Need help with a possible malware plz!!

Discussion in 'Malware Help (A Specialist Will Reply)' started by ElBushido, Jun 5, 2013.

  1. ElBushido

    ElBushido Private E-2

    Hello all!

    I'm having an issue with my AVG A.V...
    Every day a window pops up stating that an application is trying to access the internet(outgoing).. A "Setup/Uninstall"...
    When I open up the "Show details" this is the file it shows: TSASETUP.TMP
    (path: "C:\WINDOWS\TEMP\IS-4C5KC.TMP\TSASETUP.TMP)
    I always click "Block" and the "Save me answer as a permanent rule...." as well but it still keeps on coming back.

    I was looking for a solution on the web and came across 1 of the treads that described a similar problem and I followed the same suggestion which sent me to Your malware removal page.
    I followed all the steps 1 by 1, but it didn't solve the problem for some reason..
    I have all the logs except TDSKiller and MGTools, these 2 had an error when trying to create a log (I'm not sure if I should be alarmed by this or not..).
    MBAM did detect 5 and removed/quarantined them so I thought all been fixed, but the next day the same window poped up!

    I include here a picture of said window (detailed view and certificate view opened as well) and the logs from those 3 programs the made any.

    Please if You have time to look over them and see if You can find a solution to this problem let me know!

    Thanks very much!
     

    Attached Files:

    Last edited: Jun 5, 2013
    ElBushido, Jun 5, 2013
    #1
  2. Kestrel13!

    Kestrel13! Super Malware Fighter - Major Dilemma Staff Member

    Download OTL to your desktop.

    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • Vista and Windows 7 users Right-click OTL and choose Run as Administrator)
    • When the window appears, underneath Output at the top change it to Minimal Output.
    • Check the boxes beside LOP Check and Purity Check.
    • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

    When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

    Attach both of these logs into your next reply.


    http://imageshack.us/a/img841/7292/thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Attach JRT.txt to your next message.
     
    Kestrel13!, Jun 11, 2013
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds