6/18/09 Mary C computer HP Pavilion a1213w
Upon booting into Windows XP, the following pops up
System Security
Protect Your PC
Open File Security Warning
Nintendo WFCReg.exe
C:\program files\Wifi Connector
Looking up on the web for a solution.
download MBAM (MalwareBytes Anti-Malware) (had to dl w/ ie since Firefox locked)
run setup, says can't run, infected
boot up into safe mode
install MBAM
run quick scan
found 37 infections
remove selected
restart computer
system security message doesn't show up
run antimalware again
check for updates
run full scan 52 minutes, 48 seconds
no malicious items detected
disk cleanup
download avast
install avast (play freecell while waiting)
scan on reboot
delete files in temporary internet files
HP\9972322\Program\Interop.SHDOCVS.dll
infected by Win32:Adware-gen [adw]
9 - ignore (might be false positive?)
c:\windows\temp\skynet ... temp
etc.
infected by win32.Alvrem.BH [rtk]
1 - delete
remove spyware doctor (out of date)
turn on Windows Defender
quick scan
Suspicious files found (by avast)
c:\windows\system32\drivers\skynetnlxbttvp.sys
delete
search being redirected in ie
virus detected in memory
reboot & scan on boot (twice)
detected and deleted
file windows\system32\SKYNET ... infected
delete
Fri 6/19/09
IE seems OK
Firefox errors out on first run
locks up on retry
Thunderbird reads email ok
uninstall firefox and install latest version
install SP3
run Windows Update until no more updates
Internet Explorer on desktop
install Chrome
install and run ccleaner
Makana's account
slow starting up
deactivate HP Organize from startup (was making startup slow)
deactivate myspace IM from autostartup, put shortcut on desktop
deactivate googletalk from startup, put on desktop
remove wkcalrem from startup
register avast
No comments:
Post a Comment