Downloaded something from SourceForge and clicked no to the installing of games etc but somehow it ignored it. Or maybe it was a trick and I should have said yes. I managed to somehow get rid of the MyFreeGames toolbar and other associated stuff, however Conduit is still on the computer...
Thanks it did detect something.
20:08:16.0928 4668 TDSS rootkit removing tool 22.214.171.124 Feb 1 2012 09:28:49
20:08:18.0018 4668 ============================================================
20:08:18.0018 4668 Current date / time: 2012/02/03 20:08:18.0018
20:08:18.0018 4668 SystemInfo...
Hi Jeff, no worries about the broken link. QuickScan did not return any negative results either however the redirection in the browser still exists.
QuickScan 32-bit v0.9.9.105
Scan date: Thu Feb 02 10:04:42 2012
Machine ID: F8DECD9E
No infection found...
31/01/2012 12:15:39 PM Archive: 7-Zip C:\Documents and Settings\All Users\Adobe\Reader\9.2\ARM\AdobeARM.bin
31/01/2012 12:15:39 PM OK C:\Documents and Settings\All Users\Adobe\Reader\9.2\ARM\AdbeRdrUpd947_all_incr.msp
31/01/2012 12:15:39 PM OK C:\Documents and Settings\All...
31/01/2012 12:15:38 PM OK C:\$AVG\$VAULT\V_00000008.fil
31/01/2012 12:15:38 PM OK C:\$AVG\$VAULT\V_00000009.fil
31/01/2012 12:15:38 PM OK C:\$AVG\$VAULT\V_00000010.fil
31/01/2012 12:15:38 PM OK C:\$AVG\$VAULT\V_00000011.fil
31/01/2012 12:15:38 PM OK C:\$AVG\$VAULT\V_00000012.fil...
Hi Jeff, the link to the Kaspersky didn't work. Anyway neither of my browsers will allow me to copy and paste the entire log in so I have to update this in pieces.
Automatic Scan: completed 1 minute ago (events: 575853, objects: 574376, time: 01:17:23)
31/01/2012 12:15:18 PM Task started...
I'm currently having a problem with ESET Online Scanner. It says that it can't download/update in step 2 of the initialisation period whereby it is trying to download the signature database. It says, "Can not get update... is proxy configured?" I can use the internet ok though?
This is my Malware Bytes log. However I recall someone used it before on this computer. The program couldn't detect anything, but when I clicked on Quarrantine there were a few things there like funwebproducts, etc.
Malwarebytes Anti-Malware 126.96.36.1990
Hi Jeff, here's the log:
ComboFix 12-01-28.01 - User 29/01/2012 10:57:50.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.60.1033.18.1900.669 [GMT 8:00]
Running from: c:\users\User\Desktop\ComboFix.exe
Command switches used :: c:\users\User\Desktop\CFScript.txt
SP: Windows Defender...
Hi Jeff, thanks for replying.
Here's the DDS:
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_30
Run by User at 18:41:53 on 2012-01-27
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.60.1033.18.1900.477 [GMT 8:00]
AV: Lavasoft Ad-Watch...