also @ TechSpot: Google, NASA join forces to build quantum computing laboratory

Google redirected

Discussion in 'Virus and Malware Removal' started by bearone100, Aug 16, 2010.

Page 3 of 4

  1. bearone100 Newcomer, in training Posts: 54

    All processes killed
    ========== OTL ==========
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer| /E : value set successfully!
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    ========== FILES ==========
    < ipconfig /flushdns /c >
    Windows IP Configuration
    Successfully flushed the DNS Resolver Cache.
    C:\Users\me\Desktop\cmd.bat deleted successfully.
    C:\Users\me\Desktop\cmd.txt deleted successfully.
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: me
    ->Temp folder emptied: 48728 bytes
    ->Temporary Internet Files folder emptied: 5262679 bytes
    ->Flash cache emptied: 0 bytes

    User: Public
    ->Temp folder emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 0 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 5.00 mb


    [EMPTYFLASH]

    User: All Users

    User: Default

    User: Default User

    User: me
    ->Flash cache emptied: 0 bytes

    User: Public

    Total Flash Files Cleaned = 0.00 mb


    OTL by OldTimer - Version 3.2.10.0 log created on 08182010_004019

    Files\Folders moved on Reboot...
    File\Folder C:\Users\me\AppData\Local\Temp\Low\~DF54C0.tmp not found!
    File\Folder C:\Users\me\AppData\Local\Temp\Low\~DF54C9.tmp not found!
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QZACWIB8\topic151803-2[1].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\LPMBLGNA\ads[1].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.

    Registry entries deleted on Reboot...
    bearone100, Aug 18, 2010
    #41

  2. Broni Malware Annihilator Posts: 39,206   +175

    Good :)....
    Broni, Aug 18, 2010
    #42

  3. bearone100 Newcomer, in training Posts: 54

    running quick scan now
    bearone100, Aug 18, 2010
    #43

  4. Broni Malware Annihilator Posts: 39,206   +175

    I'm here.....
    Broni, Aug 18, 2010
    #44

  5. bearone100 Newcomer, in training Posts: 54

    ok here is the quick scan

    Attached Files:

    bearone100, Aug 18, 2010
    #45

  6. Broni Malware Annihilator Posts: 39,206   +175

    It worked this time :)
    How is redirection?
    Broni, Aug 18, 2010
    #46
     

  7. bearone100 Newcomer, in training Posts: 54

    looks like you got it
    bearone100, Aug 18, 2010
    #47

  8. bearone100 Newcomer, in training Posts: 54

    thanks for the help
    bearone100, Aug 18, 2010
    #48

  9. Broni Malware Annihilator Posts: 39,206   +175

    Cool :)
    Hold on there....
    Broni, Aug 18, 2010
    #49

  10. bearone100 Newcomer, in training Posts: 54

    ok no problem
    bearone100, Aug 18, 2010
    #50

  11. Broni Malware Annihilator Posts: 39,206   +175

    I saw couple of bad entries in Combofix, so I want to see, if they're gone as well.

    Re-run Combofix and post fresh log.
    Broni, Aug 18, 2010
    #51

  12. bearone100 Newcomer, in training Posts: 54

    ok no problem ok
    bearone100, Aug 18, 2010
    #52

  13. bearone100 Newcomer, in training Posts: 54

    heres he new one

    Attached Files:

    bearone100, Aug 18, 2010
    #53

  14. Broni Malware Annihilator Posts: 39,206   +175

    One bad entry is gone, but I still can see another one, which I don't like....

    Please download SystemLook from one of the links below and save it to your Desktop.
    Download Mirror #1
    Download Mirror #2
    • Double-click SystemLook.exe to run it.
    • Vista users:: Right click on SystemLook.exe, click Run As Administrator
    • Copy the content of the following box into the main textfield:
      Code:
      :reg
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg /s
    • Click the Look button to start the scan.
    • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
    Note: The log can also be found on your Desktop entitled SystemLook.txt
    Broni, Aug 18, 2010
    #54

  15. bearone100 Newcomer, in training Posts: 54

    i had to reset internet conection after the scan to get back on internet heres the scan

    Attached Files:

    bearone100, Aug 18, 2010
    #55

  16. bearone100 Newcomer, in training Posts: 54

    i just reset the internet through the network and shating center in vista
    bearone100, Aug 18, 2010
    #56

  17. Broni Malware Annihilator Posts: 39,206   +175

    Run OTL
    • Under the Custom Scans/Fixes box at the bottom, paste in the following

      Code:
      :OTL

:Services

:Reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\捁牥吠畯⁲敒業摮牥]

:Files

:Commands
[purity]
[emptytemp]
[emptyflash]
[Reboot]
    • Then click the Run Fix button at the top
    • Let the program run unhindered, reboot the PC when it is done
    • You will get a log that shows the results of the fix. Please post it.
    • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
    Broni, Aug 18, 2010
    #57

  18. bearone100 Newcomer, in training Posts: 54

    All processes killed
    ========== OTL ==========
    ========== SERVICES/DRIVERS ==========
    ========== REGISTRY ==========
    Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\捁牥吠畯⁲敒業摮牥\ deleted successfully.
    ========== FILES ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: All Users

    User: Default
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes

    User: me
    ->Temp folder emptied: 48728 bytes
    ->Temporary Internet Files folder emptied: 13185448 bytes
    ->Flash cache emptied: 875 bytes

    User: Public
    ->Temp folder emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 0 bytes
    RecycleBin emptied: 0 bytes

    Total Files Cleaned = 13.00 mb


    [EMPTYFLASH]

    User: All Users

    User: Default

    User: Default User

    User: me
    ->Flash cache emptied: 0 bytes

    User: Public

    Total Flash Files Cleaned = 0.00 mb


    OTL by OldTimer - Version 3.2.10.0 log created on 08182010_012627

    Files\Folders moved on Reboot...
    File\Folder C:\Users\me\AppData\Local\Temp\Low\~DF6DA9.tmp not found!
    File\Folder C:\Users\me\AppData\Local\Temp\Low\~DF6DB2.tmp not found!
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SOVJ21PZ\;ord=2914734738[1].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SOVJ21PZ\sh21[1].htm moved successfully.
    File\Folder C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4W90VQCC\fish-tank-_12833593[1].htm not found!
    File\Folder C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\4W90VQCC\genericHist_iframe2[1].htm not found!
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\43JRNF7K\ads[8].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\43JRNF7K\topic151803-3[2].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\39MLWQB2\ads[5].htm moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat moved successfully.
    C:\Users\me\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.

    Registry entries deleted on Reboot...
    bearone100, Aug 18, 2010
    #58

  19. bearone100 Newcomer, in training Posts: 54

    running quick scan now
    bearone100, Aug 18, 2010
    #59

  20. Broni Malware Annihilator Posts: 39,206   +175

    Good and after that, give me fresh Combofix log.
    Broni, Aug 18, 2010
    #60
Page 3 of 4
Topic Status:
Not open for further replies.

Add New Comment

Social Login & Guest Posting

TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.