Removal of the tsl.exe file?

Re: How to remove TSL.exe??

dang

 

Re: How to remove TSL.exe??

i have the exact problem... heres my log....
can you please help me....

 

Re: How to remove TSL.exe??

ya, i got that tsl.exe problem, i have been workin on tryin to get it out for a while, but i cant seem to get it out, i ran the hijackthis program, and saved my log. if u can help, that would be very appreciated, thanks

 

Re: How to remove TSL.exe??

oh, im sorry, i forgot to do the...
Please follow all the steps in this Sticky thread < READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal >

i will get that done, and i will post my log, bbl

EDIT: I split you off into your own thread. PP

 

I have gotten that tsl.exe file on my computer, its just keeps reinstalling, even after i have done all the steps on the "DO NOT POST UNTIL YOU HAVE READ THIS: How to: Spyware, Trojan And Virus Removal" thread. I have ran HijackThis and here is my log. If you can help me, that would be very appreciated, i have been workin on tryin to fix this for a while, but im just going in circles, thanks!

 

Hi Chungberrypie,

Your Log shows a TRUCKLOAD of problems.

FIRST: You need to move HijackThis from the Desktop to its own safe folder - C:\Program Files\HijackThis!


THEN: Please run the Online Scans as per the Tutorial.
Also, run ALL of the steps in the Alternative Scans - If still having problems section of the Tutorial! - They should remove a lot of the mess.

Then, attach a fresh HJT log and we'll go from there.

Best
PP

 

would it be best if i just reformated my computer? like just dumb it all, and restart? i mean, because according to you, i have a truckload of problems, and i highly doubt i can get all of it off. or can i?

 

We should be able to get you cleaned up. Its just that the prescribed scans will remove a lot of the stuff that the few volunteers who work on logs here would otherwise have to wade through and remove manually.

The choice is up to you Yours is one of the worst logs I've seen in a while, but if you are willing to work at cleaning it up, we will do our best to help you!

To give you some idea, ALL of the below needs to be fixed W/HJT (once it it in a safe folder). Then, the bad files and folders need to be Deleted manually. The scans should make a dent in this.

DO NOT FIX FROM THIS LIST as I just threw it together quickly and may have included a legit file or two.

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.begin2search.com/sidesearch.html
O2 - BHO: (no name) - {016235BE-59D4-4CEB-ADD5-E2378282A1D9} - C:\Program Files\CxtPls\cxtpls.dll (file missing)
O2 - BHO: (no name) - {01CE3CAA-B7F1-A025-7A1D-FF667CBA3BDF} - C:\WINDOWS\system32\xxpaneds\xckpgfma.dll
O2 - BHO: (no name) - {11C8EED8-7365-E9F5-7624-B0AA2AAD9178} - C:\WINDOWS\system32\saklkyln\opdqfjoa.dll
O2 - BHO: (no name) - {2812871F-F617-0D17-C905-DE422D15D27C} - C:\WINDOWS\system32\xxjtfbgq\ceosjxfg.dll
O2 - BHO: (no name) - {32A0357E-BB37-5BC9-8072-11557BFD794D} - C:\WINDOWS\system32\qmd.dll
O2 - BHO: (no name) - {32F26C79-BB30-0AC1-D372-11557BFD7946} - C:\WINDOWS\system32\uxwx.dll
O2 - BHO: (no name) - {696B5AE5-9A8D-6255-A8DC-66CE23230282} - C:\WINDOWS\system32\acngmivy\elnuwfvy.dll
O4 - HKLM\..\Run: [hpsysconf1] C:\WINDOWS\system32\kkgeiuk.exe
O4 - HKLM\..\Run: [LzioMediaUpdater] C:\WINDOWS\system32\LzioMediaUpdater.exe
O4 - HKLM\..\Run: [tsim] C:\WINDOWS\system32\ikipr\tsim.exe
O4 - HKLM\..\Run: [asyx] C:\WINDOWS\system32\cway\asyx.exe
O4 - HKLM\..\Run: [vysxsmcu] C:\WINDOWS\system32\kmscby\vysxsmcu.exe
O4 - HKLM\..\Run: [kbscvvy] C:\WINDOWS\system32\ewvirs\kbscvvy.exe
O4 - HKLM\..\Run: [mjvhs] C:\WINDOWS\system32\mnldbjb\mjvhs.exe
O4 - HKLM\..\Run: [ntgbkvu] C:\WINDOWS\system32\istl\ntgbkvu.exe
O4 - HKLM\..\Run: [fakw] C:\WINDOWS\system32\heob\fakw.exe
O4 - HKLM\..\Run: [sqnkdbop] C:\WINDOWS\system32\yhoy\sqnkdbop.exe
O4 - HKLM\..\Run: [yvft] C:\WINDOWS\system32\vpvjaioo\yvft.exe
O4 - HKLM\..\Run: [jkgw] C:\WINDOWS\system32\chyh\jkgw.exe
O4 - HKLM\..\Run: [pvaijaku] C:\WINDOWS\system32\tetgyxw\pvaijaku.exe
O4 - HKLM\..\Run: [lbiqr] C:\WINDOWS\system32\djxcwwd\lbiqr.exe
O4 - HKLM\..\Run: [piefgvy] C:\WINDOWS\system32\djpk\piefgvy.exe
O4 - HKLM\..\Run: [fcdhpx] C:\WINDOWS\system32\paiu\fcdhpx.exe
O4 - HKLM\..\Run: [ifon] C:\WINDOWS\system32\prreletb\ifon.exe
O4 - HKLM\..\Run: [aiekxn] C:\WINDOWS\system32\hctiv\aiekxn.exe
O4 - HKLM\..\Run: [trkvq] C:\WINDOWS\system32\opqoxydt\trkvq.exe
O4 - HKLM\..\Run: [peoc] C:\WINDOWS\system32\joca\peoc.exe
O4 - HKLM\..\Run: [llre] C:\WINDOWS\system32\cnjxl\llre.exe
O4 - HKLM\..\Run: [mwaspa] C:\WINDOWS\system32\uavhpyd\mwaspa.exe
O4 - HKLM\..\Run: [ehrf] C:\WINDOWS\system32\ybkrkawa\ehrf.exe
O4 - HKLM\..\Run: [bthe] C:\WINDOWS\system32\yrajtxk\bthe.exe
O4 - HKLM\..\Run: [vripjj] C:\WINDOWS\system32\xloxvc\vripjj.exe
O4 - HKLM\..\Run: [ndmuyhox] C:\WINDOWS\system32\urhytg\ndmuyhox.exe
O4 - HKLM\..\Run: [xncpjm] C:\WINDOWS\system32\fmurwog\xncpjm.exe
O4 - HKLM\..\Run: [bvascjn] C:\WINDOWS\system32\tnux\bvascjn.exe
O4 - HKLM\..\Run: [oviqt] C:\WINDOWS\system32\iajdqikq\oviqt.exe
O4 - HKLM\..\Run: [uoigatkj] C:\WINDOWS\system32\pcmfv\uoigatkj.exe
O4 - HKLM\..\Run: [wvdoc] C:\WINDOWS\system32\ntcvnth\wvdoc.exe
O4 - HKLM\..\Run: [qfessa] C:\WINDOWS\system32\byikw\qfessa.exe
O4 - HKLM\..\Run: [iiwf] C:\WINDOWS\system32\pbsaoi\iiwf.exe
O4 - HKLM\..\Run: [kmaf] C:\WINDOWS\system32\tvrc\kmaf.exe
O4 - HKLM\..\Run: [pataeurt] C:\WINDOWS\system32\korh\pataeurt.exe
O4 - HKLM\..\Run: [oejpl] C:\WINDOWS\system32\djyntdvt\oejpl.exe
O4 - HKLM\..\Run: [dclp] C:\WINDOWS\system32\afvr\dclp.exe
O4 - HKLM\..\Run: [fmtbh] C:\WINDOWS\system32\cpsi\fmtbh.exe
O4 - HKLM\..\Run: [ertrqu] C:\WINDOWS\system32\fxqyyajm\ertrqu.exe
O4 - HKLM\..\Run: [cnxldpel] C:\WINDOWS\system32\jsaspxeb\cnxldpel.exe
O4 - HKLM\..\Run: [oiiwabyj] C:\WINDOWS\system32\yspwkaj\oiiwabyj.exe
O4 - HKLM\..\Run: [ljeoyojw] C:\WINDOWS\system32\xgiwesa\ljeoyojw.exe
O4 - HKLM\..\Run: [lepdur] C:\WINDOWS\system32\loqhkah\lepdur.exe
O4 - HKLM\..\Run: [eylqr] C:\WINDOWS\system32\bleje\eylqr.exe
O4 - HKLM\..\Run: [nhfehjxf] C:\WINDOWS\system32\gjvx\nhfehjxf.exe
O4 - HKLM\..\Run: [ndavtdlb] C:\WINDOWS\system32\knqljgsl\ndavtdlb.exe
O4 - HKLM\..\Run: [mcif] C:\WINDOWS\system32\pghpx\mcif.exe
O4 - HKLM\..\Run: [lbfmkb] C:\WINDOWS\system32\ehvrs\lbfmkb.exe
O4 - HKLM\..\Run: [gdnpqolm] C:\WINDOWS\system32\alsqqki\gdnpqolm.exe
O4 - HKLM\..\Run: [ufiiexx] C:\WINDOWS\system32\jhxrpabm\ufiiexx.exe
O4 - HKLM\..\Run: [pttc] C:\WINDOWS\system32\aiafshki\pttc.exe
O4 - HKLM\..\Run: [nsthjaoa] C:\WINDOWS\system32\hnbsd\nsthjaoa.exe
O4 - HKLM\..\Run: [gqvgggmn] C:\WINDOWS\system32\xkvmf\gqvgggmn.exe
O4 - HKLM\..\Run: [fuyimrd] C:\WINDOWS\system32\reiwangf\fuyimrd.exe
O4 - HKLM\..\Run: [ranwf] C:\WINDOWS\system32\hrtu\ranwf.exe
O4 - HKLM\..\Run: [bswufanx] C:\WINDOWS\system32\vaeh\bswufanx.exe
O4 - HKLM\..\Run: [bgwmryok] C:\WINDOWS\system32\dipoov\bgwmryok.exe
O4 - HKLM\..\Run: [gesktx] C:\WINDOWS\system32\uuepmjqs\gesktx.exe
O4 - HKLM\..\Run: [tsokyhnf] C:\WINDOWS\system32\sgalvgso\tsokyhnf.exe
O4 - HKLM\..\Run: [htqar] C:\WINDOWS\system32\hcuvai\htqar.exe
O4 - HKLM\..\Run: [vskrge] C:\WINDOWS\system32\irhq\vskrge.exe
O4 - HKLM\..\Run: [kbvjle] C:\WINDOWS\system32\necq\kbvjle.exe
O4 - HKLM\..\Run: [536O3pV] vjowapi.exe
O4 - HKLM\..\Run: [jlkhfhx] C:\WINDOWS\system32\hftr\jlkhfhx.exe
O4 - HKLM\..\Run: [debis] C:\WINDOWS\system32\fqhbyt\debis.exe
O4 - HKLM\..\Run: [mngjy] C:\WINDOWS\system32\ugagylci\mngjy.exe
O4 - HKLM\..\Run: [bgtqtm] C:\WINDOWS\system32\bcqbyf\bgtqtm.exe
O4 - HKLM\..\Run: [Tsl] C:\PROGRA~1\COMMON~1\tsa\tsl.exe
O4 - HKCU\..\Run: [Tlce] C:\Documents and Settings\Chungberrypie\Application Data\twrs.exe
O4 - HKCU\..\Run: [Ropwy] C:\WINDOWS\system32\d?dplay.exe
O4 - HKCU\..\Run: [Tsa2] C:\PROGRA~1\COMMON~1\tsa\tsm2.exe

DO NOT FIX FROM THIS LIST as I just threw it together quickly.

Note that there are a ton of bad files and folders that need to be removed.

PP

 

too late...