Results 1 to 4 of 4

Thread: Help me

  1. #1
    Junior Member
    Join Date
    Feb 2021
    Posts
    1

    Default Help me

    Hi,
    This is my first ever post, so, please excuse me if I’m doing something wrong.
    My computer is infected by some virus (maybe fishing one +…) see the attached last log-file.
    After standard action using last version of Spaybot-Search&Distroy +AV 2.8 Professional ( administrator privileges) all viruses are in the Quarantine after command “ Fix selected”. After command “ Purge selected” from Quarantine the infected files disappear from System scan, but the immediate next scan shows that the viruses are again in the same folders (registry, etc) and even in more folders than before.
    Please, help me with precise instructions what to do, taking into account that I have a limited experience struggling viruses.
    Thank you in advance

    log file:
    ====================
    Search results from Spybot - Search & Destroy

    2/17/2021 10:17:58 PM
    Scan took 00:22:51.
    9 items found.

    Log: [SBI $ASBRHIST] Install: setupact.log (File, nothing done)
    C:\WINDOWS\setupact.log
    Category=Tracks
    ThreatLevel=2
    Weblink=http://forums.spybot.info/forumdisplay.php?54
    Properties.size=0
    Properties.md5=D41D8CD98F00B204E9800998ECF8427E

    MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
    Category=Tracks
    ThreatLevel=2
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    MS Regedit: [SBI $C3B62FC1] Recent open key (Registry Change, nothing done)
    HKEY_USERS\S-1-5-21-3987077643-345555372-3844656182-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit\LastKey
    Category=Tracks
    ThreatLevel=2
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
    HKEY_USERS\S-1-5-21-3987077643-345555372-3844656182-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
    Category=Tracks
    ThreatLevel=2
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    Cookie: [SBI $BCOOKIES] Browser: Cookie (1) (Browser: Cookie, nothing done)

    Category=Browser
    ThreatLevel=1
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    History: [SBI $BHISTORY] Browser: History (20) (Browser: History, nothing done)

    Category=Browser
    ThreatLevel=1
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    Cookie: [SBI $BCOOKIES] Browser: Cookie (375) (Browser: Cookie, nothing done)

    Category=Browser
    ThreatLevel=1
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    Cache: [SBI $BCACHE00] Browser: Cache (5793) (Browser: Cache, nothing done)

    Category=Browser
    ThreatLevel=1
    Weblink=http://forums.spybot.info/forumdisplay.php?54

    History: [SBI $BHISTORY] Browser: History (501) (Browser: History, nothing done)

    Category=Browser
    ThreatLevel=1
    Weblink=http://forums.spybot.info/forumdisplay.php?54


    --- Spybot - Search & Destroy version: 2.8.68.132 DLL (build: 20200426) ---

    2019-03-19 blindman.exe (2.8.67.152)
    2018-01-05 enableKB4056892.exe (2.7.64.0)
    2020-04-26 explorer.exe (2.8.68.193)
    2018-07-24 sd2-installer.exe (2.7.64.0)
    2019-03-19 SDBootCD.exe (2.8.67.109)
    2019-03-19 SDCleaner.exe (2.8.67.110)
    2019-03-19 SDDelFile.exe (2.8.67.94)
    2020-04-26 SDFiles.exe (2.8.68.138)
    2020-04-26 SDFileScanHelper.exe (2.8.68.8)
    2020-04-26 SDFSSvc.exe (2.8.68.220)
    2019-03-19 SDHelp.exe (2.8.67.1)
    2017-11-28 SDHookHelper.exe (2.6.46.2)
    2017-11-28 SDHookInst32.exe (2.6.46.2)
    2017-11-28 SDHookInst64.exe (2.6.46.2)
    2019-09-04 SDImmunize.exe (2.8.67.133)
    2020-03-24 SDLicense.exe (2.8.67.3)
    2019-03-19 SDLogReport.exe (2.8.67.107)
    2017-11-28 SDOnAccess.exe (2.6.46.11)
    2019-03-19 SDPESetup.exe (2.8.67.3)
    2019-03-19 SDPEStart.exe (2.8.67.86)
    2019-03-19 SDPhoneScan.exe (2.8.67.29)
    2019-03-19 SDPRE.exe (2.8.67.22)
    2019-03-19 SDPrepPos.exe (2.8.67.15)
    2019-03-19 SDQuarantine.exe (2.8.67.103)
    2019-03-19 SDRootAlyzer.exe (2.8.67.116)
    2019-03-19 SDSBIEdit.exe (2.8.67.39)
    2020-04-26 SDScan.exe (2.8.68.193)
    2019-03-19 SDScript.exe (2.8.67.54)
    2020-03-04 SDSettings.exe (2.8.67.140)
    2019-03-19 SDShell.exe (2.8.67.2)
    2019-03-19 SDShred.exe (2.8.67.108)
    2020-04-26 SDSpybotLab.exe (2.8.68.0)
    2019-03-19 SDSysRepair.exe (2.8.67.102)
    2019-03-19 SDTools.exe (2.8.67.157)
    2019-03-19 SDTray.exe (2.8.67.129)
    2020-04-26 SDUpdate.exe (2.8.68.100)
    2020-04-26 SDUpdSvc.exe (2.8.68.83)
    2018-08-08 SDUpgrade.exe (2.7.65.0)
    2020-04-26 SDWelcome.exe (2.8.67.138)
    2019-09-04 SDWSCSvc.exe (2.8.66.0)
    2018-09-03 Spybot3.LicenseInstaller.exe
    2019-07-31 Spybot3ELAMSetupConsole.exe (3.4.0.0)
    2020-01-15 spybotsd2-install-bdcore-update-2020a.exe (2.8.67.0)
    2018-10-24 spybotsd2-install-license-installer.exe (2.7.65.0)
    2018-10-19 spybotsd2-SDLicense-websitev3.exe (2.7.65.0)
    2018-10-19 spybotsd2-SDLicense-websitev4.exe (2.7.65.0)
    2019-02-22 spybotsd2-SDLicense-websitev5.exe (2.7.65.0)
    2020-12-19 unins000.exe (51.1052.0.0)
    2017-11-28 xcacls.exe
    2017-11-28 borlndmm.dll (10.0.2288.42451)
    2018-01-29 DelZip190.dll (1.9.0.119)
    2018-01-29 DelZip192.dll (1.9.2.136)
    2018-01-29 libeay32.dll (1.0.2.14)
    2017-11-28 libssl32.dll (1.0.0.4)
    2019-03-19 NotificationSpreader.dll (2.8.67.4)
    2019-03-19 SDAdvancedCheckLibrary.dll (2.8.67.98)
    2020-04-26 SDAV.dll (2.4.40.7)
    2019-03-19 SDECon32.dll (2.8.67.114)
    2019-04-15 SDECon64.dll (2.8.67.113)
    2019-03-19 SDEvents.dll (2.8.67.2)
    2020-04-26 SDFileScanLibrary.dll (2.8.68.25)
    2017-11-28 SDHook32.dll (2.6.46.2)
    2017-11-28 SDHook64.dll (2.6.46.2)
    2019-09-04 SDImmunizeLibrary.dll (2.8.67.5)
    2019-03-19 SDLicense.dll (2.8.67.3)
    2019-03-19 SDLists.dll (2.8.67.8)
    2020-03-24 SDResources.dll (2.8.67.10)
    2020-04-26 SDScanLibrary.dll (2.8.68.132)
    2019-03-19 SDTasks.dll (2.8.67.15)
    2019-03-19 SDWinLogon.dll (2.8.67.0)
    2018-01-29 sqlite3.dll (3.22.0.0)
    2018-01-29 ssleay32.dll (1.0.2.14)
    2019-03-19 Tools.dll (2.8.67.36)
    2019-07-03 Includes\Adware-000.sbi (*)
    2018-09-24 Includes\Adware-001.sbi (*)
    2018-09-24 Includes\Adware-002.sbi (*)
    2018-09-24 Includes\Adware-003.sbi (*)
    2021-02-17 Includes\Adware-C.sbi (*)
    2014-01-13 Includes\Adware.sbi (*)
    2014-01-13 Includes\AdwareC.sbi (*)
    2010-08-13 Includes\Cookies.sbi (*)
    2014-11-14 Includes\Dialer-000.sbi (*)
    2014-11-14 Includes\Dialer-001.sbi (*)
    2018-06-20 Includes\Dialer-C.sbi (*)
    2014-01-13 Includes\Dialer.sbi (*)
    2014-01-13 Includes\DialerC.sbi (*)
    2014-01-09 Includes\Fraud-000.sbi (*)
    2017-01-30 Includes\Fraud-001.sbi (*)
    2014-03-31 Includes\Fraud-002.sbi (*)
    2016-07-06 Includes\Fraud-003.sbi (*)
    2013-04-11 Includes\HeavyDuty.sbi (*)
    2014-11-14 Includes\Hijackers-000.sbi (*)
    2014-11-14 Includes\Hijackers-001.sbi (*)
    2018-04-04 Includes\Hijackers-C.sbi (*)
    2014-01-13 Includes\Hijackers.sbi (*)
    2014-01-13 Includes\HijackersC.sbi (*)
    2014-01-08 Includes\iPhone-000.sbi (*)
    2014-01-08 Includes\iPhone.sbi (*)
    2016-05-27 Includes\Keyloggers-000.sbi (*)
    2020-04-01 Includes\Keyloggers-C.sbi (*)
    2014-01-13 Includes\Keyloggers.sbi (*)
    2014-01-13 Includes\KeyloggersC.sbi (*)
    2004-11-29 Includes\LSP.sbi (*)
    2019-08-30 Includes\Malware-000.sbi (*)
    2019-05-08 Includes\Malware-001.sbi (*)
    2018-04-12 Includes\Malware-002.sbi (*)
    2019-11-20 Includes\Malware-003.sbi (*)
    2018-04-13 Includes\Malware-004.sbi (*)
    2018-08-16 Includes\Malware-005.sbi (*)
    2018-09-04 Includes\Malware-006.sbi (*)
    2018-12-10 Includes\Malware-007.sbi (*)
    2021-02-03 Includes\Malware-C.sbi (*)
    2014-01-13 Includes\Malware.sbi (*)
    2014-01-13 Includes\MalwareC.sbi (*)
    2018-05-02 Includes\PUPS-000.sbi (*)
    2020-12-07 Includes\PUPS-001.sbi (*)
    2018-05-02 Includes\PUPS-002.sbi (*)
    2018-05-02 Includes\PUPS-003.sbi (*)
    2018-05-02 Includes\PUPS-004.sbi (*)
    2021-02-17 Includes\PUPS-C.sbi (*)
    2014-01-13 Includes\PUPS.sbi (*)
    2014-01-13 Includes\PUPSC.sbi (*)
    2010-01-25 Includes\Revision.sbi (*)
    2014-01-08 Includes\Security-000.sbi (*)
    2018-08-01 Includes\Security-C.sbi (*)
    2014-01-21 Includes\Security.sbi (*)
    2014-01-21 Includes\SecurityC.sbi (*)
    2008-06-03 Includes\Spybots.sbi (*)
    2008-06-03 Includes\SpybotsC.sbi (*)
    2015-11-11 Includes\Spyware-000.sbi (*)
    2015-05-06 Includes\Spyware-001.sbi (*)
    2020-07-29 Includes\Spyware-C.sbi (*)
    2014-01-21 Includes\Spyware.sbi (*)
    2014-01-21 Includes\SpywareC.sbi (*)
    2011-06-07 Includes\Tracks.sbi (*)
    2012-11-19 Includes\Tracks.uti (*)
    2018-07-13 Includes\Trojans-000.sbi (*)
    2018-07-03 Includes\Trojans-001.sbi (*)
    2018-04-13 Includes\Trojans-002.sbi (*)
    2018-09-21 Includes\Trojans-003.sbi (*)
    2018-11-28 Includes\Trojans-004.sbi (*)
    2018-11-19 Includes\Trojans-005.sbi (*)
    2018-08-16 Includes\Trojans-006.sbi (*)
    2018-11-06 Includes\Trojans-007.sbi (*)
    2018-09-21 Includes\Trojans-008.sbi (*)
    2018-11-28 Includes\Trojans-009.sbi (*)
    2018-06-21 Includes\Trojans-010.sbi (*)
    2021-02-17 Includes\Trojans-C.sbi (*)
    2016-02-02 Includes\Trojans-OG-000.sbi (*)
    2018-11-21 Includes\Trojans-TD-000.sbi (*)
    2014-01-15 Includes\Trojans-VM-000.sbi (*)
    2014-01-15 Includes\Trojans-VM-001.sbi (*)
    2014-01-15 Includes\Trojans-VM-002.sbi (*)
    2014-01-15 Includes\Trojans-VM-003.sbi (*)
    2014-01-15 Includes\Trojans-VM-004.sbi (*)
    2014-01-15 Includes\Trojans-VM-005.sbi (*)
    2014-01-15 Includes\Trojans-VM-006.sbi (*)
    2014-01-15 Includes\Trojans-VM-007.sbi (*)
    2014-01-15 Includes\Trojans-VM-008.sbi (*)
    2018-11-20 Includes\Trojans-VM-009.sbi (*)
    2014-01-15 Includes\Trojans-VM-010.sbi (*)
    2014-01-15 Includes\Trojans-VM-011.sbi (*)
    2014-01-15 Includes\Trojans-VM-012.sbi (*)
    2014-01-15 Includes\Trojans-VM-013.sbi (*)
    2014-01-15 Includes\Trojans-VM-014.sbi (*)
    2014-01-15 Includes\Trojans-VM-015.sbi (*)
    2014-01-15 Includes\Trojans-VM-016.sbi (*)
    2014-01-15 Includes\Trojans-VM-017.sbi (*)
    2014-01-15 Includes\Trojans-VM-018.sbi (*)
    2014-01-15 Includes\Trojans-VM-019.sbi (*)
    2014-01-15 Includes\Trojans-VM-020.sbi (*)
    2014-01-15 Includes\Trojans-VM-021.sbi (*)
    2014-01-15 Includes\Trojans-VM-022.sbi (*)
    2014-01-15 Includes\Trojans-VM-023.sbi (*)
    2014-01-15 Includes\Trojans-VM-024.sbi (*)
    2015-11-09 Includes\Trojans-ZB-000.sbi (*)
    2018-04-06 Includes\Trojans-ZL-000.sbi (*)
    2014-01-09 Includes\Trojans.sbi (*)
    2014-01-16 Includes\TrojansC-01.sbi (*)
    2014-01-16 Includes\TrojansC-02.sbi (*)
    2014-01-16 Includes\TrojansC-03.sbi (*)
    2014-01-16 Includes\TrojansC-04.sbi (*)
    2014-01-16 Includes\TrojansC-05.sbi (*)
    2014-01-09 Includes\TrojansC.sbi (*)

  2. #2
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    What I se in the scan log you posted is nothing to be worried about, it shows that browser cookies are enabled and showing in the log.
    Their not malicious.

    You have options and settings you can use on your computer to leave them alone (suggested) or turn the function off.

    Cookies are little preference files that web sites store on your computer. ... Because so many web sites rely on cookies, I'd recommend leaving cookies turned on in your browser. They aren't a major security risk and they can make your web browsing much more efficient and faster.
    Cookies are files you can delete. ... You probably do not want to block all cookies, because that would really limit the quality of your Internet experience. You can set your browser to ask your permission before accepting a cookie though, and only accept them from Web sites you trust.

    Control and Delete Cookies on Your Browser
    https://www.pcmag.com/how-to/how-to-...n-your-browser
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  3. #3
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    bump.....
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

  4. #4
    Security Expert-emeritus Juliet's Avatar
    Join Date
    Feb 2007
    Location
    Deep South
    Posts
    4,084

    Default

    Due to lack of feedback this topic is closed.
    Windows Insider MVP Consumer Security 2009 - 2017
    Please do not PM me for Malware help, we all benefit from posting on the open board.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •