m.gre
Members-
Posts
11 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Everything posted by m.gre
-
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
Yea I did not mean for it to delete it...the message box said McAfee found a trojan and removed it automatically (even though i know combofix is not a trojan). I manually deleted the files....will the fact that I did not uninstall combofix be a problem? I also enabled cd emulators with defogger and still have not had any of the symptoms from before! Thank you so much for your help! -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
Edit: I also have C:\ComboFix2.txt C:\ComboFix-quarantined-files.txt -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
I removed DDS and JavaRa manually. A McAfee window popped up and said it detected a trojan (combofix) and it was removed? It happened before I could run the ComboFix /uninstall command. When I did finally run the command it said 'Windows cannot find ComboFix' (I also tried Combo-Fix /uninstall but I got the same error). This folder and file still exist: C:\Combo-Fix\ C:\ComboFix.txt Should I manually delete them or uninstall in another way? Also, can I re-enable my emulators with Defogger now? -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
So far things are good. The pop up tabs have stopped so far. And I have not noticed an svchost.exe crash either. (My startup also seems blazing fast so thank you for that as well!) -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
ComboFix 10-05-29.05 - mrg 05/31/2010 3:13.2.1 - x86 Microsoft -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
ComboFix 10-05-29.05 - mrg 05/30/2010 17:08:19.1.1 - x86 Microsoft -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
3 minutes after I posted my last reply I went to hotmail.com and a malware (adware?) tab popped up so I guess the symptoms are still present. Sorry for the double post but I thought this was pertinent. -
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
Hey Borislav, thanks for your reply! Step 1 I uninstalled all versions of JAVA Ran JavaRa Deleted the Java folders except: I am using Vista so the Documents and Settings folders did not exist. Should I delete these folders that I found? C:\ProgramData\Sun C:\SWSetup\SUNJAVA C:\Windows\System32\config\systemprofile\AppData\LocalLow\Sun (Also, when my system is clean should I go to the Sun homepage and install the most recent JAVA version if I use it?) Step 2 Completed Step 3 Completed New Logs below. JavaRa 1.15 Removal Log.Report follows after line. ------------------------------------ The JavaRa removal process was started on Sun May 30 05:33:28 2010 Found and removed: C:\Users\mrg\AppData\LocalLow\Sun\Java\jre1.6.0_10 Found and removed: C:\Users\mrg\AppData\LocalLow\Sun\Java\jre1.6.0_11 Found and removed: C:\Users\mrg\AppData\LocalLow\Sun\Java\jre1.6.0_12 Found and removed: C:\Users\mrg\AppData\LocalLow\Sun\Java\jre1.6.0_13 Found and removed: C:\Users\mrg\AppData\LocalLow\Sun\Java\jre1.6.0_17 Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4155 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18904 5/30/2010 6:03:46 AM mbam-log-2010-05-30 (06-03-46).txt Scan type: Quick scan Objects scanned: 131318 Time elapsed: 10 minute(s), 17 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) DDS (Ver_10-03-17.01) - NTFSx86 Run by mrg at 6:10:03.57 on Sun 05/30/2010 Internet Explorer: 8.0.6001.18904 Microsoft -
I have removed all infections with SuperAnti Spyware and Malwarebytes, updated and scanned with my anti-virus (McAfee). My problem, and symptoms, still remain. When I search with Google and click one of the resulting links it takes me to a random adware page instead of the link that I click (In FF and IE). I am also having additional tabs pop up with adware while doing normal things in FF; like checking email, etc. Here is a screenshot of what the adware tab looks like as it is randomly popping up. (FYI: I am not sure if this is relevant or not... I have had Svchost.exe crashes. After the crashes I lose the styles on my start button and taskbar; it reverts back to Win2000 style (I am using Vista home basic). I can also post any of these error messages if you need me to.) I have run a quickscan with MBAM - most recent log below. I used Defogger to disable any CDRom emulation. I ran the DDS tool - DDS.txt is below and Attach.zip is attached. I downloaded the GMER program and tried to run it 3 times resulting in a Bluescreen crash each time. The redirect and pop-up ads still persist, what should I do? Please help! Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4141 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18904 5/25/2010 8:07:54 AM mbam-log-2010-05-25 (08-07-54).txt Scan type: Quick scan Objects scanned: 131104 Time elapsed: 11 minute(s), 50 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) DDS (Ver_10-03-17.01) - NTFSx86 Run by mrg at 10:45:01.01 on Tue 05/25/2010 Internet Explorer: 8.0.6001.18904 BrowserJavaVersion: 1.6.0_19 Microsoft Attach.zip
-
Pop-up Ad/Redirect problem and svchost.exe crash
m.gre replied to m.gre's topic in Resolved Malware Removal Logs
It has been 48 hours and no one has responded to me (I'm not sure why?). So please go head and close this thread--I will open a new thread and repost my reports. Thank you. -
Hello I recently have been having a problem with random adware pop-up tabs displaying in Firefox (even without clicking any links). Svchost.exe APPCRASHes have also begun and become frequent. Also, sporadically after the APPCRASH my start menu and taskbar will lose their style and revert back to Win2000 style (I am using Vista home basic). Within the last day I scanned with both SuperAnti Spyware and MBAM and removed all infections. Then I updated and scanned with my anti-virus program (McAfee).That scan found detected 2 items; 1 was removed and 1 was quarantined. Below are the windows error pop-up report, the most recent MBAM log, DDS.txt, and Attach.zip is attached. I tried to run the GMER program 3 different times and had a Bluescreen Crash each time...error message below as well. Thank you in advance for your help! Problem signature: Problem Event Name: APPCRASH Application Name: svchost.exe Application Version: 6.0.6001.18000 Application Timestamp: 47918b89 Fault Module Name: ntdll.dll Fault Module Version: 6.0.6002.18005 Fault Module Timestamp: 49e03821 Exception Code: c000071b Exception Offset: 000888f5 OS Version: 6.0.6002.2.2.0.768.2 Locale ID: 1033 Additional Information 1: 0e02 Additional Information 2: b21b56b606e7544720668ce364087082 Additional Information 3: 0e02 Additional Information 4: b21b56b606e7544720668ce364087082 Read our privacy statement: http://go.microsoft.com/fwlink/?linkid=501...mp;clcid=0x0409 ================================================== Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4141 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18904 5/25/2010 8:07:54 AM mbam-log-2010-05-25 (08-07-54).txt Scan type: Quick scan Objects scanned: 131104 Time elapsed: 11 minute(s), 50 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) ==================================================== DDS (Ver_10-03-17.01) - NTFSx86 Run by mrg at 10:45:01.01 on Tue 05/25/2010 Internet Explorer: 8.0.6001.18904 BrowserJavaVersion: 1.6.0_19 Microsoft Attach.zip