 |
||
I am infected, please help
|
||
|
|
|
|||||||
| Register | Projects | Blogs | FAQ | Search | Today's Posts | Mark Forums Read |
2009-11-05, 06:25
|
#61 |
|
Member
Join Date: Oct 2009
Posts: 38
|
hi, the system is working pretty great now and i did all you told me to do in the previous post but i have a few questions...
i tried to reinstall spybot search and destroy but it is saying that spybotsd.exe is read only and so it wont work. any suggestions? also spyware doctor popped up and said i had 5 threats and 19 infections but when i scanned with malwarebytes anti-malware nothing was found. there were 4 high alerts, trojan downloaders, 2 in registry key and 2 in registry value. i only have the trial version of spyware doctor so i cant try to get rid of them. |
|
|
2009-11-05, 06:31
|
#62 |
|
Member
Join Date: Oct 2009
Posts: 38
|
11/4/2009 10:20:34 PM:218 Infection was detected on this computer
Threat Name - Trojan.Downloader Type - Registry Key Risk Level - High Infection - HKEY_USERS\S-1-5-21-2761955172-2059558153-1537524497-1006\Software\Classes\CLSID\{89b3ae4d-399c-4df9-b36a-ffa91f6c99ea} 11/4/2009 10:21:10 PM:937 Infection was detected on this computer Threat Name - Trojan.Downloader Type - Registry Value Risk Level - High Infection - HKEY_USERS\S-1-5-21-2761955172-2059558153-1537524497-1006\Software\Classes\CLSID\{89b3ae4d-399c-4df9-b36a-ffa91f6c99ea}\InProcServer32, (Default) 11/4/2009 10:21:10 PM:953 Infection was detected on this computer Threat Name - Trojan.Downloader Type - Registry Value Risk Level - High Infection - HKEY_USERS\S-1-5-21-2761955172-2059558153-1537524497-1006\Software\Classes\CLSID\{89b3ae4d-399c-4df9-b36a-ffa91f6c99ea}\InProcServer32, ThreadingModel 11/4/2009 10:21:11 PM:15 Infection was detected on this computer Threat Name - Trojan.Downloader Type - Registry Key Risk Level - High Infection - HKEY_USERS\S-1-5-21-2761955172-2059558153-1537524497-1006\Software\Classes\CLSID\{89b3ae4d-399c-4df9-b36a-ffa91f6c99ea}\InProcServer32 |
|
|
|
2009-11-05, 06:51
|
#63 |
|
Security Expert
Join Date: Oct 2006
Location: Finland
Posts: 20,805
|
Hi,
Save text below as fix.reg on Notepad (save it as all files (*.*)) on the Desktop. Code:
REGEDIT4
[-HKEY_USERS\S-1-5-21-2761955172-2059558153-1537524497-1006\Software\Classes\CLSID\{89b3ae4d-399c-4df9-b36a-ffa91f6c99ea}]
 Doubleclick fix.reg, press Yes and ok. That should remove the key.
__________________
Microsoft MVP Consumer Security 2008 2009 2010 ASAP & UNITE member since 2006 I don't help with logs thru PM. If you have problems create a thread in the forum, please. Malware removal instructions are for the correspondent user's case only. |
|
|
|
2009-11-07, 01:56
|
#64 |
|
Member
Join Date: Oct 2009
Posts: 38
|
everything is working great, we thank you very very much Blade81, we really appreciate all of your time and help!
|
|
|
|
2009-11-07, 10:51
|
#65 |
|
Security Expert
Join Date: Oct 2006
Location: Finland
Posts: 20,805
|
Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.
 Note:If it has been four days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread. If it has been less than four days since your last response and you need the thread re-opened, please send me or MOD a private message (pm). A valid, working link to the closed topic is required.
__________________
Microsoft MVP Consumer Security 2008 2009 2010 ASAP & UNITE member since 2006 I don't help with logs thru PM. If you have problems create a thread in the forum, please. Malware removal instructions are for the correspondent user's case only. |
|
|
| Thread Tools | |
| Display Modes | |
|
|
Linear Mode
