also @ TechSpot: Android 4.0: Tracking Ice Cream Sandwich's Availability on Smartphones

TechSpot

[Solved] Need help with a virus that redirects Google/Firefox searches

Discussion in 'Virus and Malware Removal' started by grannaLA, Feb 8, 2011.

Thread Status:
Not open for further replies.
Page 3 of 3

  1. Broni Malware Annihilator

    The issue seems to be resolved.
    Broni, Feb 20, 2011
    #41

  2. grannaLA Newcomer, in training

    Finally getting back to the last clean-up. Here's the OTL log from step 1 of your last reply . Continuing with Step 2 next.

    All processes killed
    ========== OTL ==========
    ========== COMMANDS ==========

    [EMPTYTEMP]

    User: Administrator
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    User: All Users

    User: Default User
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 0 bytes
    ->Flash cache emptied: 56502 bytes

    User: Erin
    ->Temp folder emptied: 23501643 bytes
    ->Temporary Internet Files folder emptied: 139052624 bytes
    ->Java cache emptied: 0 bytes
    ->FireFox cache emptied: 51078429 bytes
    ->Google Chrome cache emptied: 0 bytes
    ->Apple Safari cache emptied: 0 bytes
    ->Flash cache emptied: 1680 bytes

    User: LocalService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Flash cache emptied: 0 bytes

    User: NetworkService
    ->Temp folder emptied: 0 bytes
    ->Temporary Internet Files folder emptied: 33170 bytes
    ->Java cache emptied: 0 bytes
    ->Flash cache emptied: 0 bytes

    %systemdrive% .tmp files removed: 0 bytes
    %systemroot% .tmp files removed: 0 bytes
    %systemroot%\System32 .tmp files removed: 664 bytes
    %systemroot%\System32\dllcache .tmp files removed: 0 bytes
    %systemroot%\System32\drivers .tmp files removed: 0 bytes
    Windows Temp folder emptied: 2027502 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
    %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
    RecycleBin emptied: 315572 bytes

    Total Files Cleaned = 206.00 mb


    [EMPTYFLASH]

    User: Administrator
    ->Flash cache emptied: 0 bytes

    User: All Users

    User: Default User
    ->Flash cache emptied: 0 bytes

    User: Erin
    ->Flash cache emptied: 0 bytes

    User: LocalService
    ->Flash cache emptied: 0 bytes

    User: NetworkService
    ->Flash cache emptied: 0 bytes

    Total Flash Files Cleaned = 0.00 mb

    Restore points cleared and new OTL Restore Point set!

    OTL by OldTimer - Version 3.2.20.6 log created on 02212011_171953

    Files\Folders moved on Reboot...
    C:\Documents and Settings\Erin\Local Settings\Temp\IadHide4.dll moved successfully.
    File\Folder C:\Documents and Settings\Erin\Local Settings\Temp\~DFA841.tmp not found!
    File\Folder C:\Documents and Settings\Erin\Local Settings\Temp\~DFA852.tmp not found!
    File\Folder C:\Documents and Settings\Erin\Local Settings\Temp\~DFA8B0.tmp not found!
    File\Folder C:\Documents and Settings\Erin\Local Settings\Temp\~DFA8C1.tmp not found!
    C:\Documents and Settings\Erin\Local Settings\Temporary Internet Files\Content.IE5\WR3XF3NT\topic160935-2[1].html moved successfully.
    C:\Documents and Settings\Erin\Local Settings\Temporary Internet Files\Content.IE5\GFXNYIPS\crosspixel-dest[1].htm moved successfully.
    C:\Documents and Settings\Erin\Local Settings\Temporary Internet Files\Content.IE5\9S3FN8L2\sh32[1].html moved successfully.
    C:\Documents and Settings\Erin\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.

    Registry entries deleted on Reboot...
    grannaLA, Feb 21, 2011
    #42

  3. Broni Malware Annihilator

    Very well.
    Give me a final word, when ready.
    Broni, Feb 21, 2011
    #43
Page 3 of 3
Thread Status:
Not open for further replies.