lpr

Member
  • Content Count

    24
  • Joined

  • Last visited

Community Reputation

0 Neutral

About lpr

  • Rank
    Member
  1. Thanks for the info. Browser redirects have stopped. The only unusual thing remaining is that on the online Wall Street Journal site, videos will not play. I've reinstalled Adobe Flash Player version 10, several times, but the videos do not play. WSJ helpline says it could some kind of blocking software. Do you think a-squared is preventing the flash player to work?
  2. hi Kevin - Ran the script, as requested. Ran without incident and the computer restarted. Things seem to be working just fine. I'm curious what the script removed? Please advise. All the best, lpr
  3. Please find attached the requested files/logs. By the way, your help is very much appreciated and speaks volumes for the commitment Emsi Software has to customer service. All the best, lpr
  4. Pusuant to your questions, please find the answers below. When do you get the pop ups? They seemed to appear randomly. When only visiting certain sites? Yes, but I did not note the site and terminated the brower and pop-up immediately upon observing the pop-up window. Every time you open a webpage? No, only randomly and the pop-ups are not appearing today. When you are just using the computer, without the browser open? Only with a brower open.
  5. Today, I noticed a few pop-up windows with advertisements. I cancelled them. It seems like something may still be lingering. Attached is the last a-squared scan.
  6. Also for what it is worth, I noticed in the Device Manager, under "Non-Plug and Play Devices" there is a SASKUTIL present with a yellow exclaimation point.
  7. Please find attached hereto the requested report generated by RootRepeal. Any indications of residual problems from removal of the rootkit or the operation of other malware? All the best, lpr
  8. One thing I did notice that seems a bit strange is that some applications do not start after a double-click on the associated icon. A second attempt usuallys starts, but its strange that it won't start on the first attempt. Any suggestions? lpr
  9. Things are running quite well, by all appearances. Can you summarize what was rootkit was found, and can it be confirmed that its no longer operating? All the best, lpr
  10. Please find attached hereto the requested log.
  11. As requested, please find the attached logs. Does it look like we are "out of the woods", so to speak? Best regards, lpr
  12. Thanks much, lynx. Very helpful. All the best, lpr
  13. Additionally, the a-squared 'pop-up' message "connection attempt to suspicious host" is appearing frequently. I'm unsure if this is related or unrelated to the TLD3 issue we are addressing. All the best, lpr
  14. As requested please find attache hereto the following logs: 1. ComboFix.txt 2. ISeeYou With resepct to machine behvaior characteristics, the following observations are made: 1. At first, both IE8 and FireFox appear to no longer be redirecting, although speed seems to be improving; 2. Both IE8 and FireFox start-up very slow (about 40 seconds for the first browser window to appear, although speed seems to be improving. 3. Browser tabs load slow (about 30 seconds with a "connecting" message appearing in the tab) before the new tab appears, although speed seems to be improving. 4. Application software (i.e. Word, Excel) seem to load slowly. Otherwise, major improvement over waht we were experiencing before. Are we "out of the woods", so to speak? All the best, lpr