Hi ,
as advised, I have run the malaware bytes(quick scan and full scan) and got the following outcomes. I have removed all the viruses as mentioned in the log.
But I would like to add few more details.
1. I was able to upload the malaware but was not able to run from Normal mode, so I ran it from safe mode.
2. the GMER utility didnt return any log.
3. Still I am
unable to open the mcafee site and Microsoft site from Normal mode(didnt try in safe mode). not sure as why these sites particularly are not being able to open where as other sites are working fine.
4. not able to open the site
http://download.bleepingcomputer.com/sUBs/dds.scr as mentioned in the step 5, I suspect this is again going into the same way as that of Microsoft/Mcafee site.
Please let me know how to run the step5.
MalawareLog
************************************************************************************
can type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 198290
Time elapsed: 2 minute(s), 39 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 9
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{0B84B4B4-8AF8-4F1F-91FE-074A666F6425} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0B84B4B4-8AF8-4F1F-91FE-074A666F6425} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{631ACB68-57C3-48AF-9CC5-FCEC0837FFD3} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{631ACB68-57C3-48AF-9CC5-FCEC0837FFD3} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D5E9B421-C309-41DE-9014-800A2ADCDEB0} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D5E9B421-C309-41DE-9014-800A2ADCDEB0} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3E9BE71D-A3FA-4224-AB29-2602ACD577FF} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4C2743F0-A2E2-41A0-9E65-798943109F42} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{796B75F6-6187-47E2-8F1F-C16E059E6E19} (PUP.MyWebSearch) -> No action taken.
Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|UJ7J2I3X3GVE5G4EL (Trojan.SpyEyes) -> Data: C:\sooi832.bin\CA0A4982AF8.exe /q -> No action taken.
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 1
C:\sooi832.bin (Trojan.SpyEyes) -> No action taken.
Files Detected: 1
C:\Users\myname\0.01500284445972555.exe (Trojan.Agent.Gen) -> No action taken.
(end)
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 462924
Time elapsed: 54 minute(s), 27 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Program Files (x86)\FilmFanaticEI\Installr\1.bin\paEZSETP.dll (PUP.FunWebProducts) -> No action taken.
C:\Users\myname\AppData\LocalLow\FilmFanaticEI\Installr\Cache\0129E43C.exe (PUP.MyWebSearch) -> No action taken.
(end)
3-07-2012 00:23:26
mbam-log-2012-07-03 (00-23-26).txt
Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 462924
Time elapsed: 54 minute(s), 27 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 2
C:\Program Files (x86)\FilmFanaticEI\Installr\1.bin\paEZSETP.dll (PUP.FunWebProducts) -> Quarantined and deleted successfully.
C:\Users\myname\AppData\LocalLow\FilmFanaticEI\Installr\Cache\0129E43C.exe (PUP.MyWebSearch) -> Quarantined and deleted successfully.
GMERLog
************************************************************************************
None