-=PCTechTalk=- Re: Antivirus 2009

I've looked over the HJT log and I'm seeing a few 'leftovers' that may or 
may not be tied to some sort of malware, although it doesn't look like 
there's anything fully active right now (but looks can still be deceiving). 
The following sections will go a long way towards cleaning up your system 
and helping it run better.  The first two and the last one are specific to 
your situation while the other two are just good advice that everyone should 
follow about once a month.

**************************
To be safe (and to get rid of a few things that are just dragging down your 
system), re-run HJT and select the items below and then tell HJT to fix 
them.  I'm being a bit conservative here since the system appears to be 
running relatively well.

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program 
Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program 
Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common 
Files\Real\Update_OB\realsched.exe" -osboot
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - (no 
file)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - 
{85d1f590-48f4-11d9-9669-0800200c9a66} - (no file)


I'd then like you to check out the following link and determine for yourself 
if you need one of the Media Player services running that I see in your log. 
If you actually use it, don't make any changes.  If you don't use it, follow 
the directions for turning it off within Media Player's own settings area.

http://tinyurl.com/6k9j3k

**************************
You need to flush out any old infections by removing old System Restore 
points that are saved on your hard drive (this will remove all previous 
restore points which are likely to be infected).  You'll then create a new 
Restore Point as shown below.

Go to Start > Run, type in SYSDM.CPL and click OK.  Click the System Restore 
tab.  Check - Turn off System Restore.  Click Apply.  Uncheck - Turn off 
System Restore.  Click OK.  You have now removed all previous System Restore 
points.

Go to Start > All Programs > Accessories > System Tools and select System 
Restore to bring up the main SR interface.  In the System Restore prompt, 
select 'Create a restore point'.  Click Next.  Give a description to the new 
Restore Point. (Something like 'Clean PC' would work well here).  Click 
Create and then close the window.

**************************
Next, open up the Add/Remove applet from within Control Panel and see if 
there are any programs you no longer use/want that can be removed.  The less 
'stuff' a system has installed, the better it runs.

**************************
Next, go to Start > Run, type in cleanmgr and click OK to start it.  Select 
your main OS drive (usually C:) and let it run its initial scan.  When it 
finally opens up, set the options so that it targets all Temp files (see the 
list below) and then run it.

Include the following (you can exclude the rest unless you're unsure about 
what will be removed):
Temporary Internet Files
Microsoft Error Reporting
Recycle Bin
Temporary Files

**************************
Finally, I'd like you to reboot your computer and (without starting up any 
programs or windows) open up Malwarebytes, update it fully and run another 
Full scan.  Send me a copy of the log file it produces when it's finished. 
At this point, I'm not entirely sure what I expect to see.  I mainly want to 
make sure that Malwarebytes isn't ignoring something it doesn't yet know how 
to fix.  Do the same thing with a fresh HJT scan so I can compare it to what 
I already have here.

Happy Holidays,
Gman

"The only dumb questions are the ones we fail to ask"

----- Original Message ----- 
From: "tempting2taanzaa" <tempting2taanzaa@xxxxxxxx>
To: <pctechtalk@xxxxxxxxxxxxx>
Sent: Tuesday, December 30, 2008 12:00 AM
Subject: -=PCTechTalk=- Re: Antivirus 2009


> Hi G:
>
> I sent the HijackThis logfile as a .txt attachment to your email address.
> And thank you for taking a look at it! 

---------------------------------------------------------------
Please remember to trim your replies (including this sentence and everything 
below it) and adjust the subject line as necessary.

To unsubscribe or change your email settings:
http://www.freelists.org/webpage/pctechtalk

To access our Archives:
http://groups.yahoo.com/group/PCTechTalk/messages/
http://www.freelists.org/archives/pctechtalk/

To contact only the PCTT Mod Squad, write to:
pctechtalk-moderators@xxxxxxxxxxxxx

To join the PCTableTalk off-topic group, send a blank email to:
pctabletalk+subscribe@xxxxxxxxxxxxxxxx
---------------------------------------------------------------

Other related posts: