We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide

Malware removal and user accounts question

2»

Comments

  • bestpud
    bestpud Posts: 11,048 Forumite
    Saying that, MSE isn't normally running in the background - only Avira.
  • bestpud
    bestpud Posts: 11,048 Forumite
    Malwarebytes hasn't detected anything with a quick scan...
  • fiddiwebb
    fiddiwebb Posts: 1,806 Forumite
    bestpud wrote: »
    Malwarebytes hasn't detected anything with a quick scan...

    I would advise removing one of your AVs,unless you are collecting them perhaps?

    Which you decide to abandon is up to you, I know which one I would get rid off although I'm biased ;)
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    TICK and FIX these in hijack ~
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll (file missing)
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll (file missing)


    Having 2 avs is not a good idea. Uninstall MSE or AVIRA (your call, personally id uninstall MSE)

    Log looks clean, but as youve clearly been infected then id recommend a FULL scan with malwarebytes to make sure
    :idea:
  • bestpud
    bestpud Posts: 11,048 Forumite
    Thanks guys.

    MSE now uninstalled and I've fixed the things highlighted from the log.

    I'm now doing a full malwarebytes scan.

    If that is clear, can I cautiously presume all is well?
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Nothings ever 100% certain. But sure, its as clean as your probably gonna get it
    :idea:
  • bestpud
    bestpud Posts: 11,048 Forumite
    Cheers, much appreciated! :beer:

    Full scan is clear but I will keep an eye on it just in case.
  • bestpud
    bestpud Posts: 11,048 Forumite
    UPDATE: I'm pleased to say all seems well now!

    Thanks again :beer:
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Happy computing :p
    :idea:
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 353.8K Banking & Borrowing
  • 254.2K Reduce Debt & Boost Income
  • 455.2K Spending & Discounts
  • 246.9K Work, Benefits & Business
  • 603.4K Mortgages, Homes & Bills
  • 178.2K Life & Family
  • 260.9K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16K Discuss & Feedback
  • 37.7K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture