New
#11
Run RogueKiller again and click on Delete .
TDSSKILLER
download link TDSSKiller
Save to the Desktop
Right-click the program and select
When the TDSSKiller console opens, click on: Change Parameters
Under Additional Options, place a check in the box next to: Detect TDLFS File System
Click: OK
Press: Start Scan
If a suspicious object is detected, the default action is Skip, leave it as is, and click on: Continue
If malicious objects are found, they show in the Scan results.
Ensure Cure (the default) is selected, then click: Continue > Reboot now, to finish the cleaning process.
(Note: If Cure is not available, select Skip, >>Do not select: Delete<<)
When done, the tool outputs its log to the disk with the Windows Operating System, normally C:\
Logs have a name like:
C:\TDSSKiller.X.X.X_12.04.2013_15.31.43_log.txt
Please post the TDSSKiller log in your reply.
ok it made two logs, not sure why. It also detected nothing!..
Lets see what hitmanpro locates
Download HitManPro
64-Bit Version OS HitmanPro_x64
32-Bit Version OS HitmanPro
Save to the Desktop
Right click on HitmanPro.exe and choose
When HitmanPro opens up click on Settings uncheck Scan for tracking cookies . Click on OK . Then click on the Next button
Click on No, I only want to perform a one-time scan to check this computer on the Setup page . Click Next once done .
Let it scan the PC once its done Click Next
Click Activate free license to start the free 30 days trial and remove all the malicious files from your computer then click Next
Upload the log . Locate in C:\ ProgramData\Hitman Pro\Logs
Last edited by VistaKing; 27 Jul 2013 at 11:43.
graphic333,
Hold off on running HitManPro, and please do the following:
Please download ComboFix:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Save ComboFix.exe to the Desktop
Disable your AntiVirus and AntiSpyware applications as they will interfere with ComboFix.
Info: http://www.techsupportforum.com/secu...lications.html
Double click combofix.exe and follow the prompts.
When finished, it produces a log.
Please include the C:\ComboFix.txt in your reply.
NOTE: If you encounter a message "Illegal operation attempted on registry key that has been marked for deletion" and no programs run, please reboot to resolve the error.
After doing the above, please do not run any malware removal programs, or take any other actions.
Thanks.
ok so I did that and cancelled viewing the log and delting / quarantining / ignoring what hitman found. cool , whats next
Did ComboFix reboot?
Also, what hapens now with Microsoft Security Essentials and Windows Update?
Can you give them a whirl and see?
Post back on their present behavior.
amazing , this has all worked incredibly. What has most likely happened?
I can now move onto my next step putting my os into SSD without losing installed programs.