Computer Hope
Microsoft => Microsoft Windows => Windows Vista and 7 => Topic started by: Robinhood on June 04, 2008, 01:13:33 PM
-
Hi Folks,
This is my first time in a chat of any kind so please be patient. (I have a HP Pavilliona1600n with a dual core processor and Windows XP) I Just spent a huge amount of time getting rid of XP Antivirus 2008 malware. It seems to be completely gone but I have a an empty icon in my control panel. It is identical to Windows security but the spyware that made it is gone/.
I am unable to delete it. Can any one help.
Thanks in advance
-
Would you mind posting a HJT log?
Download and rename TrendMicro HijackThis.exe (http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe) (HJT)- Double-click on HJTInstall.
- Click on the Install button.
- It will automatically place HJT in C:\Program Files\TrendMicro\HijackThis\HijackThis.exe.
- Upon install, HijackThis should open for you.
- Close HijackThis and rename it.
- Go to C:\Program Files\Trend Micro\HijackThis.exe
- Right click on HijackThis.exe and select Rename.
- Type in sniper.exe and press Enter.
- Right-click on sniper.exe and select Send To > Desktop (create shortcut)
- From the desktop open Hijackthis.
- If using Windows Vista, Right-click and Run As Administrator.
- Click on the Do a system scan and save a log file button
- Hijackthis will scan and then a log will open in notepad.
- Copy and then paste the entire contents of the log in your post.
- Do not have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.
Although we have renamed Hijackthis to sniper, we will still refer to it as Hijackthis or HJT.
-
Thank you for your help.
I did the scan and saved the log.
This may seem ignorant but will posting the log on this forum for all eyes to see leave me vulnerable in any way to hackers or any one who might wish to do harm ?
-
This may seem ignorant but will posting the log on this forum for all eyes to see leave me vulnerable in any way to hackers or any one who might wish to do harm ?
Not ignorant, it's always wise to be sure before posting personal information anywhere on the net.
However, no, there's no information in that log that would be of any benefit to anyone except the people trying to help ;D
-
Thank you both for your time and your expertise. I am having a hard time figuring out how to post the log. I assume it is as an attachment. I will be back after the weekend. One again thankyou very much
-
To attach the log:
At the reply screen, click "Additional Options..." below the reply box. There's a place to attach files from there.
-
Thank you
Here is the log
[recovering space - attachment deleted by admin]
-
Download SDFix.exe (http://downloads.andymanchesta.com/RemovalTools/SDFix.exe) and save it to your Desktop.
Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)
Now then reboot your computer in Safe Mode by doing the following:
- Restart your computer
- After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
- Instead of Windows loading as normal, the Advanced Options Menu should appear;
- Select the first option, to run Windows in Safe Mode, then press Enter.
- Choose your usual account.
- Open the extracted SDFix folder and double click RunThis.bat to start the script.
- Type Y to begin the cleanup process.
- It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
- Press any Key and it will restart the PC.
- When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
- Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
(Report.txt will also be copied to Clipboard).
- Finally add the contents of the Report.txt in your next post.
If SDFix won't run or you get errors, follow the link for instructions on running SDFix. How to use SDFix (http://www.bleepingcomputer.com/forums/topic131299.html)