orangealert Posted February 9, 2009 ID:54914 Share Posted February 9, 2009 Hi! Please would you help. Just been infected - requested to dowload anti-virus software blah blah. I have MBAM but cannot open. Gotta be quick for virus redirects webpage!Cheers! Link to post Share on other sites More sharing options...
Maniac Posted February 9, 2009 ID:54917 Share Posted February 9, 2009 Hello !Please read and follow the instructions provided here: I'm infected - What do I do now?If needed please post your logs in a NEW topic here: Malware Removal - HijackThis LogsWhen posting logs please do not use any Quote, Code, or other tags. Please copy/paste directly into your post and do not attach files unless requested. Link to post Share on other sites More sharing options...
orangealert Posted February 9, 2009 Author ID:54953 Share Posted February 9, 2009 Logfile of Trend Micro HijackThis v2.0.2Scan saved at 14:10:15, on 09/02/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16762)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Intel\Wireless\Bin\EvtEng.exeC:\Program Files\Intel\Wireless\Bin\S24EvMon.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Acer\Empowering Technology\admServ.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exeC:\WINDOWS\system32\CTsvcCDA.exeC:\Program Files\Creative\Shared Files\CTDevSrv.exeC:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exeC:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exeC:\Program Files\F-Secure\Anti-Virus\fsgk32st.exeC:\Program Files\F-Secure\Common\FSMA32.EXEC:\Program Files\F-Secure\Anti-Virus\FSGK32.EXEC:\Program Files\F-Secure\Common\FSMB32.EXEC:\Program Files\Intel\Wireless\Bin\RegSrvc.exeC:\Program Files\CyberLink\Shared Files\RichVideo.exeC:\Program Files\F-Secure\Common\FCH32.EXEC:\WINDOWS\system32\svchost.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exeC:\Program Files\F-Secure\Anti-Virus\fsqh.exeC:\Program Files\F-Secure\Common\FAMEH32.EXEC:\Program Files\F-Secure\FSPC\fspc.exeC:\Program Files\F-Secure\FSAUA\program\fsaua.exeC:\Program Files\F-Secure\Anti-Virus\fssm32.exeC:\Program Files\F-Secure\FWES\Program\fsdfwd.exeC:\WINDOWS\RTHDCPL.EXEC:\Program Files\Synaptics\SynTP\SynTPLpr.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Acer\Acer Arcade\PCMService.exeC:\Acer\Empowering Technology\eRecovery\Monitor.exeC:\WINDOWS\system32\igfxtray.exeC:\WINDOWS\system32\hkcmd.exeC:\WINDOWS\system32\igfxpers.exeC:\Acer\Empowering Technology\eDataSecurity\eDSloader.exeC:\acer\Empowering Technology\ePower\epm-dm.exeC:\PROGRA~1\LAUNCH~1\QtZgAcer.EXEC:\Acer\Empowering Technology\admtray.exeC:\WINDOWS\V0220Mon.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exeC:\Program Files\F-Secure\Common\FSM32.EXEC:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exeC:\Program Files\iTunes\iTunesHelper.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\F-Secure\FSAUA\program\fsus.exeC:\Program Files\Creative\Creative Media Lite\CTZDetec.exeC:\Program Files\Creative\Software Update 3\SoftAuto.exeC:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exeC:\WINDOWS\system32\igfxext.exeC:\Program Files\F-Secure\FSGUI\fsguidll.exeC:\WINDOWS\system32\igfxsrvc.exeC:\Program Files\iPod\bin\iPodService.exeC:\Program Files\F-Secure\Anti-Virus\fsav32.exeC:\Program Files\Windows Live\Messenger\msnmsgr.exeC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\WINDOWS\services.exeC:\WINDOWS\system32\svschost.exeC:\WINDOWS\sysguard.exeC:\WINDOWS\system32\sv Link to post Share on other sites More sharing options...
orangealert Posted February 9, 2009 Author ID:54955 Share Posted February 9, 2009 Sorry but had to send Hijack This log while I could. Cannot do anything otherwise!! Link to post Share on other sites More sharing options...
orangealert Posted February 9, 2009 Author ID:54956 Share Posted February 9, 2009 I am unable to carry out the instructions for MBAM gets blocked. Can you help please? Link to post Share on other sites More sharing options...
orangealert Posted February 9, 2009 Author ID:54964 Share Posted February 9, 2009 Hi again, sorry about appearing so short. It is just that this damned virus redirects me elsewhere before I get chance to finish! The PC is an Acer 1640z, about 4 years old, pentium processor 1.70GHz, 1GB ram, Windows SP3As stated in the previous messages I am unable to open MBAM I already have, and if I attempt to download the page gets redirected. I am getting promps to download both Antivirus 2009 and Spyware Protect 2009... Hurrah.RegardsOrangeAlert Link to post Share on other sites More sharing options...
Root Admin AdvancedSetup Posted February 9, 2009 Root Admin ID:55032 Share Posted February 9, 2009 Please post the request in the HJT forum and as soon as someone is available they will assist you. Sorry, but the site is quite busy with requests at the moment, but we'll get to you. Link to post Share on other sites More sharing options...
orangealert Posted February 9, 2009 Author ID:55039 Share Posted February 9, 2009 Yes, sorry about the HJT in the wrong place. I have posted in the correct section Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now