Browser Hijack / Malware issues

Discussion in 'Malware Help (A Specialist Will Reply)' started by Habeeb786, Apr 12, 2015.

  1. Habeeb786

    Habeeb786 Private E-2

    Hi,

    I am currently running Windows 8 64 bit, my web browser / internet explorer has been hijacked. Please see attached logs.

    Thanks for your help

    Regards

    Habeeb
     

    Attached Files:

    Habeeb786, Apr 12, 2015
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please rerun MBAM and have it fix everything it found.

    Then rerun RogueKiller and have it fix these items:
    Code:
    ¤¤¤ Registry : 22 ¤¤¤
[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> Found
[PUP] (X64) HKEY_USERS\S-1-5-21-1640754223-4029706453-214147745-1001\Software\Microsoft\Windows\CurrentVersion\Run | TornTv Downloader : C:\Users\ramzan.samnani\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup  -> Found
[PUP] (X86) HKEY_USERS\S-1-5-21-1640754223-4029706453-214147745-1001\Software\Microsoft\Windows\CurrentVersion\Run | TornTv Downloader : C:\Users\ramzan.samnani\AppData\Roaming\TornTV.com\Torntv Downloader.exe /c=startup  -> Found
[PUM.SearchPage] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main | Search Page : http://isearch.omiga-plus.com/web/?type=dspp&ts=1423075284&from=ild&uid=ST1000LM024XHN-M101MBB_S2SWJ9CCC00736&q={searchTerms}  -> Found
[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-1640754223-4029706453-214147745-1001\Software\Microsoft\Internet Explorer\Main | Search Page : http://isearch.omiga-plus.com/web/?type=dspp&ts=1423075284&from=ild&uid=ST1000LM024XHN-M101MBB_S2SWJ9CCC00736&q={searchTerms}  -> Found
[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-1640754223-4029706453-214147745-1001\Software\Microsoft\Internet Explorer\Main | Search Page : http://isearch.omiga-plus.com/web/?type=dspp&ts=1423075284&from=ild&uid=ST1000LM024XHN-M101MBB_S2SWJ9CCC00736&q={searchTerms}  -> Found
    Then fix these items:
    Code:
    ¤¤¤ Files : 1 ¤¤¤
[Suspicious.Path][File] TornTvDownloader.lnk -- C:\Users\ramzan.samnani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TornTvDownloader.lnk [LNK@] C:\Users\ramzan.samnani\AppData\Roaming\TornTV.com\TornTV Downloader.exe /c=startup -> Found
    Now rerun Hitman and have it fix everything it found.

    Reboot and rescan with both RogueKiller and Hitman and attach the new logs;

    Be sure to tell me how things are running.
     
    TimW, Apr 12, 2015
    #2
  3. Habeeb786

    Habeeb786 Private E-2

    Hi,

    Please see attached as requested.

    Thanks for your help

    Regards

    Habeeb
     

    Attached Files:

    Habeeb786, Apr 19, 2015
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean....you need to tell me how things are running.
     
    TimW, Apr 19, 2015
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds