Welcome back!
I will need to give me some malicious files from your computer for tranmission of them to trend after this fix
Warning This fix is only relevant for this system and no other, using on another computer may cause problems
Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot
If u have malwarebytes 1.5 or later disable it for the duration of this run
Run OTL
- Under the Custom Scans/Fixes box at the bottom, paste in the following:
FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=toolbar2&q=" [2012/05/29 11:54:19 | 000,000,448 | ---- | M] () -- C:\ProgramData\ilfpeanzmjqxmjt [2012/05/29 11:54:17 | 000,057,344 | ---- | M] () -- C:\ProgramData\vojwxshdfallqufdooal.exe [2012/05/29 11:54:17 | 000,057,344 | ---- | M] () -- C:\Users\admin\ms.exe O4 - HKU\S-1-5-21-2525868930-1968600409-2025159413-1000..\Run: [vojwxshdfallquf] C:\ProgramData\vojwxshdfallqufdooal.exe () ipconfig /flushdns /c :Commands [purity] [resethosts] [emptytemp] [EMPTYFLASH] [Reboot]
- Then click the Run Fix button at the top
- Let the program run unhindered, reboot the PC when it is done
- Please attach the log generated after the fix completion
Also please bare in mind your previous topic was left open and u didnt run my fix here:
http://community.trendmicro.com/t5/Malware-Discuss
I have submitted the file to trend micro lab for analysis...its brand new ransomware i guess:
just 16 scannners detected it out of 42
Open OTL and hit the cleanup button
As an addition step it's recommended that you download other free anti-malware software from the list below and run a full system scan :
![[Image: dw.png]](http://malwaretips.com/images/removalguide/dw.png)
Copyright (c) 1989-2012 Trend Micro Incorporated. All rights reserved.
