Hey
paddyc,
Thanks for posting all the logs.
For your info I have just done a reboot of my computer and Avast is back to reporting the suspicious file again.
Seems like something is still generating it.
1) Fix with HijackThisPlease re-open HijackThis and
Do a System Scan Only. Check the boxes next to all the entries listed below.
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)Now
close all windows other than HijackThis, then click Fix Checked. Close HijackThis.
2) Uninstall programsPlease go to
Add or Remove Programs and remove the following (if present):
J2SE Runtime Environment 5.0
Java 2 Runtime Environment, SE v1.4.1_02
LimeWire PRO 4.18.8
Optional Removal (highlighted in
green):
LimeWire is a P2P program that can compromise your computer's security, its highly recommended that you remove itNEXTUse Windows Explorer and remove the following (if present):
C:\Program Files\LimeWireReboot your computer.
3) Run Kaspersky WebscannerPlease do an online scan with
Kaspersky WebScannerClick on
AcceptYou will be promted to install an ActiveX component from Kaspersky, Click
Yes.
- The program will launch and then begin downloading the latest definition files:
- Once the files have been downloaded click on NEXT
- Now click on Scan Settings
- In the scan settings make that the following are selected:
- Scan using the following Anti-Virus database: Extended (if available otherwise Standard)
- Scan Options:Scan Archives
Scan Mail Bases
- Click OK
- Now under select a target to scan: Select My Computer
- This will program will start and scan your system.
- The scan will take a while so be patient and let it run.
- Once the scan is complete it will display if your system has been infected.
- Now click on the Save as Text button:
- Save the file to your desktop.
- Copy and paste that information in your next post.
4) Run SilentRunnersPlease
RIGHT-CLICK HERE and Save As (in IE it's "Save Target As", in FF it's "Save Link As") to download Silent Runners.
- Save it to the desktop.
- Run Silent Runner's by doubleclicking the "Silent Runners" icon on your desktop.
- You will receive a prompt:
Do you want to skip supplementary searches?
click NO- If you receive an error just click OK and double-click it to run it again - sometimes it won't run as it's supposed to the first time but will in subsequent runs.
- You will see a text file appear on the desktop - it's not done, let it run (it won't appear to be doing anything!)
- Once you receive the prompt All Done!, open the text file on the desktop, copy that entire log, and paste it here.
*NOTE* If you receive any warning message about scripts, please choose to allow the script to run.Next reply (please include):
Note: Please do NOT attach the logs and post ONE log in each postFresh HijackThis log
Kaspersky scan results
SilentRunners log