Jump to content

Redirect Virus


Recommended Posts

My friend has a Dell running Vista and she can't run Google searches without being redirected to malicious sites.

I told her to run MBAM and she found one infected registry key and two registry data items which Malwarebytes quarantined and deleted.

Here's the log for that scan.

Malwarebytes' Anti-Malware 1.51.1.1800

Database version: 7363

Windows 6.0.6002 Service Pack 2

Internet Explorer 7.0.6002.18005

8/3/2011 4:00:27 AM

mbam-log-2011-08-03 (04-00-27).txt

Scan type: Full scan (C:\|D:\|)

Objects scanned: 352819

Time elapsed: 1 hour(s), 33 minute(s), 8 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 1

Registry Values Infected: 0

Registry Data Items Infected: 2

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

HKEY_CLASSES_ROOT\scrfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: ("%1" /S) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

However her computer is still acting up, any advice would be great. Any instructions you give me or questions you have I can give to her.

I told her to run a quickscan, do you need that log as well?

Link to post
Share on other sites

  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.