| Other > Viruses and worms |
| Yet Another Google Redirect Virus |
| (1/2) > >> |
| bureauengros:
Hi, Looks like we've been hit with this same Google redirect malware that so many other here have. Humbly requesting help. Attached is the OTS log. Thanks |
| argus:
Start OTS. Copy/Paste the information in the quotebox below into the panel where it says "Paste fix here" and then click the Run Fix button. --- Code: ---[Unregister Dlls] [Registry - Safe List] < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ YN -> {5C255C8A-E604-49b4-9D64-90988571CECB} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] [Files/Folders - Modified Within 30 Days] NY -> ~16375588 -> C:\Documents and Settings\All Users\Application Data\~16375588 NY -> ~16375588r -> C:\Documents and Settings\All Users\Application Data\~16375588r NY -> 16375588 -> C:\Documents and Settings\All Users\Application Data\16375588 [Files - No Company Name] NY -> Microsoft Security Essentials.lnk -> C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk NY -> ~16375588 -> C:\Documents and Settings\All Users\Application Data\~16375588 NY -> ~16375588r -> C:\Documents and Settings\All Users\Application Data\~16375588r NY -> 16375588 -> C:\Documents and Settings\All Users\Application Data\16375588 [Empty Temp Folders] [EmptyFlash] [Reboot] --- End code --- The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here I will review the information when it comes back in. |
| bureauengros:
Thanks - here's the information from the log file. (The "Avast blocked 64.211..." pop-up and re-direct is still happening though). |
| argus:
Download aswMBR.exe ( 1.8mb ) to your desktop. Double click the aswMBR.exe to run it Click the "Scan" button to start scan On completion of the scan click save log, save it to your desktop and post in your next reply |
| bureauengros:
Thanks again - here's the results from the scan. |
| Navigation |
| Message Index |
| Next page |