Should I delete the following file?

Discussion in 'Malware Help (A Specialist Will Reply)' started by syrk, Apr 28, 2005.

  1. syrk

    syrk Private First Class

    I ran a CounterSpy scan which came up with the following results. My question is: Should I delete the infected file or folder or both? syrk

    --------------------------------------------------------------------------
    Spyware Scan Details


    Start Date: 26/04/2005 18:01:40
    End Date: 26/04/2005 18:34:39
    Total Time: 32 mins 59 secs

    Detected spyware

    Win Spy Software Pro 8.3 Commercial Key Logger more information...
    Details: Win-Spy is a completely invisible KEY RECORDER and SCREEN CAPTURE utility that secretly captures anything the user sees or types on the keyboard.

    Status: Quarantined

    High spyware - High risk threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction. May open up communication ports, use polymorphic tactics, stealth installations, and/or anti-spy counter measures. May us a security flaw in the operating system to gain access to your computer.

    Infected folders detected
    c:\program files\microsoft games\train simulator\0
     
    syrk, Apr 28, 2005
    #1
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Did you install it? If not, remove the folder.
     
    bjgarrick, Apr 28, 2005
    #2
  3. syrk

    syrk Private First Class

    bjgarrick, being a newbie I guess (I hope) allows me to ask some silly questions. Here it is: will the deletion affect the game? syrk
     
    syrk, Apr 28, 2005
    #3
  4. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Before you remove this, I would like for you to follow the general cleanup steps. If any of the programs in here detect it, then its bad.

    READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

    Also, just to be sure nothing else is bad!

    http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

    http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

    http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

    http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

    http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

    http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

    http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting
     
    bjgarrick, Apr 28, 2005
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds