Re-run Zoek.exe using this script:
symlinksfix;
emptyclsid;
C:\Windows\$NtUninstallKB62280$\485945278\U;f
C:\Windows\$NtUninstallKB62280$\485945278\L;f
C:\Windows\$NtUninstallKB62280$\485945278\@;f
C:\Windows\$NtUninstallKB62280$\485945278\L\00000004.@;f
C:\Windows\$NtUninstallKB62280$\485945278\U\00000004.@;f
C:\Windows\$NtUninstallKB62280$\485945278\U\00000008.@;f
C:\Windows\$NtUninstallKB62280$\485945278\U\000000cb.@;f
C:\Windows\$NtUninstallKB62280$\485945278\U\80000000.@;f
C:\Windows\$NtUninstallKB62280$\485945278\U\80000032.@;f
resetIEproxy;
C:\users\Ben\AppData\Roaming\mjusbsp;vs
FFdefaults;
chrdefaults;
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{037039D8-8C53-43CC-95BE-198556E66531}];r
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8E8176CF-3C72-4F29-B0AF-5E670D763FBD}];r
[-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{E4A7BA5D-1FCA-4261-85CA-307FC5471A6D}];r
ipconfig /flushdns >> %temp%\log.txt;b
resethosts;
emptyalltemp;
autoclean;
- Attach here fresh created zoek log.
THEN ...Download
TDSSKiller and save it to your desktop
Execute
TDSSKiller.exe by doubleclicking on it.
- Press Start Scan
- If Suspicious object is detected, the default action will be Skip, click on Continue.
- If Malicious objects are found, select Cure.
Once complete, a log will be produced at the root drive which is typically C:\ ,for example,
C:\TDSSKiller.<version_date_time>log.txtPlease post the contents of that log in your next reply.