I need help with my PC

Status
Not open for further replies.

drivex

Posts: 11   +0
My pc has been recently got infected by a virus/malware/spyware.
I followed the 8 steps and manage to remove the problem,
but I want to be assured that there are no other problems in my PC.
please check my log if there are any virus/malware/spyware that
I was not able to detect using the programs I just used.

if there are please instruct me what to do.

please and thank you:cool:
 

Attachments

  • mbam-log-2008-10-18 (03-58-17).txt
    7.4 KB · Views: 5
Your logs look fine to me and as long as your computer is not acting up at all you should be fine!

The only thing I would recommend you do is look into what is in your superantispyware log.

Trojan.Dropper/AdobeFake
C:\DOCUMENTS AND SETTINGS\AYA\APPLICATION DATA\ADOBE\PLAYER.EXE

Go to the Documents and Settings\Aya\Application Data\Adobe and see if the 'player.exe' file is still there. If it is, DONT CLICK IT....delete it if you can. If you don't see it, disregard what I said and you are virus free!

PS...I dont remember if the Application Data folder is hidden or not by default..you may have to go into 'Folder Options' and check the 'show all hidden files and folders' option..
 
I'm not so sure about this entry:
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

Did you/administrator set some restriction policies on Internet Explorer? If not, do fix these entry.
 
The HJT log also has this info that I have not seen before:

MSIE: Unable to get Internet Explorer version!

From HJT tutorial -
This section corresponds to an Administrative lock down for changing the options or homepage in Internet explorer by changing certain settings in the registry.

These options should only appear if your administrator set them on purpose or if you used Spybots Home Page and Option Lock down features in the Mode -> Advanced Mode -> Tools -> IE Tweaks section.
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
 
@InsaneVr6
the fake adobe seems got deleted after the scan with SAS.

@momok
my account is computer administrator, but i really don't recall doing something like restriction policy
what would you suggest?

@rf6647
I do have a spybot search and destroy.
what would you suggest? should i disable it? or get rid of spybot?

thanks for the asap reply guys i appreciate it!
 
Use Spybot S&D as suggested by the tutuorial. Perhaps you will discover what turned off IE version.

[edit]
Here is link to O6 in the HJT tutorial

However, this tweak ui when using Spybot only checks/unchecks boxes that control users ability to change IE options. Once there, do you see where to control display of version?

Kimsland often suggests resetting IE.

[/edit]
 
i got a new HJT file here.
after repairing some functions using SAS.
Would you guys mind telling me is my computer is even better now?

i use the SAS's preference and repair all the possible errors
that my help other members ;)
 
yeah i have kaspersky, SAS, MBAM, HJT, ccleaner and spybot S&D.
i usually turn autorun off to prevent slowing down the start up process.
and only turn them on when I go to net and download files from net.
 
Oh I do that
I thought I was the only one :rolleyes:

Anyway your HJT looks good to me :grinthumb
Actually the smallest I've seen
You could do this too:
How to use Reset Internet Explorer Settings (RIES

Oh and whilst I have the chance sorry rf6647 :eek:
(also I have to leave my post non edited because you commented on it, if you didn't I'd probably edit it out (my post) as useless!)
 
Status
Not open for further replies.
Back