We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!

Hijack This problem

Options
13

Comments

  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Problem is, you still need to update to get the latest 'virus database' (Its still well behind)
    :idea:
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    Ok, I'll have to do that in the morning though as need to run for my bus, thank you guys
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Keep pressing F8 at bootup and select SAFE MODE WITH NETWORKING and try again

    If that fails, reset the hosts file ~
    Download HostsXpert
    http://www.softpedia.com/progDownload/Hoster-Download-27041.html
    and then follow the below steps.
    * Unzip HostsXpert.zip
    * It will create a folder named HostsXpert in whatever folder you extract it to.
    * Run HostsXpert.exe by double clicking on it.
    * click the Make Writeable? button.
    * click Restore Microsoft's Hosts File and then click OK.
    * Click the X to exit the program


    and try again
    :idea:
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    Morning

    Which problem were those instructions for Rik?
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    Revo won't get rid of rebate informer either
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    bevan840 wrote: »
    Morning

    Which problem were those instructions for Rik?

    To try to get malwarebytes updated (Priority)
    :idea:
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    wow, safe mode is huuuuge! lol downloading the host program now
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    update has worked, now performing full scan. Will post report in couple of hours when it's finished
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • bevan840
    bevan840 Posts: 1,014 Forumite
    Part of the Furniture Combo Breaker
    Full scan completed, result below. Need to restart

    Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org
    Database version: 4488
    Windows 6.0.6002 Service Pack 2 (Safe Mode)
    Internet Explorer 8.0.6001.18943
    27/08/2010 11:00:58
    mbam-log-2010-08-27 (11-00-58).txt
    Scan type: Full scan (C:\|D:\|)
    Objects scanned: 319421
    Time elapsed: 49 minute(s), 46 second(s)
    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 9
    Registry Values Infected: 1
    Registry Data Items Infected: 0
    Folders Infected: 2
    Files Infected: 4
    Memory Processes Infected:
    (No malicious items detected)
    Memory Modules Infected:
    (No malicious items detected)
    Registry Keys Infected:
    HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\queryexplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QueryExplorer Service (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    Registry Values Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790576b6765b5a3faf95 (Malware.Trace) -> Quarantined and deleted successfully.
    Registry Data Items Infected:
    (No malicious items detected)
    Folders Infected:
    C:\Program Files\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    C:\ProgramData\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    Files Infected:
    C:\Program Files\QueryExplorer\queryexplorer.dll (Adware.Agent.Gen) -> Quarantined and deleted successfully.
    C:\Program Files\QueryExplorer\queryexplorer.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    C:\ProgramData\QueryExplorer\queryexplorer115.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    C:\Program Files\QueryExplorer\uninstall.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
    :idea: Jan 09. Debt @ LBM - £11936.55 Debt at worst - £12600.55 Current Debt (01/03/2012) £8,859.51 29.7% Paid off
    Honeymoon Fund £410.40/£6000 House Deposit £1.50
    :A Proud to be dealing with my debts. DFW Nerd 1177 :A
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Should be fine now methinks

    Give it a clean ~
    Download CCLEANER
    http://www.piriform.com/ccleaner/download/slim
    Run the CLEANER scan (UNTICK 'cookies')
    Then run the REGISTRY scan (Backup the registry when it asks)

    Post back here if anymore problems :)
    :idea:
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 350.9K Banking & Borrowing
  • 253.1K Reduce Debt & Boost Income
  • 453.5K Spending & Discounts
  • 243.9K Work, Benefits & Business
  • 598.8K Mortgages, Homes & Bills
  • 176.9K Life & Family
  • 257.2K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.1K Discuss & Feedback
  • 37.6K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture