Need help w/ wfv*.tmp; not sure about results

gnswartz · Dec 28, 2008

I spent several hours trying to follow the malware removal procedure in earlier posts, after discovering wfv3.tmp (about 48MB, which I could not delete, even in safe mode). (During the process, I noted that IE7 was redirecting from my home page to Dell website with an error message: could not locate http://ad.yieldmanager.com, etc.; don't know if that is a totally unrelated issue). Attached are 3 of my logs; the balance will be attached to a 2nd message. I have not toggled the system restore. Could someone advise me what would be the next step?

gnswartz · Dec 28, 2008

This is my follow up message with the 4th log file attached. thanks for your assistance.

dr.moriarty · Dec 30, 2008

Hello, gnswartz

Please do NOT toggle the system restore until instructed. An infected restore point is better than none at all, in case something goes wrong with the malware removal.

*There have been updates to the MGTools. Please delete the MGTools and its related folders.

Now re-run the READ & RUN ME FIRST. Malware Removal Guide.

Make sure you are also using the latest versions of SAS and MBAM and that they are updated. Also run ComboFix again and attach all of the requested logs.

Thanks!
dr.m

Log in or Sign up

Need help w/ wfv*.tmp; not sure about results

gnswartz Private E-2

Attached Files:

mbam-log-2008-12-27 (19-10-52).txt

ComboFix.txt

MGlogs.zip

gnswartz Private E-2

Attached Files:

SUPERAntiSpyware Scan Log - 12-27-2008 - 15-48-54.log

dr.moriarty Malware Super Sleuth Staff Member