New
#11
Did you download a 'codecPack'?
ThreatExpert Report: Trojan-Downloader.Win32.CodecPack
Scan with DDS:
- Please download DDS ... by sUBs. Save it to your desktop. Alternate download links here or here.
Disable any script blocking software you have running before running DDS.- Please double click dds.com to run the tool. (File name will be different if alternate download used).
Vista - W7 users: You must right click on the file above and select "Run As Administrator" to run the tool.
A black window will open with some instructions/comments...- When done, DDS will open two (2) logs:
- DDS.txt
- Attach.txt
Caution: The above logs will NOT be saved... you must save them to your desktop.- Please post both the DDS.txt and Attach.txt files in your next reply.
Also, post a screen shot of the action center with the warning message, if you can.
Security Application Check:
Please download and save SecurityCheck.exe to your Desktop from one of the links below.
Link 1
Link 2
- Right click SecurityCheck.exe, select "Run as administrator, then follow the onscreen instructions inside of the black box.
- A Notepad document should open automatically called checkup.txt
- Please post the contents of that document in your next reply.
Ok i have attached screenshot of action center & the log files..
Also i received some sort of error that is also attached...
Thanx
Actually this log has some errors too....it says i have ie8 but i have ie9 :)
Also, it shows AVG 2011, which i uninstalled earlier but some traces might be left :)
Registry Cleaners
Re. TuneUp Utilities 2011
I don't personally recommend the use of ANY registry cleaners. Here is an excerpt from a discussion on regcleaners
Please Uninstall the Following Programs:Most reg cleaners aren't bad as such, but they aren't perfect and even the best have been known to cause problems. The point we are trying to make is that the risk of using one far outweighs any benefit. If it does work perfectly you will not see any difference. If it doesn't work properly you may end up with an expensive doorstop.
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
===================
P2P - I see you have P2P software ( uTorrent ) installed on your machine. I'm not here to pass judgment on file-sharing as a concept. However, I will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It likely contributed to your current situation.
Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.
I would strongly recommend that you uninstall uTorrent now. You can do so via Control Panel >> Programs and features.
If you choose to leave them on the machine, please refrain from using them while we are cleaning the machine to prevent further infection.
===================
Here is an interview in which Corrine does a terrific job explaining why Registry Cleaners and P2P programs should be avoided:
"Ask an MVP about: Home PC Security"
===================
AVG was not successfully uninstalled. Please use the AVG Removal Tool to completely uninstall that program.
AVG Remover
Please save any work and close all open windows... you have to REBOOT your machine during in this step.
Please download AVG Remover(32bit) and save it to your desktop.
If you are attempting to remove the 64bit version of AVG... please download this version AVG Remover(64bit).
- Double click on avgremover.exe to start the process. (64bit version... avgremoverx64.exe)
If using Vista, you must right click (avgremover.exe or avgremoverx64.exe) and choose "Run As Administrator".
A black command window will open... and you will receive a "removal and rebooting" warning prompt...- Reply Yes to the "Do you want to continue?" prompt.
The remover will begin searching for and removing AVG entries...- When completed, a text file will appear on your desktop "avgremover.log"... (it may be named differently for the 64bit version)
Please reboot your computer at this time. (You may receive a prompt to do so...)- Please copy and paste the contents of avgremover.log in your next reply.
===================
Now that you have done the above steps, I would like to see logs from a different scanner.
Download and run OTL
- Download OTL by OldTimer to your desktop.
- Double-click on OTL.exe to run it.
- When the window appears, Check the boxes beside Scan All Users, LOP Check, and Purity Check.
- Under the Extra Registry section, select Use SafeList
- Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Copy & paste the contents of both logs in your next reply
===================
Please attach the following to your next reply:
- avgremover.log
- OTL.txt
- Extras.txt
Note:Please include the header information when you post your logs.
This is related to your other topic, RPC Virus Virus
I will ask a Moderator if the two topics should be merged.
Here is my pastebin directory:
This contains all my logs..Code:www.pastebin.com/u/akshaybz