Re: GOOGLE REDIRECTS TO http://abnow.com

Quads · ‎07-21-2008

You had Malwarebytes installed around the 11th of March.

With OTL use this script attached, than after that open OTL again and use the CleanUp (Black) button

Quads

shevo11 · ‎03-14-2012

Oh really? because i don't have it installed here.

Yesterday i introduce a pendrive used on the days of the virus, it detected a tojan but it quarantine it immediatly...but just in case i ran another OTL for you to see if there's any problem. I still haven't turn on system restore.

Quads · ‎07-21-2008

I told you to use the script (like in the past) just above with instructions which you have not done.

Quads

shevo11 · ‎03-14-2012

Ok i will do it, but i didn't understand

FIRST i paste the script at OTL and then i clic the CLEANuP button? or i have to run the script with the REPAIR OR SCAN one and THEN run another OTL with the CLEANUP?

Quads · ‎07-21-2008

You start OTL, and paste the script into OTL (like you have done before) and click the red Run Fix button.

On the restart of the PC the log will be in the _OTL folder.

Then you start OTL again and just click the Black Cleanup button.

Quads

shevo11 · ‎03-14-2012

OHHHHHHHH i clic the CLEANUP button without saving the LOG, so i cannot find it now... sorry, im soy stupid.

But the computer seems to be working a little bit strange since that pendrive thing yesterday...i know that this forum is not for symantec endpoint bue i think there's still some problems because the antivirus is a little bit crazy. For example the practive threat protection is disabled with no chance of enable it.

Sistem restore is still off.

Since i STUPDLY erase the log, what can i do? is there a way to search it or there's another process i may do? The lastest log i can find is the one that i attached some posts ago.

Quads · ‎07-21-2008

The only files linked to be added yesterday is

Process

PRC - [2012/04/16 13:55:57 | 000,132,608 | -H-- | M] () -- C:\Documents and Settings\admin\Datos de programa\WMPRWISE.EXE

[2012/04/16 13:55:57 | 000,132,608 | -H-- | M] () -- C:\Documents and Settings\admin\Datos de programa\WMPRWISE.EXE
[2012/04/16 02:59:20 | 000,141,312 | ---- | M] () -- C:\Documents and Settings\admin\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Malwarebytes is free and only download the free version, don't pay for it or click Trial.

As to Symantec, this is not the correct forum to figure out how to fix, install / uninstall Symantec, that is a different forum.

Quads

shevo11 · ‎03-14-2012

Ok, i will download it...

Any logs you need from combofix or otl or so?

Quads · ‎07-21-2008

End the process I state in my last post.

Quads

shevo11 · ‎03-14-2012

Wich one? i did all the otl stuff with the only problem i didn't was clever enough to save to log...what is EXACTLY what i have to do now? sorry but my english and computer knowledge is too low.

PD: i'm starting a fast scan at malawarebytes.