Mini Spy

Loading...

Latest Threads

Loading...
 
  1. Before you start!
    All given instructions in this forum are customized for each help request, the tools used may cause damage if used on a computer with different infections. If you think you have similar issues, please post the appropriate logs in our Malware Removal Assistance forum and wait for help.

    Please be aware that removing Malware is a potentially hazardous undertaking. We will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for us to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and we cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.
    We strongly advise you to backup any personal files and folders before you start.
  2. Cyberghost EXCLUSIVE GIVEAWAY: CYBERGHOST SPECIAL EDITION UNLIMITED GIVEAWAY

    Starting with Wednesday, 6th of August get a free 1 year license license key for CyberGhost Special Edition. We are giving away CyberGhost Special Edition 15.000 license keys in a 48 hours promo for our awesome members!

    Get a CyberGhost Special Edition license key!

  3. avast! Premier 2014 Giveaway EXCLUSIVE GIVEAWAY: AVAST PREMIER 2014 GIVEAWAY

    Each day get a free license key for avast! Premier 2014. We are giving away avast! Premier 2014 license keys for our awesome members!

    Get now an Avast Premier 2014 license key!

  4. Bitdefender EXCLUSIVE GIVEAWAY: BITDEFENDER INTERNET SECURITY 2015 UNLIMITED GIVEAWAY

    Get a free license key for Bitdefender Internet Security 2015. We are giving away Bitdefender Internet Security 2015 6 months license keys for our awesome members!

    Get now a Bitdefender Internet Security 2015 license key!

  5. Use caution when opening email attachments
    Email attachments are a common tool for attackers because forwarding email is so simple. Users often open attachments that appear to come from someone they know or an organization they do business with. Almost any type of file can be attached to an email message, so attackers have more freedom with the types of viruses they can send. If your email program includes an option to automatically download email attachments, DON'T take it. Doing so could immediately expose your computer to any viruses included in the email attachments.

WARNING: Your flash player may be out of date.

Discussion in 'Malware Removal Assistance' started by djslota, Oct 29, 2013.

  1. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    Keep getting: "WARNING: Your flash player may be out of date ..."

    Tried all steps in the ""ReDirector Virus Removal Guide" twice; it is still here!

    Could be possible that this is on (4) of my computers and it is hiding over the network?

    I need help getting rid of this thing!

    Attached Files:

  2. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Hi,


    Before we start:
    • Note that the removal process is not immediate. Depending on the severity of your infection, it could take a long time.
    • Malware removal can be dangerous. I cannot guarantee the safety of your system as malware can be unpredictable. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system. Therefore, I would advise you to backup all your important files before we start.
    • Please be patient and stay with me until I give you the green lights and inform you that your PC is clean.
    • Like everyone, I have a private life, so be patient with me. Sometimes I will respond immediately, sometimes it will take a coupe hours.
    • Some tools may be flagged by your antivirus as harmful. Rest assure that ALL the tools we use are safe, the detections are false positives.
    • The absence of symptoms does not mean your PC is fully disinfected.
    • If you are unclear about the instructions, please stop and ask. Following the steps in the order that I post them in is vital.
    • Lastly, if you have requested help on other sites, that will delay and hinder the removal process. Please only stick to one site.

    Because of this, I advise you to backup any personal files and folders before you start.


    <ol><li>Download AdwCleaner from the below link.
    <><a href="http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner" target="_blank">ADWCLEANER DOWNLAOD LINK</a></> (This link will automatically download Security Check on your computer)</li>

    <li>Close all open programs and internet browsers.</li>
    <li>Double click on <>adwcleaner.exe</> to run the tool.</li>
    <li>Click on <>Delete</>,then confirm each time with <>Ok</>.</li>
    <li>Your computer will be rebooted automatically. A text file will open after the restart.</li>
    <li>Please post the contents of that logfile with your next reply.</li>
    <li>You can find the logfile at <>C:\AdwCleaner[S1].txt</> as well.</li>
    </ol>




    Please download Farbar Recovery Scan Tool and save it to your desktop.

    Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them.
    Only one of them will run on your system, that will be the right version.


    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will make a log (FRST.txt) in the same directory the tool is run. Please attach it to your reply.
    • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.
    Last edited by a moderator: Mar 13, 2014
  3. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    I included the files you requested.
    There were many versions of the AdwCleaner[x].tst file since I ran this program before when executing the steps in your "ReDirector Virus Removal Guide". I included the last two versions.

    DS

    Attached Files:

  4. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Download fixlist.txt below, make sure that it is on the same location as FRST.exe

    [attachment=6072]

    Open FRST, click on Fix, and attach the report after the fixing.

    Attached Files:

  5. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    Report Attached.

    Will I have to go through a similar procedure for my laptops?

    DS

    Attached Files:

  6. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    How are the things now?
  7. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    The first affiliate link I click on from Peerfly, I get the "WARNING: Your flash player may be out of date" message again!
  8. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Rerun FRST and post me the fresh report...
  9. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    I noticed the first occurrence of the message was a little different. I attached an image of the message.

    Attached Files:

  10. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    FRST64 text attached!

    Attached Files:

    • FRST.txt
      File size:
      61.5 KB
      Views:
      117
  11. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    That site looks legit, what browser does this happen in?
  12. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    Firefox, but I have seen in IE when I was trying to debug.
  13. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    We need to reset Mozilla settings

    In Mozilla, click on Help --> Troubleshooting Information --> Reset Firefox

    Do you have a pop-ups now?
  14. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    It didn't come up right away, but clicking on a list of 4 affiliate links it came up about the third time through the list. The first few times through the list was OK. I did try clicking on a URL shortener from google (goo.gl), which I created a few days ago and shortly after doing this the "WARNING: Your flash player may be out of date." cane up.
  15. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    Anything else to try?

    DS
  16. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Sorry, I really don't know how to help you...

    Is this happening in Chrome?

    Did you try using Adblock?
  17. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Hi, are you still with me?
  18. djslota

    djslota New Member

    Joined:
    Oct 29, 2013
    Messages:
    10
    Likes Received:
    0
    Trophy Points:
    10
    Sorry I was busy this weekend.
    It happens with Chrome.

    I am not sure what Adblock is?
    Can you elaborate?

    DS
  19. TwinHeadedEagle

    TwinHeadedEagle Malware Removal Expert MalwareTips Staff

    Joined:
    Mar 8, 2013
    Messages:
    3,361
    Likes Received:
    382
    Trophy Points:
    242
    Hi,


    Download TDSSKiller and save it to your desktop

    Execute TDSSKiller.exe by doubleclicking on it.
    Confirm "End user Licence Agreement" and "KSN Statement" dialog box by clicking on Accept button.
    • Press Start Scan
    • If Suspicious object is detected, the default action will be Skip, click on Continue.
    • If Malicious objects are found, select Cure.

    Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


    Please post the contents of that log in your next reply.



    Download ComboFix from one of the following locations:

    COMBOFIX DOWNLOAD LINK #1 (This link will automatically download Combofix on your computer)
    COMBOFIX DOWNLOAD LINK #2 (This link will automatically download Combofix on your computer)
    ----------------------------------------------------------------
    VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

    <ul>
    <li>Close any open browsers.</li>
    <li>Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    <>Very Important!</> Temporarily <>disable</> your <>anti-virus</>, <>script blocking</> and any <>anti-malware</> real-time protection <em><>before</></em> performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause <em>"unpredictable results"</em>.</li>
    <li><>WARNING: Combofix will disconnect your machine from the Internet as soon as it starts</>.Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    If there is no internet connection after running Combofix, then restart your computer to restore back your connection.</li>
    </ul>
    -----------------------------------------------------------------

    How to run the Combofix scan :
    1. Double click on ComboFix.exe & follow the prompts.
    2. Accept the disclaimer and allow to update if it asks
    3. When finished, it shall produce a log for you.
      [*]Please include the C:\ComboFix.txt in your next reply.

    Additional notes:
    <ol><li> Do not mouse-click Combofix's window while it is running. That may cause it to stall.</li>
    <li> Do not "re-run" Combofix. If you have a problem, reply back for further instructions.</li>
    <li> If after the reboot you get errors about programms being marked for deletion then reboot, that will cure it.</li></ol>

    Last edited by a moderator: Mar 13, 2014

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.

MalwareTips.com is an independent website.All trademarks mentioned on this page are the property of their respective owners.