Yes. Select everything (if not already) and remove.
Post log.
Yes. Select everything (if not already) and remove.
Post log.
Malwarebytes’ Anti-Malware 1.50.1.1100
www.malwarebytes.org
Database version: 6498
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
03/05/2011 15:15:03
mbam-log-2011-05-03 (15-14-07).txt
Scan type: Quick scan
Objects scanned: 187204
Time elapsed: 19 minute(s), 40 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 2
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\windows\temp\trz5f.tmp (Trojan.Downloader) → No action taken.
c:\windows\temp\trz60.tmp (Trojan.Downloader) → No action taken.
Select the two infected temp files in MBAM and remove them.
what do i do now
I’ll be off now for about 60 minutes.
Check here later again, we’ll do some scanning then.
CU
Zyndstoff
Should I go back on my computer now
Here I am. ;D
So, check your PC now.
Any strange behavior?
Perform an Avast Full System Scan. (See screenshot)
have started doing that but it takes about 3 hours will you stii be around then .it is still saying malicious url
Don’t worry Diane,
If he isn’t available,there are many others on here who will pitch in and help.
As long as Zydstoff is doing such a good job, you don’t need any one else.
seems to be going quicker than its ever done before so may need your help soon
Please specify: what is saying malicious url? Avast?
Can you give a screenshot of the error message?
Use this MS-tool to fix the Hosts-file: TOOL
Download the file to disk and then run it
then
Download RogueKiller to your desktop
[]Quit all running programs
[]For Vista/Seven, right click → run as administrator, for XP simply run RogueKiller.exe
[]When prompted, type 1 and validate
[]The RKreport.txt shall be generated next to the executable.
[*]If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe
Please post the contents of the RKreport.txt in your next Reply.
then
Download OTS to your Desktop and double-click on it to run it
[*]Make sure you close all other programs and don’t use the PC while the scan runs.
[*]Select All Users
[*]Under additional scans select the following
Reg - Disabled MS Config Items
Reg - Drivers32
Reg - NetSvcs
Reg - SafeBoot Minimal
Reg - Shell Spawning
Evnt - EventViewer Logs (Last 10 Errors)
File - Lop Check
[*]Under the Custom Scan box paste this in
netsvcs
%SYSTEMDRIVE%*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
%systemroot%*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
CREATERESTOREPOINT
[*]Now click the Run Scan button on the toolbar. Make sure not to use the PC while the program is running or it will freeze.
[*]When the scan is complete Notepad will open with the report file loaded in it.
[*]Please attach the log in your next post.
BTW: thanks, Bob…
i am panicing now because that sounds really complicated.how can i not use my pc when i need to follow your instructions and paste things.the 2 malicious url are called Longtrip-todayz.com and ikckclckl1i1i.com
Don’t panic.
It’s all easy, and you can do it. Don’t worry.
When you start the OTS scan, then don’t use the PC until the scan is done. Just leave him alone, scanning.
Just go step by step through the above instructions.
All the posting is done after the above instructions have been completed. Okay?
scan completed no threat found to i come out of avast before i run the ots scan
Pardon me?
What do you mean “to I come out of Avast” ?
do i log out of the avast forum before i do the ots scan the scan that was completed with no threat was the avast full scan
Okay, we’ll do this step by step.
Easy things first.
Download the HostsXpert 3.7 - Hosts File Manager
Unzip it in any folder you like and run it.
What does it show in the right window side?
Click “Editing”, “copy to clipboard” and paste in your next post.