Announcements