AntiSpySpider Infection

Ok, I have gone through the read and run and I just want to make sure this PC is clean before I give it back to the user. Here are my logs, and thanks for the great site.

 

The other two log files.

 

Hi Sunnovah,
Welcome to Major Geeks!

Just some cleanup items.

1) Go to Windows Explorer and delete this folder:

C:\Program Files\Enigma Software Group

2) Go to add/remove programs and uninstall the below:

Java(TM) 6 Update 5

3) Reboot after uninstalling the above.

4) Install the current version of Sun Java from: Sun Java Runtime Environment

5) If you do not use Windows Messenger (not to be confused with MSN Messenger!!) I would like you to run Disable/Remove Windows Messenger


6) Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (Note: if using Vista, don't double click, use right click and select Run As Administrator). Select Do a system scan only). In the box that opens, find the following entries and put a checkmark next to them (if you need some of them to be in the trusted zone, leave them). After check-marking them, close all your open browser windows and click on FIX:

Do the following programs need to be in the trusted zone? If not, please fix them as well.

O15 - Trusted Zone: http://www.transcentral.carrier.com (HKLM)
O15 - Trusted Zone: http://tbbwebx.thomasbusonline.com (HKLM)

After you click fix, just close hijackthis.

7) Now run CCleaner at the default setting with the Windows tab as the top one.

Below are the final cleanup instructions:

abri

 

Thanks Abri!

I have it all cleaned up now. I know our company uses Windows Messenger, and the Trusted sites are required for company use as per our NetAdmin. I am sure the user will be happy to have her laptop back.

Thanks again

 

Hi Sunnovah,
Thanks very much.
All the best to you!
abri