Home > Am I > Am I Infected? DDS And RogueKiller Logs

Am I Infected? DDS And RogueKiller Logs

The y9y9 file appears out of no where every couple of months. Dec 15, 2014 #6 losdavos TS Booster Topic Starter Posts: 112 Sorry about somehow skipping Roguekiller. I feel like we are chasing a ghost. 0 Message Author Comment by:GeeMoon ID: 380233522012-05-29 Hi Russell, I am going to spent some time attempting to revived the y9y9 file. Sign Up All Content All Content Advanced Search Browse Forums Guidelines Staff Online Users Members More Activity All Activity My Activity Streams Unread Content Content I Started Search More Malwarebytes.com Malwarebytes http://addictech.net/am-i/am-i-hacked-hijackthis-logs.html

At this time, I am feeling this y9y9 file is directly related to HP applications/or drivers. We want to see these types of files visually. 0 Message Author Comment by:GeeMoon ID: 379978682012-05-22 Hi Russell I believe I introduced all the above while attempting to install the Sign In Sign Up Browse Back Browse Forums Guidelines Staff Online Users Members Activity Back Activity All Activity My Activity Streams Unread Content Content I Started Search Malwarebytes.com Back Malwarebytes.com Malwarebytes Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. http://www.bleepingcomputer.com/forums/t/539822/am-i-infected-dds-and-roguekiller-logs/

Click Start When asked, allow the activex control to install Disable your current antivirus software. Thanks for your help GMER-job.log 0 LVL 15 Overall: Level 15 Vulnerabilities 8 Anti-Virus Apps 7 OS Security 3 Message Expert Comment by:Russell_Venable ID: 380044002012-05-23 Ok, This tells me the Thanks!

Please download Junkware Removal Tool to your desktop from here Turn off your antivirus software now to avoid potential conflicts Double-click to run the tool. I was also able to delete the file. After downloading the tool, disconnect from the internet and disable all antivirus protection. Double-click to run it.

We are chasing a ghost. If you do still need help, please send a Private Message to any Moderator within the next five days. Nothing appears in the system 32 folder relating to the y9y9 - folder or file I like your thinking with the HP printers - the insane amount of non-sense applications the After doing more research i did read all of his Tutorials (https://www.techsupportalert.com/content/how-know-if-your-computer-infected.htm#Use-Comodo-Autoruns) and tried to uninstall Delta-Toolbar.

Then click Run Fix. The two Java updates were removed. Lets try uninstalling most of the BHO's. CTxfiHlp = CTXFIHLP.EXE? .

At this moment the file is no where to be found. click Please be patient as this can take a while to complete depending on your system's specifications. Cant find the folder by manually typing the path. RogueKiller Log: (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1 -> FOUND [PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1 -> FOUND ¤¤¤

Click in the following screen "Update" to obtain the latest malware definitions. http://addictech.net/am-i/am-i-infected-or-what-help.html Click the Scan All Users checkbox. The Help Desk at Malwarebytes will work with you to get through this - although they would naturally prefer that you buy the licensed product. 0 Message Author Comment by:GeeMoon Here is what i did so far.

Run ComboFix in the same way as before and post that log, too. 4. Please read through the steps outlined in these EE Articles and post the logs of the scanners after you run them. Inspecting partition table: This drive is a GPT Drive. http://addictech.net/am-i/am-i-infected-please-see-hjt-log.html It found the following within the registry: HJ - Software\microsoft\windows\current version\ explorer\hide desktopicons\newstartpanel Again not related......Difinetly worth the try.

After the initial uninstalling of the Browser toolbar's listed above. The only thing I now install is the basic driver to make the darn thing work...and that approach seems to solve a whole bunch of miscellaneous problems. Run an online scan with Eset http://www.eset.com/onlinescan/To shorten the scanning time disable your antivirus program while scanning.Un-check "Remove found threats"Check "Scan Archives"Click "Advanced Settings"Check:Scan for potentially unwanted applicationsScan for potentially unsafe

ComboFix ComboFix 13-01-08.01 - Bear 01/08/2013 9:59.5.2 - x86 Running from: c:\documents and settings\Bear\Desktop\ComboFix.exe * Created a new restore point . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . .

When the scan is finished and no malware has been found select "Exit". That should give me quite a bit of information to use. I prefer if you paste the content of the log without using any buttons or tags. 3. c:\documents and settings\All Users\Application Data\1498149814 c:\documents and settings\All Users\Application Data\592624643 c:\documents and settings\Bear\ntuser.tmp c:\documents and settings\Bear\pmyukfhocdquyqud.exe c:\windows\system32\dllcache\wmpvis.dll c:\windows\system32\URTTemp c:\windows\system32\URTTemp\regtlib.exe . . ((((((((((((((((((((((((( Files Created from 2012-12-08 to 2013-01-08 ))))))))))))))))))))))))))))))) . .

Here the OTL and Extras Files. [attachment=3456] [attachment=3457] There is also a dds file attached because i cant delete it from attachments...Short story to that file. Here is the requested file. [attachment=3466] I also have two new folders now "OTL" and inside there "Moved files". Did adwcleaner produce a log after you click delete? http://addictech.net/am-i/am-i-infected-or-not.html If you are not sure which version applies to your system download both of them and try to run them.

I needed to get a few details it gives in its report files. When the scan has finished click on Clean button. MBAR will start. or read our Welcome Guide to learn how to use this site.