View Single Post
Old 04-03-11, 14:37
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 48,172
Thanks: 510
Thanked 4,982 Times in 4,697 Posts
Default Re: Malware Removal Guide (incl. spyware, virus, trojan, hijacker)

First off, it is a very bad idea to allow all users to have Admin. privileges. It is also a bad idea to allow BitTorrent to run at startup!! It leaves you wide open to all kinds of nasties. Although I am not seeing any malware in your logs, it would be a good idea to run both SAS and MBAM on each user account.

We can clean up a few things:
Please disable all anti-virus and anti-spyware programs while we do the following (re-enable when you are finished):

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride =
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
After clicking Fix, exit HJT.

Now copy just the bold text below to notepad (Do not include any space above the word REGEDIT). Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

"BitTorrent DNA"=-

[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

Make sure that you tell me if you receive a success message about adding the above
to the registry. If you do not get a success message, it definitely did not work.

Now tell me what malware issues you are having, if any.
Major cake licker.

Major Geeks on Facebook

Major Geeks Newsletter
Reply With Quote