TechSpot

I need help with my PC

By drivex
Oct 17, 2008
  1. my pc has been recently got infected by a virus/malware/spyware.
    i followed the 8 steps and manage to remove the problem,
    but i want to be assured that there are no other problems in my PC.
    please check my log if there are any virus/malware/spyware that
    I was not able to detect using the programs i just used.

    if there are please instruct me what to do.

    please and thank you:cool:
     

    Attached Files:

  2. InsaneVr6

    InsaneVr6 TS Enthusiast Posts: 221

    Your logs look fine to me and as long as your computer is not acting up at all you should be fine!

    The only thing I would recommend you do is look into what is in your superantispyware log.

    Trojan.Dropper/AdobeFake
    C:\DOCUMENTS AND SETTINGS\AYA\APPLICATION DATA\ADOBE\PLAYER.EXE

    Go to the Documents and Settings\Aya\Application Data\Adobe and see if the 'player.exe' file is still there. If it is, DONT CLICK IT....delete it if you can. If you don't see it, disregard what I said and you are virus free!

    PS...I dont remember if the Application Data folder is hidden or not by default..you may have to go into 'Folder Options' and check the 'show all hidden files and folders' option..
     
  3. momok

    momok TS Rookie Posts: 2,265

    I'm not so sure about this entry:
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

    Did you/administrator set some restriction policies on Internet Explorer? If not, do fix these entry.
     
  4. rf6647

    rf6647 TS Maniac Posts: 829

    The HJT log also has this info that I have not seen before:

    From HJT tutorial -
    This section corresponds to an Administrative lock down for changing the options or homepage in Internet explorer by changing certain settings in the registry.

    These options should only appear if your administrator set them on purpose or if you used Spybots Home Page and Option Lock down features in the Mode -> Advanced Mode -> Tools -> IE Tweaks section.
     
  5. drivex

    drivex TS Rookie Topic Starter

    @InsaneVr6
    the fake adobe seems got deleted after the scan with SAS.

    @momok
    my account is computer administrator, but i really don't recall doing something like restriction policy
    what would you suggest?

    @rf6647
    I do have a spybot search and destroy.
    what would you suggest? should i disable it? or get rid of spybot?

    thanks for the asap reply guys i appreciate it!
     
  6. rf6647

    rf6647 TS Maniac Posts: 829

    Use Spybot S&D as suggested by the tutuorial. Perhaps you will discover what turned off IE version.

    [edit]
    Here is link to O6 in the HJT tutorial

    However, this tweak ui when using Spybot only checks/unchecks boxes that control users ability to change IE options. Once there, do you see where to control display of version?

    Kimsland often suggests resetting IE.

    [/edit]
     
  7. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

  8. drivex

    drivex TS Rookie Topic Starter

    i got a new HJT file here.
    after repairing some functions using SAS.
    Would you guys mind telling me is my computer is even better now?

    i use the SAS's preference and repair all the possible errors
    that my help other members ;)
     
  9. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    drivex, are you actually using an Antivirus software?
     
  10. drivex

    drivex TS Rookie Topic Starter

    yeah i have kaspersky, SAS, MBAM, HJT, ccleaner and spybot S&D.
    i usually turn autorun off to prevent slowing down the start up process.
    and only turn them on when I go to net and download files from net.
     
  11. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Oh I do that
    I thought I was the only one :rolleyes:

    Anyway your HJT looks good to me :grinthumb
    Actually the smallest I've seen
    You could do this too:
    How to use Reset Internet Explorer Settings (RIES)

    Oh and whilst I have the chance sorry rf6647 :eek:
    (also I have to leave my post non edited because you commented on it, if you didn't I'd probably edit it out (my post) as useless!)
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...