« previous next »
Pages: 1 [2]   Go Down

Author Topic: hdd diagnostic malware  (Read 8106 times)

0 Members and 1 Guest are viewing this topic.

needalotofhelp

  • Guest
Re: hdd diagnostic malware
« Reply #15 on: December 08, 2010, 12:04:16 AM »
Ok here my olt list k, hope it help
Logged

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: hdd diagnostic malware
« Reply #16 on: December 08, 2010, 09:40:02 PM »
Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    Quote
    :OTL
    PRC - [2010/12/06 20:59:20 | 000,448,000 | ---- | M] (MEDIA Corporation) -- C:\Users\juan\AppData\Local\Temp\IGwqNKmplw.exe
    SRV - [2010/04/08 15:46:20 | 000,154,152 | ---- | M] (Authentium, Inc) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe -- (vseqrts)
    SRV - [2010/04/08 15:46:18 | 000,117,288 | R--- | M] (Authentium, Inc) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe -- (vsedsps)
    SRV - [2010/04/08 15:46:12 | 000,117,288 | R--- | M] (Authentium, Inc) [Auto | Running] -- C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe -- (vseamps)
    O3 - HKU\S-1-5-21-3104040009-1492376757-3879208002-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O4 - HKLM..\Run: [RegistryQuick.exe] C:\Program Files\RegQuick\RegistryQuick.exe File not found
    O4 - HKU\S-1-5-21-3104040009-1492376757-3879208002-1000..\Run: [IGwqNKmplw.exe] C:\Users\juan\AppData\Local\Temp\IGwqNKmplw.exe (MEDIA Corporation)
    [2010/12/06 22:32:12 | 000,000,000 | ---D | C] -- C:\Program Files\RegQuick
    [2009/12/20 16:33:37 | 000,000,000 | ---D | M] -- C:\Users\juan\AppData\Roaming\com.doubleperfect.ggpo.0753AD3679DBFCA1E7F470171B7D0DB8B404A7EA.1

    :Files
    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [EMPTYFLASH]
    [CREATERESTOREPOINT]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.
.
THEN

Download ComboFix from one of these locations:


Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop


  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
  • Double click on ComboFix.exe & follow the prompts.


When finished, it shall produce a log for you.  Please include the C:\ComboFix.txt in your next reply.
[/list]
Logged
Pages: 1 [2]   Go Up
« previous next »