angrynoob Posted January 9, 2013 ID:631866 Share Posted January 9, 2013 Last night i got a notification about some spyware infection called "Adware Generic5.RQV" from AVG.I attempted to remove it with AVG and it appeared to work, but a couple of minutes later I got another warning from AVG regarding the same infection. This morning I started using a removal guide for "Adware Generic5.RQV" and followed it until it called for another virus scan which I completed which showed a infection named Trojan:js/Tracur.E. Link to post Share on other sites More sharing options...
MrCharlie Posted January 9, 2013 ID:631885 Share Posted January 9, 2013 Welcome to the forum, please start at the link below:http://forums.malwar...?showtopic=9573Post back the 2 logs here.....DDS.txt and Attach.txt<====><====><====><====><====><====><====><====>Next.......Please remove any usb or external drives from the computer before you run this scan!Quit all running programs.Please download and run RogueKiller to your desktop.For Windows XP, double-click to start.For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.Click Scan to scan the system. When the scan completes > Close out the program > Don't Fix anything!Don't run any other options, they're not all bad!!!!!!!Post back the report which should be located on your desktop.MrC------->Your topic will be closed if you haven't replied within 3 days!<--------(If I don't respond within 24 hours, please send me a PM) Link to post Share on other sites More sharing options...
angrynoob Posted January 9, 2013 Author ID:631897 Share Posted January 9, 2013 Thank you for your time, here's the files you're asking for.dds.txtattach.txt Link to post Share on other sites More sharing options...
MrCharlie Posted January 9, 2013 ID:631899 Share Posted January 9, 2013 Can you post the log from RogueKiller? MrC Link to post Share on other sites More sharing options...
angrynoob Posted January 9, 2013 Author ID:631900 Share Posted January 9, 2013 Sure.RKreport1_S_01082013_02d2051.txt Link to post Share on other sites More sharing options...
MrCharlie Posted January 9, 2013 ID:631904 Share Posted January 9, 2013 Please create a new system restore point before running Malwarebytes Anti-Rootkit if you can.MBAR tutorialDownload Malwarebytes Anti-Rootkit from HEREUnzip the contents to a folder in a convenient location.Open the folder where the contents were unzipped and run mbar.exeFollow the instructions in the wizard to update and allow the program to scan your computer for threats.Click on the Cleanup button to remove any threats and reboot if prompted to do so.Wait while the system shuts down and the cleanup process is performed.Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.When done, please post the two logs produced they will be in the MBAR folder..... mbar-log.txt and system-log.txtTo attach a log if needed:Bottom right corner of this page.New window that comes up.~~~~~~~~~~~~~~~~~~~~~~~Note:If no additional threats were found, verify that your system is now running normally, making sure that the following items are functional:Internet accessWindows UpdateWindows FirewallIf there are additional problems with your system, such as any of those listed above or other system issues, then run the fixdamage tool included with Malwarebytes Anti-Rootkit and reboot.Verify that your system is now functioning normally.MrC Link to post Share on other sites More sharing options...
angrynoob Posted January 9, 2013 Author ID:631912 Share Posted January 9, 2013 I don't currently have access to any sort of external drive. Should I wait until I do before running this tool-kit? Link to post Share on other sites More sharing options...
MrCharlie Posted January 9, 2013 ID:631918 Share Posted January 9, 2013 No, there hasn't been any problems with it, we just ask that you create a new system restore point before you run it.MrC Link to post Share on other sites More sharing options...
angrynoob Posted January 9, 2013 Author ID:631939 Share Posted January 9, 2013 I got a warning window saying there's probable rootkit activity detected.it reads "registry value "AppInit_Dlls" has been found, which may be caused by rootkit activity.Note: Press "No" button if you're not sure. If the tool crashes or terminates unexpectedly during a system scan, restart the tool and press "yes" should this message appear again.Do you want to remove this value and restart the tool?" Link to post Share on other sites More sharing options...
MrCharlie Posted January 9, 2013 ID:631941 Share Posted January 9, 2013 Press no and see what happens and what's found.Be back in the am, MrC Link to post Share on other sites More sharing options...
Maurice Naggar Posted January 13, 2013 ID:633648 Share Posted January 13, 2013 Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread. Other members who need assistance please start your own topic in a new thread. Thanks! Link to post Share on other sites More sharing options...
Recommended Posts