I guess I'm next in line for help with Yoog

Ok, I think I may have gotten rid of DCads following all the malware removal instructions. Now I need to get rid of this Yoog search. I've attached th ComboFix log. Thanks.

 

http://www.majorgeeks.com/images/grenade.gifWelcome! to MajorGeeks.com!http://www.majorgeeks.com/images/grenade.gif

Please follow the instructions in the READ & RUN ME FIRST link given further down and attach the requested logs when you finish these instructions.

• If you have problems where no tools seem to run, please try following the steps given in the below and then continue on no matter what you find. You only need to try the TDSSserv steps if having problems getting scans in the Read & Run Me First.
  • TDSSserv Non-Plug & Play Driver Disable
• If something does not run, write down the info to explain to us later but keep on going.
• Do not assume that because one step does not work that they all will not.

READ & RUN ME FIRST. Malware Removal Guide


Helpful Notes:

1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in Safe Mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
   
   • Starting your computer in Safe mode
2. If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware, Malwarebytes and Spybot ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
3. To avoid additional delay in getting a response, it is advised that after completing the READ & RUN ME you also read this sticky:
   • Don't Bump! It Only Hurts You!
4. Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.

 

Whats the dael with this forum? Has it blown up too large for any of you folks to help me the way I've seen people helped in the past? I've already followed every step in the Malware Removal process. Downloaded and run every single friggin program. CLEARLY, the majority of the time, people that have done that still havent gotten rid of Yoog or DCADS, and I still have both. Could I please have some specific help as to what lines of registry, .dll files, or whatever that I need to delete, and not just a copy and pasted standard response??????????

 

I repeat, I've run every single program and tool in the Vista Malware Removal Guide, plus C-cleaner (plus ad-aware, plus defragging for the hell of it). Your instructions never actually say which logs to save and attach (they really don't, look it over) so I'm not sure where the logs are saved in the some of the other programs I've run from the Guide. Please give me a SPECIFIC response as to which logs to attach, and where I can find them (I'll run the damn programs again if I have to) with the understanding that I have done ALL of your "do this first" procedures. Please don't take 4 days to give more of the exact same "follow the malware guide" stuff.

 

If you would actually take the time to read and follow instructions we wouldn't be wasting time as we are. I see clearly in the READ ME where it says, if you're still having problems to attach the logs you got after doing the scans but if you never ran them of course you don't have them.

If you want help, follow instuctions!

 

Ok, I missed the "if you're still having problems" part, but seriously, why did you first assume that I didnt run the scans and then when I point blank told you I did TWICE, did you say "you never ran them of course you don't have them." Are you messing with me? Anyways, its been over a week so I figured I'd run them all again so everything is up to date. Apparently, you can nly attach 3 files, so I'll post a second reply with the MBAM log. Here you go:

 

Annnnd here's the MBAM log. Thanks.

 

I'm not messing with you, I assumed you didn't run the scans because you did not attach the requested logs you would have if you had read thoroughly and followed every step initially. Over half of the member in this forum "follow the instructions" but never post a log nor know what to do.

Yeah, again if you read a little closer you'd see our guides explain everything.

That is not what was stated:
"but if you never ran them of course you don't have them."
We are inundated with requests for help as many sites have stopped doing malware removal. So it is time consuming for those that volunteer to have to ask or repeat instructions.

 

Excuse me, I did everything you asked. You were so busy arguing semantics and quoting every last line of my response, that you never actually HELPED me in any way, whatsoever. I re-followed the instruction word for word; they didnt work so I re-ran everything and posted all 4 logs according to your proper attachment procedures. Will someone please help me? :major

 

Your logs are clean however I have added a few questions/comments below.

First, are you familiar with the following folders? I would check to see what is in them and if it's nothing your familiar with I would delete them.

Next, go into Control Panel and uninstall the following items.

Next I would like you to install the current version of Sun Java: Sun Java Runtime Environment

Finally...

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

Again, make sure ALL browser windows are closed when you click FIX.​

 

Also, if you're still having the Yoog issue, then please see the thread below. Once complete, let me know the results and how things are currently running.

Yoog Removal

 

Hmmm my main longish reply didnt seem to go through.. Here goes again... Sorry its taken so long to respond, I've worked a ton of hours lately, and this stuff takes time. I followed your additional instructions: no dice. I did all the computer maintenance stuff, I updated all the programs in the malware removal guide, re-ran everything, re-followed your additional instructions just in case, followed the Yoog removal guide, and I still have Yoog and DCADS. I ran Adaware but was unable to run Kaspersky or Micro Housecall, because, infuriatingly, they are telling me I either dont have the latest version of Java, or that its not enabled. It certainly is the updated version and its clearly marked as being enabled in Firefox in every which way. In all of this, only one thing didnt show up that you said to delete. In the Yoog Removal, everything you said would be there was there and was deleted (again to no avail) but there was no apparent Yoog file in the C:\Users\Faisal\AppData\Roaming\Mozilla\Firefox\Profiles\7gmsih0a.default folder. There is some serious hidden :crap in my computer masquerading as something innocent. I havent cut a single corner, when I was supposed to be in Safe Mode, or Running as Administator, or closing Browsers, or Disabling other anti-spyware stuff, I've followed it all. I'm at a total loss. :banghead:banghead:banghead:banghead:banghead

 

Sorry its taken me so longto respond. I had followed your latest instructions and it didn't make a whit of difference so I didn't bother responding with the attached logs, since this is the 4-6th time you guys have attempted to help me, I've followed all the instructions, and I still have DCADS and Yoog. My situation is now much worse. Not only do I still have those 2 viruses, but my PC is running at 100% all the time and despite all the various reasons and attempted methods from researching online (apparently there are many, many different causes of this) I haven't been able to make much of a dent in it. I'm starting Windows using only the basic services necessary, and virtually zero startup programs and its still spiking at 100% even when I open almost any program. Its making my fan work so hard that I recently smelled a burning electrical smell, so needless to say, I'm freaking out. To make matters worse, when I just tried to follow your latest instructions again (actually for the 3rd time) and attempted to drag the notepad instructions onto the Combofix logo, I got a message "!!ALERT!! It is not safe to continue! The contents of the Combofix package has been compromised. Please download a fresh copy from http://www.bleepingcomputer.com/combofix/how-to-use-combofix Note:You may be infected with a patching virus (Virut)"
So I tried that and that also didn't work; same thing. I just re-followed your malware removal guide, and still all the same problems. UGH. Heres the latest MGLog for whatever its worth. Please help. :banghead:cry

 

Well Combofix inadvertenly told me a have a Virut infection I suppose: Combofix as I've stated would not run. I downloaded the 30day trial of ESET, and that is the only thing that was at least blocking the infection. I say "was" because the little box in he corner is now saying "error while cleaning" as opposed to the previous "blocked-quarantined." I understand it has nothing to do with Yoog. I do not currently have a boot CD. Is that something that can be created, or ordered? I'm dreading wiping my hard drive... Let me ask you this: Of all the woebegone, doom-is-upon-us sites that basically tell everyone they are screwed and need to reformat if they have this virus, there is only one that I've seen say otherwise, although I'm very skeptical because they seem to want to promote their product. (although its free) http://remove-malware.com/antimalware/my-tools/so-what-is-virut-and-why-is-it-sooooo-evil/ What do think of this? I'll do as you say and reattach the MGLogs.

 

Here are the 4 logs required.