Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

adnxs virus??

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

adnxs virus??

Unread postby adibari » May 29th, 2012, 9:55 am

Hello Everyone,

I am new here and very frustrated! I believe that our PC has the adnxs pop up virus and have similar issues to another user of this board. I am able to go to websites, but get random pop ups in the lower right hand corner that state "You are the 999,999 visitor...." or the like. I also have problems using the back arrow when this pops up. I have tried running various identification tools and have been able to remove some other issues, but I am believe my host file is infected (although when I pull it up it doesn't show anything out of the ordinary).

I have included the logs below...thank you in advance for your help!

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\system32\drivers\TsUsbGD.sys --> C:\Windows\system32\drivers\TsUsbGD.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2012-05-29 12:46:30 -------- d-----w- C:\ProgramData\Recovery
2012-05-29 04:21:50 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\Google
2012-05-29 03:57:03 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Roaming\SparkPDF
2012-05-29 03:54:29 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Roaming\Babylon
2012-05-29 03:54:29 -------- d-----w- C:\ProgramData\Babylon
2012-05-29 01:13:11 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Roaming\Curiolab
2012-05-26 17:53:36 -------- d-----w- C:\ProgramData\Spybot - Search & Destroy
2012-05-26 17:53:36 -------- d-----w- C:\Program Files (x86)\Spybot - Search & Destroy
2012-05-26 17:14:10 -------- d-----w- C:\Windows\SysWow64\N360_BACKUP
2012-05-26 12:31:33 175736 ----a-w- C:\Windows\System32\drivers\SYMEVENT64x86.SYS
2012-05-26 12:31:33 -------- d-----w- C:\Program Files\Common Files\Symantec Shared
2012-05-26 12:31:12 737912 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\srtsp64.sys
2012-05-26 12:31:12 451192 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\SymDS64.sys
2012-05-26 12:31:12 405624 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\symnets.sys
2012-05-26 12:31:12 37496 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\srtspx64.sys
2012-05-26 12:31:12 190072 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\Ironx64.sys
2012-05-26 12:31:12 167048 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\ccSetx64.sys
2012-05-26 12:31:12 1092728 ----a-r- C:\Windows\System32\drivers\N360x64\0602010.005\SymEFA64.sys
2012-05-26 12:31:07 -------- d-----w- C:\Windows\System32\drivers\N360x64\0602010.005
2012-05-26 12:31:07 -------- d-----w- C:\Windows\System32\drivers\N360x64
2012-05-26 12:31:06 -------- d-----w- C:\Program Files (x86)\Norton 360
2012-05-26 12:25:17 -------- d-----w- C:\ProgramData\PCSettings
2012-05-26 12:17:46 -------- d-----w- C:\Program Files (x86)\NortonInstaller
2012-05-25 12:56:17 8955792 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{45A972CF-3285-471D-B069-79AD260A4528}\mpengine.dll
2012-05-24 03:49:45 -------- d-sh--w- C:\Users\Amy and Pat DiBari\AppData\Roaming\Best Antivirus Software
2012-05-24 03:49:45 -------- d-sh--w- C:\ProgramData\BAQBS
2012-05-24 03:49:34 -------- d-sh--w- C:\ProgramData\1c92d5
2012-05-23 23:17:21 737072 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\SportsV2\SportsTemplateCore\Microsoft.MediaCenter.Sports.UI.dll
2012-05-23 23:17:10 4283672 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
2012-05-23 23:17:02 42776 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
2012-05-23 23:16:54 539984 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-05-13 21:41:52 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{7B4E49CD-6AF0-42F9-B74C-D778BD974946}
2012-05-13 21:41:43 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{651A00DA-7A8B-461C-A2BE-F0793E0C8417}
2012-05-08 12:42:15 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\Adobe
2012-05-08 12:40:03 -------- d-----w- C:\ProgramData\PDFC
2012-05-07 21:16:07 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{F82ED6C8-DA20-4792-8033-A37244B78874}
2012-05-07 21:15:58 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{44B1830E-2145-4931-AB5F-3239A3470810}
2012-05-07 21:09:56 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{9DF8CB6B-3B7C-4070-ADA7-0BC8AD78D30A}
2012-05-07 21:09:46 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{1DF01F79-61F7-4C14-A13B-8EA8FCC507A8}
2012-05-03 02:03:52 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{2EBBF709-CA66-4204-9311-EA8A3A82AFAD}
2012-05-03 02:03:42 -------- d-----w- C:\Users\Amy and Pat DiBari\AppData\Local\{BF3EB38A-F4B2-405A-A027-E4505D27AC3D}
2012-04-30 18:45:59 -------- d-----w- C:\Program Files (x86)\MSECache
2012-04-30 18:43:14 87040 ----a-w- C:\Windows\System32\pdfcmnnt.dll
2012-04-30 18:43:14 389120 ----a-w- C:\Windows\SysWow64\actskn43.ocx
.
==================== Find3M ====================
.
2012-03-31 06:05:57 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe
2012-03-31 04:39:37 3968368 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2012-03-31 04:39:37 3913072 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2012-03-31 03:10:03 3146240 ----a-w- C:\Windows\System32\win32k.sys
2012-03-30 11:35:47 1918320 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2012-03-17 07:58:57 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2012-03-03 06:35:38 1544704 ----a-w- C:\Windows\System32\DWrite.dll
2012-03-03 05:31:19 1077248 ----a-w- C:\Windows\SysWow64\DWrite.dll
2012-03-01 06:46:16 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2012-03-01 06:38:27 220672 ----a-w- C:\Windows\System32\wintrust.dll
2012-03-01 06:33:50 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2012-03-01 06:28:47 5120 ----a-w- C:\Windows\System32\wmi.dll
2012-03-01 05:37:41 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll
2012-03-01 05:33:23 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2012-03-01 05:29:16 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
.
============= FINISH: 9:44:20.86 ===============


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 4/17/2012 8:41:15 AM
System Uptime: 5/28/2012 11:26:30 PM (10 hours ago)
.
Motherboard: PEGATRON CORPORATION | | 2AC2
Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz | CPU 1 | 3101/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 915 GiB total, 745.996 GiB free.
D: is FIXED (NTFS) - 16 GiB total, 2.059 GiB free.
E: is CDROM (UDF)
F: is Removable
G: is Removable
H: is Removable
I: is Removable
J: is CDROM (CDFS)
K: is FIXED (NTFS) - 297 GiB total, 41.114 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP16: 5/9/2012 7:28:48 PM - HPSF Applying updates
RP17: 5/11/2012 7:26:53 AM - Windows Update
RP18: 5/14/2012 3:00:23 AM - Windows Update
RP19: 5/18/2012 9:22:46 AM - Windows Update
RP20: 5/22/2012 8:32:11 AM - Windows Update
RP21: 5/25/2012 8:56:02 AM - Windows Update
RP22: 5/28/2012 8:50:39 PM - Removed Adobe Reader X (10.1.3).
RP23: 5/29/2012 8:59:39 AM - Removed BabylonObjectInstaller
.
==== Installed Programs ======================
.
802.11n Wireless LAN Card
Adobe Reader X (10.1.3)
Apple Application Support
Apple Software Update
Bejeweled 3
Bing Bar
Blackhawk Striker 2
Blio
Bubble Wrap
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MP Navigator EX 4.1
Chuzzle Deluxe
Cradle of Rome 2
D3DX10
DirectX for Managed Code Update (Summer 2004)
Dora's World Adventure
Facebook
Farm Frenzy
Farmscapes
FATE
Final Drive Fury
Google Update Helper
Hewlett-Packard ACLM.NET v1.1.2.0
Hoyle Card Games
HP Calendar
HP Clock
HP Customer Experience Enhancements
HP Games
HP LinkUp
HP Magic Canvas
HP Magic Canvas Tutorials
HP Notes
HP Odometer
HP RSS
HP Setup
HP Setup Manager
HP Support Assistant
HP Support Information
HP TouchSmart RecipeBox
HP Update
HP Weather
Intel(R) Identity Protection Technology 1.2.22.0
Intel(R) Management Engine Components
Intel(R) Processor Graphics
Intel(R) Rapid Storage Technology
Jewel Match 3
Jewel Quest Mysteries: The Seventh Gate Collector's Edition
John Deere Drive Green
Junk Mail filter update
LabelPrint
Letters from Nowhere 2
Luxor HD
Mah Jong Medley
Mesh Runtime
Metric Converter
Microsoft Mathematics
Microsoft Office 2010
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Professional 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSVCRT
MSVCRT_amd64
Norton 360
opensource
Penguins!
Plants vs. Zombies - Game of the Year
PlayReady PC Runtime x86
Poker Superstars III
Polar Bowler
Polar Golfer
Power2Go
Realtek High Definition Audio Driver
Recovery Manager
Remote Graphics Receiver
RollerCoaster Tycoon 3: Platinum
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Spot
Tap Tap Bear
The Treasures of Mystery Island: The Ghost Ship
Torchlight
TSHostedAppLauncher
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update Installer for WildTangent Games App
VIP Access
VIP Access SDK (1.0.1.4)
Virtual Villagers 4 - The Tree of Life
WildTangent Games App (HP Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Zuma's Revenge
.
==== Event Viewer Messages From Past Week ========
.
5/23/2012 7:03:29 AM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk1\DR1.
.
==== End Of File ===========================
adibari
Active Member
 
Posts: 5
Joined: May 29th, 2012, 9:33 am
Advertisement
Register to Remove

Re: adnxs virus??

Unread postby Wingman » May 29th, 2012, 11:05 am

Incomplete Log

By posting an incomplete DDS log it is likely that your topic will be passed by and you will not receive the help you're looking for.
We need to know what's running on your computer so that we can provide the appropriate instructions.

May I draw your attention to THIS topic, which you should have read, that states what we need you to post, so we can help you.
If you still need help, please start a new thread an include your full DDS logs:
  • DDS.txt.
  • Attach.txt.
  • Details of the problems you're experiencing.
If for any reason you can't run DDS, please let us know in your post.


This topic will now be closed.
User avatar
Wingman
Admin/Teacher
Admin/Teacher
 
Posts: 14347
Joined: July 1st, 2008, 1:34 pm
Location: East Coast, USA


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 293 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware