Redirected to 'http://ad.yieldmanager.com/st%3fad_type'

Discussion in 'Malware Help (A Specialist Will Reply)' started by TonyCzar, Apr 25, 2008.

  1. TonyCzar

    TonyCzar Private E-2

    I have read the other threads on this topic, but the solutions did not solve my problem. HJT file (saved as Analyzed.txt) is attached. I'd value assistance in getting rid of this tenacious gremlin.
     

    Attached Files:

    TonyCzar, Apr 25, 2008
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Are you saying your browser is always redirected? The link you gave in your message title is not even a valid link. Which browser are you using? Are you sure you are just not referring to a cookie which yieldmanager often is? ( see:http://ca.com/us/securityadvisor/pest/pest.aspx?id=453097711 )


    If you want to check for malware, please follow the instructions in the below link and attach the requested logs when you finish these instructions.

    READ & RUN ME FIRST. Malware Removal Guide
     
    chaslang, Apr 26, 2008
    #2
  3. TonyCzar

    TonyCzar Private E-2

    TonyCzar, Apr 26, 2008
    #3
  4. TonyCzar

    TonyCzar Private E-2

    chaslang: OK, ready to rock-and-roll. FYI, I am using Kaspersky AVP (best in the land). I have NoAdware 5.0 running in the background. Every so often I also run Spyhunter3 and SpyBot, just to catch the things NoAdware misses. (BTW, you have done a superb job of making these instructions logical and easy to follow. Bravo.)

    I checked through the list of things to Remove, and I did not have any of them loaded.

    As per instructions, I removed Java 6 Update 5 and installed Java 6 Update 6.

    The System Configuration Utility is set to 'Normal Startup'.

    Kaspersky has no items in quarantine. It does tell me that 12 running items have been 'disinfected', which I assume means I assigned them to a Safe Zone once upon a time.

    Recycle Bin emptied.

    CCleaner Slim has been run.

    Changes to Hidden Files, etc. options have been made.

    I ran all of the anti-spyware programs as per instructions.

    And.... my problem seems to be resolved! (If I learn later it's still there, I'll post again.) Thank you. Please tell me how I can send you a more tangible form of 'Thanks'.

    TonyCzar

    P.S. I recommend that when running CF.exe (combofix.exe), Kaspersky be set to 'Pause Protection' by right-clicking on the icon and choosing 'Pause Protection'. There is one item in the execute process that cannot be set to a 'Trusted Application' by Kaspersky; it's the one that generates a .txt file so that original settings (such as time format) can be re-established. By pausing Kaspersky, no problems.
     
    TonyCzar, Apr 26, 2008
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Not highly recommended.

    Should be uninstalled completely!


    It may be a good idea to attach your logs anyway.

    Thanks for the info on Kaspersky.
     
    chaslang, Apr 27, 2008
    #5
  6. TonyCzar

    TonyCzar Private E-2

    Two questions based on your comments:

    (1) Please recommend a good program(s) to use to intercept spyware.

    (2) Please tell me how I can compensate you.

    TonyCzar
     
    TonyCzar, Apr 27, 2008
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    See this: How to Protect yourself from malware!

    Help someone that needs help when it is something you can help with. ;)
     
    chaslang, Apr 27, 2008
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds