Other > Viruses and worms
cleaning up old AVG files
scythe944:
I didn't really look at your hijackthis log previously, because I automatically thought that AVG was the cause.
I then found this in your HJT log:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local.,;*.local
I don't like that entry. I don't know what it's doing there. I'd remove that with HJT.
You should also remove this: O23 - Service: Plug and Play Device Manager ($sys$DRMServer) - Unknown owner - C:\WINDOWS\system32\$sys$filesystem\$sys$DRMServer.exe (file missing)
Have you used malwarebytes and / or superantispyware before? I would like you to download at least one of them and run a scan.
You should be able to get to most, if not all websites after removing that "proxy" entry with HJT, then you can download avast and everything else.
jak834:
HJT removed the R1.... , the other 023... I clicked fix twice and it's still in the HJT. Fixed? thanks
CharleyO:
***
An analysis of your HJT log shows the following problems :
It seems that you don't use an anti-virus scanner or your scanner is not active. Only an anti-virus scanner can protect you against new viruses.
We didn't detect any active process of a firewall on your system. Reasons maybe:
(1.) You are using the windows firewall or a hardware firewall.
(2.) You are using a firewall of an unknown vendor.
(3.) You are using a firewall, but for unknown reasons it is disabled
(4.) You don't use any firewall at all.
We recommend you to use a firewall.
C:\WINDOWS\CDProxyServ.exe
Questionable entry. Part of the infamous Sony DRM rootkit. Since the file - DRMServer.exe - is missing below, this one should be fixed.
http://www.bleepingcomputer.com/startups/CDProxyServ.exe-13346.html
O23 - Service: Plug and Play Device Manager ($sys$DRMServer) - Unknown owner - C:\WINDOWS\system32\$sys$filesystem\$sys$DRMServer.exe (file missing)
BAD entry that should be fixed. Unneeded entry (file missing) that should be fixed.
http://www.bleepingcomputer.com/startups/$sys$DRMServer.exe-13347.html
O23 - Service: XCP CD Proxy (CD_Proxy) - Unknown owner - C:\WINDOWS\CDProxyServ.exe
Questionable entry. Part of the infamous Sony DRM rootkit. Since the file - DRMServer.exe - is missing above, this one should be fixed.
http://www.bleepingcomputer.com/startups/CDProxyServ.exe-13346.html
There were several other questionable entries but research proved them to be OK.
***
Navigation
[0] Message Index
[*] Previous page
Go to full version