Hijacked Browser

Discussion in 'Malware Help (A Specialist Will Reply)' started by Gameace99, Oct 26, 2012.

  1. Gameace99

    Gameace99 Private E-2

    I am having a malware problem that I would like assistance with, I will attach all of the requested logs.
     

    Attached Files:

    Last edited by a moderator: Oct 26, 2012
    Gameace99, Oct 26, 2012
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Oct 26, 2012
    #2
  3. Gameace99

    Gameace99 Private E-2

    Gameace99, Oct 26, 2012
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not finding much in the way of malware in your logs. Let's do this:

    Double-click RogueKiller.exe to run. (Vista/7 right-click and select Run as Administrator)
    When it opens, press the Scan button
    Now click the Registry tab and locate these detections:

    • [Services][ROGUE ST] HKLM\[...]\ControlSet001\Services\{73526619-C24F-470B-9BED-53D455FBB5C6} (\??\C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl) -> FOUND
      [Services][ROGUE ST] HKLM\[...]\ControlSet002\Services\{73526619-C24F-470B-9BED-53D455FBB5C6} (\??\C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl) -> FOUND
      [STARTUP][SUSP PATH] Best Buy pc app.lnk @Default : C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe -> FOUND
      [STARTUP][SUSP PATH] Best Buy pc app.lnk @Default User : C:\ProgramData\Best Buy pc app\ClickOnceSetup.exe -> FOUND
    Place a checkmark each of these items, leave the others unchecked.
    Now press the Delete button.

    Now rescan with Hitman and have it fix everything it finds.

    http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Attach JRT.txt to your next message.

    Then rescan with both RogueKiller and Hitman and attach those logs as well.
     
    TimW, Oct 26, 2012
    #4
  5. Gameace99

    Gameace99 Private E-2

    Gameace99, Oct 26, 2012
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Attach JRT.txt to your next message.

    Make sure you tell me how things are runnning now.
     
    TimW, Oct 27, 2012
    #6
  7. Gameace99

    Gameace99 Private E-2

    The link for the junkware removal tool is dead
     
    Gameace99, Oct 28, 2012
    #7
  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Oct 28, 2012
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds