Infected Computer
OK I thought I had cleaned this computer, attached are logs, but ran Trojan Killer as a check and it came up with a couple things...I am simply using this program to diagnose.
Fixed HiJack.EnableLUA and found Trajan.Win 32.
Attached are scans run.
My Web Search still showing up in Startup but not checked. If a program is no longer on the computer would it show up in Startup??? I can't seem to find them on the computer. See Start up screen.
I am running ESET online scanner now.
rkill.log
rkill-log-2.txt
mbam-log-2012-07-26--14-52-09-.txt
SUPERAntiSpyware-Scan-Log---07-2.log
Trojan-Killer-scan-2012-08-16--1.txt
HitmanPro-20120807-1022.log
log.xml
Startup-programs.jpg
Fixed HiJack.EnableLUA and found Trajan.Win 32.
Attached are scans run.
My Web Search still showing up in Startup but not checked. If a program is no longer on the computer would it show up in Startup??? I can't seem to find them on the computer. See Start up screen.
I am running ESET online scanner now.
rkill.log
rkill-log-2.txt
mbam-log-2012-07-26--14-52-09-.txt
SUPERAntiSpyware-Scan-Log---07-2.log
Trojan-Killer-scan-2012-08-16--1.txt
HitmanPro-20120807-1022.log
log.xml
Startup-programs.jpg
If nothing else works with an infection you can always purchase a professional remote cleaning directly from McAfee for about $90. Just go to http://www.mcafee.com and point at
"For Home," then click on "Support." Click the "Virus Removal" link (top center) and proceed with the purchase. This will provide you with a case number and a phone number; simply call them up and they can normally access your computer remotely by having you restart in safe mode with networking support. They offer a 30 day guarantee as well. I've used them several times with particularly stubborn or brand new strains and they always meet my expectations. You can also order by phone: 1-866-966-8478
"For Home," then click on "Support." Click the "Virus Removal" link (top center) and proceed with the purchase. This will provide you with a case number and a phone number; simply call them up and they can normally access your computer remotely by having you restart in safe mode with networking support. They offer a 30 day guarantee as well. I've used them several times with particularly stubborn or brand new strains and they always meet my expectations. You can also order by phone: 1-866-966-8478
tqfdotus -
Mags is already a paying member here on EE. We sure don't want to be giving him advice to go somewhere else!
Mags -
Give me a few minutes to review your logs and I'll post back.
Mags is already a paying member here on EE. We sure don't want to be giving him advice to go somewhere else!
Mags -
Give me a few minutes to review your logs and I'll post back.
My advice? If you're running Vista - upgrade to Win 7. Too many holes in that version.
Younghv -
I was not aware of that rule - thank you - and just wanted to point out the professional option from McAfee. There are some strains that are not going to be worth taking the time or the risk to try to remove manually, especially if prior attempts did not remove the infection. As I said, if nothing else works...
I was not aware of that rule - thank you - and just wanted to point out the professional option from McAfee. There are some strains that are not going to be worth taking the time or the risk to try to remove manually, especially if prior attempts did not remove the infection. As I said, if nothing else works...
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Vic..I wish you wouldn't go...we work so well together. I ran CCleaner when I thought her machine was clean. Trying "Emsisoft Emergency Kit 2.0" now.
This computer, as with many I work on, is being done remotely. Any issues with that?
This computer, as with many I work on, is being done remotely. Any issues with that?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Will do...I appreciate the assistance with ComboFix. Attached is the results from ESET and Emsisoft Emergency if you want to look at that first. I will let my client know I need her computer.
Thank You oneononecomp!!!!!!!!!!!!!!!
Emsisoft-a2scan-120816-154552.txt
ESET-Scanner-log.txt
Thank You oneononecomp!!!!!!!!!!!!!!!
Emsisoft-a2scan-120816-154552.txt
ESET-Scanner-log.txt
ASKER
Running ComboFix tomorrow.
Be patient. It can take 10-15 minutes.
ASKER
Thanks...I've run it before just don't know how to read it...I appreciate your assistance!!
Attached are the rKill and ComboFix logs
Rkill--1-8-21.txt
Attached are the rKill and ComboFix logs
Rkill--1-8-21.txt
ASKER
Sorry...here is the ComboFix log.
ComboFix-Log-8-21-Kim.txt
ComboFix-Log-8-21-Kim.txt
Looks like it cleaned it up well. Do you see any signs of infection?
ASKER
No signs of infection.
anything else you run the risk of not discovering some part of the malware ...