Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Virus help

18 Mar 2011   #11

windows 7


My System SpecsSystem Spec
18 Mar 2011   #12

win7 ultimate / virtual box

boot into safe mode by pressing F8 on bootup and run malwarebytes , also I suggest unninstall webroot and install MSE then run a scan ?

make sure at the end of each scan anything found is deleted and or quarantined ?

boot back into windows and disable all your addons in firefox and let us know if you still get the redirects ?

Also does this happen in Internet Explorer ?

Let us know what symptoms your experiencing now ?
My System SpecsSystem Spec
18 Mar 2011   #13
Microsoft MVP

Windows 7 Ultimate 32bit SP1

Download JavaRa and run it to get rid of all old Java applications. |MG| JavaRA 1.16 Beta Download

Now, update Java.
  • Download the latest version of Java Runtime Environment (JRE) 6.
  • Scroll down to where it says "Java Runtime Environment (JRE) 6u24 allows end-users to run Java applications".
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-6u24-windows-i586-p.exe to install the newest version.
After you've done the above, Download Combofix from any of the links below, and save it to your desktop.<--Important
Link 1
Link 2
Link 3

Click on this link Here to see a list of programs that should be disabled.
The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
If your anti-virus or firewall complains, please allow this script to run as it is not malicious.
Next: Disconnect from the internet. If you are on Cable or DSL, unplug your computer from the modem.
Next: Please disable all onboard security programs (all running with back ground protection) as it may hinder the scanner from working.
This includes Antivirus, Firewall, and any Spyware scanners that run in the background.
  • Double click combofix.exe and follow the prompts.
  • When finished, it will produce a log for you. Post that log and a HiJackthis log in your next reply
Note: Do not mouseclick combofix's window while its running. That may cause it to stall
Please be patient while the scan runs, at times it may appear to stall.
When finished and after reboot (in case it asks to reboot), it should open a log, combofix.txt.
After rebooting ensure your Security applications have been re-enabled.

In your next reply post:
***A guide and tutorial on "How to use Combofix" can be found here:
My System SpecsSystem Spec

18 Mar 2011   #14

windows 7

thanks for all the replies, so far i rebooted my pc in safe mode, makware bytes didnt find anything but webroot found the following :

i disabled FF addons, FF and IE seem to be affected and get redirected to sites like gimmeanswers. chrome seems to be ok.
also security centre in services keeps disabling itslef.

i tried to run combofix but keep getting an error telling me that its corrupeted. also with hijack this i get an error saying:
"for some reason your system denied write access to the host file. if any hijacked domains are in this file, hijack this may not be able to fiz this."
My System SpecsSystem Spec
18 Mar 2011   #15
Microsoft MVP

Windows 7 Ultimate 32bit SP1

Right click on the .exe file then choose to "Run As Adminstrator".
My System SpecsSystem Spec
19 Mar 2011   #16

windows 7

ok so i finally managed to run combo fix i have attached the log to this post thanks

Attached Files
File Type: txt ComboFix.txt (7.7 KB, 15 views)
My System SpecsSystem Spec
19 Mar 2011   #17

windows 7

here is the HiJack this log as well, thank you

Attached Files
File Type: log hijackthis.log (9.2 KB, 8 views)
My System SpecsSystem Spec
19 Mar 2011   #18
Microsoft MVP

Windows 7 Ultimate 32bit SP1

The combofix .txt is incomplete .. can you copy all of it please?

Also have this file scanned C:\Windows\SysWow64\c_286036.dll
here - Free Multi-Engine Online Virus Scanner v1.02, Supports 37 AntiVirus Engines!
or here Jotti&#039;s malware scan

Save the report, copy and paste the results back here.
My System SpecsSystem Spec
19 Mar 2011   #19

windows 7

hi thanx for the reply sorry about that here is the complete log

Attached Files
File Type: txt ComboFix.txt (23.9 KB, 5 views)
My System SpecsSystem Spec
19 Mar 2011   #20

windows 7

i couldnt find the file c_286036.dll in C:\Windows\SysWow64

i found it by using the search but it says i am not aloud to open without admin permission
My System SpecsSystem Spec

 Virus help

Thread Tools

Similar help and support threads
Thread Forum
Locker 1.2 Virus. Help 70 hours left! Encryption virus. What steps should I take ? How do I resolve this issue
System Security
Possible Memory Leak Virus - Anti-virus detects nothing?
Hello, I am needing some support on what is exactly taking up all the RAM on my brother's PC as after about 8 hours of uptime, 65% of my Physical Memory is being used up with nothing really open. I did some research and found out it was a possible memory leak or virus, so I first tried to run...
Performance & Maintenance
how to fix / clean windows from ramnit virus and virut virus?
my windows infected ramnit virus and virut virus,how to clean them?
System Security
I have a virus and unable to run/download anti-virus software
Hi, This is my first time posting to the forum. I am not that knowledgeable with computers, but can follow basic instructions. My laptop is acting funny--I think I have a virus. However, I am unable to run any anti-malware or anti-virus software. I try to run McAfee and I get an error...
System Security
Want ideas for Virus removal if virus shows up in safemode CMD
Hi, Looking for general ideas on how everyone else handles a strong virus. If the virus is showing up in Windows regular mode, it opens in safemode and opens in safmode with command prompt. Besides the usual such as boot to repair mode and use system restore, dock hard drive to another pc and...
System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 13:31.
Twitter Facebook Google+