Tech Support Forum - View Single Post - A warning icon says i have spyware/malware but...

Sempurna · 09-19-2006, 12:21 AM

Hi winter,

I’m glad to hear that your system is running normally again.

There is only a minor infection showing in your Kaspersky scan. The other infected objects are in your system restore files. These are inactive and do not pose a danger to your system. As time goes by, your computer will create new system restore points, thusly automatically deleting these corrupted points.

OK, here’s what we do next.

Using Windows Explorer, please navigate to and delete the following FILES in BOLD (if they exist):

C:\Documents and Settings\Mohd Albakry\Temporary Internet Files\Content.IE5\3Y5XV504\popup[1].htm

Please let me know if you encountered any problems finding or deleting the file.

NEXT:

Please download CCleaner (freeware) from here:
http://www.ccleaner.com/download/

Run the CCleaner installer.
During installation process, please UNCHECK "Add CCleaner Yahoo! Toolbar".
Once installed, run CCleaner and click the Windows tab.
Select the following:
- Check everything under the Internet Explorer section.
- Check everything under the Windows Explorer section.
- Check everything under the System section.
- Check ONLY Old Prefetch data under the Advanced section.
Next, click the Options icon, then click the Advanced button:
- UNCHECK : "Only delete files in Windows Temp folders older than 48 hours", click OK.
Next, click the Cleaner icon, then click the Run Cleaner button (bottom right), then Exit.

NOTE : Please do NOT use the Applications tab or the Issues icon. Keep to the Cleaner icon and the Windows tab.

NEXT:

Let's run another diagnostic scan to make sure we're not leaving anything behind.

Please download ComboFix by sUBs:

Save it to your desktop.
Double-click combofix.exe and follow the prompts.
When finished, it shall produce a log for you. Copy and paste the contents of the log in your next reply.

CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.

NEXT:

Please reboot your computer normally into Windows, and then please post the ComboFix log and a new HijackThis log.

09-19-2006, 12:21 AM	#8 (permalink)
Sempurna Analyst, Security Team Join Date: Sep 2006 Posts: 1,302 OS: Windows XP SP2	Hi winter, I’m glad to hear that your system is running normally again. There is only a minor infection showing in your Kaspersky scan. The other infected objects are in your system restore files. These are inactive and do not pose a danger to your system. As time goes by, your computer will create new system restore points, thusly automatically deleting these corrupted points. OK, here’s what we do next. Using Windows Explorer, please navigate to and delete the following FILES in BOLD (if they exist): C:\Documents and Settings\Mohd Albakry\Temporary Internet Files\Content.IE5\3Y5XV504\popup[1].htm Please let me know if you encountered any problems finding or deleting the file. NEXT: Please download CCleaner (freeware) from here: http://www.ccleaner.com/download/ Run the CCleaner installer. During installation process, please UNCHECK "Add CCleaner Yahoo! Toolbar". Once installed, run CCleaner and click the Windows tab. Select the following: Check everything under the Internet Explorer section. Check everything under the Windows Explorer section. Check everything under the System section. Check ONLY Old Prefetch data under the Advanced section. Next, click the Options icon, then click the Advanced button: UNCHECK : "Only delete files in Windows Temp folders older than 48 hours", click OK. Next, click the Cleaner icon, then click the Run Cleaner button (bottom right), then Exit. NOTE : Please do NOT use the Applications tab or the Issues icon. Keep to the Cleaner icon and the Windows tab. NEXT: Let's run another diagnostic scan to make sure we're not leaving anything behind. Please download ComboFix by sUBs: Save it to your desktop. Double-click combofix.exe and follow the prompts. When finished, it shall produce a log for you. Copy and paste the contents of the log in your next reply. CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall. NEXT: Please reboot your computer normally into Windows, and then please post the ComboFix log and a new HijackThis log. __________________ Keep this forum alive - if you've been helped at this forum, please do consider a donation. Thank you for your support. Donation link for Tech Support Forum Last edited by Sempurna; 09-19-2006 at 12:30 AM.