kevlawliet
Posts: 11 +0
Malwarebytes found infections should i clean them.I don't know what to do.Is winlog.exe legitimate.
Is Winlog.exe a Virus.Need Help
- Thread starter kevlawliet
- Start date
- Status
touch
Posts: 976 +0
Hello
It should be safe to fix ->
I´ll suggest we check your computer, for more (possible) infections ->
Please run the steps in this guide:
8-step Viruses/Spyware/Malware Preliminary Removal Instructions
Post attached log´s from:
Malwarebyte
Superantispyware
Hijackthis
In your next reply
It should be safe to fix ->
I´ll suggest we check your computer, for more (possible) infections ->
Please run the steps in this guide:
8-step Viruses/Spyware/Malware Preliminary Removal Instructions
Post attached log´s from:
Malwarebyte
Superantispyware
Hijackthis
In your next reply
kevlawliet
Posts: 11 +0
. . .
That means i can remove those three infection right?
That means i can remove those three infection right?
touch
Posts: 976 +0
Yes, you can.
Reboot.
Run a scan in HijackThis. Check each of the following and hit 'Fix checked' (after checking them) if they still exist (make sure not to miss any):
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [winlog.exe] C:\Documents and Settings\L\Application Data\Microsoft\winlog.exe
Reboot, attach new hijackthis log and tell how things are running
Reboot.
Run a scan in HijackThis. Check each of the following and hit 'Fix checked' (after checking them) if they still exist (make sure not to miss any):
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [winlog.exe] C:\Documents and Settings\L\Application Data\Microsoft\winlog.exe
Reboot, attach new hijackthis log and tell how things are running
kevlawliet
Posts: 11 +0
Sorry for the delay i was sick, and why should i remove itunehelper.exe and etc.
kevlawliet
Posts: 11 +0
Everything is working fine Thanks a lot!!!!!
touch
Posts: 976 +0
Great 
You should Create a New Restore Point to prevent possible reinfection from an old one.
The easiest and safest way to do this is:
Go to Start > All Programs > Accessories > System Tools > System Restore
Select Create a restore point, and Ok it.
Next, go to Start > Run and type in cleanmgr
Select the More options tab
Choose the option to clean up system restore and OK it.
This will remove all restore points except the new one you just created.
To learn more about how to protect yourself while on the internet, please read Tony Klein´s guide:
How did I get infected in the first place?
You should Create a New Restore Point to prevent possible reinfection from an old one.
The easiest and safest way to do this is:
Go to Start > All Programs > Accessories > System Tools > System Restore
Select Create a restore point, and Ok it.
Next, go to Start > Run and type in cleanmgr
Select the More options tab
Choose the option to clean up system restore and OK it.
This will remove all restore points except the new one you just created.
To learn more about how to protect yourself while on the internet, please read Tony Klein´s guide:
How did I get infected in the first place?
- Status
Similar threads
Latest posts
-
Apple Vision Pro is facing declining interest and sales among consumers- Lew Zealand replied
-
As cloud computing evolves, Amazon's AWS looks for its role in generative AI- Bob O'Donnell replied
-
AMD Radeon RX 8000 RDNA 4 GPUs rumored to use slower 18 Gbps GDDR6 memory
- Lew Zealand replied
