Skip to content


Reply
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012
Accepted Solution

Web Threats over 300,000

[ Edited ]

In my security box- my web threats keeps escalating.  It keeps scrolling up and up.  It says the viruses and spyware have been stopped but the web threats keep going up and now are over 300,000.  I can't get it 2 stop.  I've tried everthing I can.  My computer even has trouble when I use Google.  It seems like something is running even when I am not on the internet.  Any one else have the same problem?

Please use plain text.
Legendary Emissary
malwarekiller
Posts: 3,944
Registered: ‎08-08-2011

Re: Web Threats over 300,000

[ Edited ]

Welcome aboard! Posted Image

 I would need some logs to analyze first....

  • Download RogueKiller and save it on your desktop.  
  •     Quit all programs 
  •     Start RogueKiller.exe.  
  •     Wait until Prescan has finished ... 
  •     Click on Scan

  
   

  • Wait for the end of the scan.   
  •     The report has been created on the desktop.   
  •     Click on the Delete button.

  
   

  • The report has been created on the desktop.
  • Next click on the ShortcutsFix  
      
      
  • The report has been created on the desktop.

Please post:  
  
All RKreport logs located on your desktop.

 

NEXT

 

 

Download OTL  to your Desktop.

http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/

  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Select All Users
  • Under the Custom Scan box paste this in

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
consrv.dll
explorer.exe

netbt.sys

atapi.sys

volsnap.sys

redbook.sys

lsi_sas.sys

lsi_scsi.sys

cdrom*

tcpip.sys
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBT /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\NetBIOS /s
C:\Windows\assembly\tmp\U\*.* /s

C:\Program Files\Common Files\ComObjects\*.* /s
CREATERESTOREPOINT


  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • attach both logs

 NEXT

 

Download aswmbr.exe ( 1.8mb ) to your desktop. 

http://public.avast.com/~gmerek/aswMBR.htm
 Double click the aswMBR.exe to run it  Click the "Scan" button to start scan.

  • Click the [Scan] button to start scan

  • On completion of the scan click [Save log], save it to your desktop and post in your next reply.


—————
Was this post helpful? Say “thanks” by giving me a “Kudo”!
Was your question answered or issue solved? Mark that post as an “Accepted Solution”!
Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

I will do when I get home from work.  It is up  to 370,000 and took off 3 more viruses/spyware.  Should I take any thing off my computer before I do this? 

Please use plain text.
Legendary Emissary
malwarekiller
Posts: 3,944
Registered: ‎08-08-2011

Re: Web Threats over 300,000

No just follow my instructions directly.

—————
Was this post helpful? Say “thanks” by giving me a “Kudo”!
Was your question answered or issue solved? Mark that post as an “Accepted Solution”!
Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

OTL files

 

 


Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

aswmbr file

 

 

This is the last 1 u need.

The web threats are at 450,000 now


Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

The virus that keeps popping up is

 

TROJ_FAKEAV.SMUZ

 

The web threat that keeps coming up (every second) is

 

x-web.in/Y2x8MS42fGFIMGZINTQzZGI4O...

 

Please use plain text.
Stone Emissary
sidebside
Posts: 35
Registered: ‎02-13-2012

Re: Web Threats over 300,000

I Google some thing it  brings me to GimmeAnswers

 

I hit the back arrow from there it goes to BestMarkStore? with the following:

 

Warning: mysql_connect() [function.mysql-connect]: Unknown MySQL server host 'localhos' (1) in /home/bestmarkstore.com/us/ss_usrii/results.php on line 78

 

I back arrow again it brings me to the page I clicked on the Google page

 

None of this makes sense

 

Please use plain text.