Jump to content

Backgammon

Members
  • Posts

    4
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Hi MrC The Rootkit scan didn't find anything at all. No logs were created after it finished to show you either. So,...i'll monitor it from here on in, but many thanks for your patience and help. I very much appreciate it. thanks Backgammon
  2. Hi MrC, As requested the log that you require is below; (i couldnt find the attach button to add the txt file)........also, when downloading the Rogue Killer program it auto ran without me doing anything and found something which i took a screenshot of and kept, do you want that ? RogueKiller V8.6.4 _x64_ [Jul 29 2013] by Tigzymail : tigzyRK<at>gmail<dot>comFeedback : http://www.adlice.com/forum/Website : http://www.adlice.com/softwares/roguekiller/Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal mode Mode : Scan -- Date : 07/31/2013 16:43:09| ARK || FAK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 8 ¤¤¤[RUN][sUSP PATH] HKLM\[...]\Wow6432Node\[...]\Run : UoM_Timer ("C:\Windows\timer.exe" [-]) -> FOUND[HJ POL] HKLM\[...]\System : DisableTaskMgr (0) -> FOUND[HJ POL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableTaskMgr (0) -> FOUND[HJ POL] HKLM\[...]\Wow6432Node\[...]\System : DisableRegistryTools (0) -> FOUND[HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ¤¤¤ Scheduled tasks : 1 ¤¤¤[V2][sUSP PATH] IE 32Bit Set : C:\Windows\IERemove.exe [-] -> FOUND ¤¤¤ Startup Entries : 0 ¤¤¤ ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED 0x0] ¤¤¤ ¤¤¤ External Hives: ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤--> %SystemRoot%\System32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: ST3250312AS ATA Device +++++--- User ---[MBR] 11c15da57892e29ae29d357afc8996eb[bSP] a262345e2c4a1b34ef2a60c452b1e767 : Windows 7/8 MBR CodePartition table:0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 238473 MoUser = LL1 ... OK!User = LL2 ... OK! Finished : << RKreport[0]_S_07312013_164309.txt >> Thanks
  3. Hi I have a problem with IE randomly opening pop-ups by http://redirect.cpvrdr.com/ and then redirecting webpages to any site. I have read the other forums on this and you have asked for logs via dds.com or dds.scr; i have ran the dds.scr and the 2 logs are attached... Any help to remove this redirecting problem would be great - if there is a problem in looking into this, or, i have not placed this information into the correct forum please let me know and i'll change it. Thanks dds.txtattach.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.