05-01-2012 08:58 PM - edited 05-01-2012 09:00 PM
On the Machine we are working on
Please read carefully
1. Please download aswMBR hxxp://public.avast.com/~gmerek/aswMBR.exe to your desktop. (replace the hxxp with http)
Double click the aswMBR.exe icon to run it
it will ask to download extra definitions - ALLOW IT / Yes
Click the Scan button to start the scan
On completion of the scan, click the save log button, save it to your desktop and Please attach the log in the post back, Don't have the program fix anything.
2. Please scan with ESET next
I'd like us to scan your machine with ESET OnlineScan
If you think a log should have been generated then go to C:\Program Files\ESET\ESET Online Scanner\log.txt to find it.
05-02-2012 06:16 PM
Firstly, Keygens and cracks are ILLEGAL!!!!!!!! and not only that they a lot of the time contain malware, which looks like you found out the hard way.
Read all of this message first
Download Combofix http://www.bleepingcomputer.com/download/anti-viru
Doiwnload the attached CFscript.txt, Now drag the CFScript.txt into the ComboFix.exe
****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****
Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.
05-02-2012 07:15 PM
Some of the keygens are from your download folder, Roman user account not the HP folder I also noticed.
You will or could find problems with the Browsers due to left over settings for now, and I see one file is also left to get, as well as the clean up.
Make sure your recycle bin is empty. then
Download OTL hxxp://oldtimer.geekstogo.com/OTL.exe (change the hxxp to http) save it to your Desktop.
Double click on OTL.exe to run it. Right click OTL.exe and select run as administator for Vista and Win 7.
Click the Scan All Users checkbox.
Change file age to 60 days
05-02-2012 08:02 PM
This script will take a bit of time, I suggest completely uninstalling Firefox and Google Chrome, that includes deleteing all the data when it asks in the mean time.
They can be installed fresh latter.