[Fixed] Hijackthis! Logs - [Fixed] Help needed as soon as possible (instala.php) posted in the Security & Safety forums; A few days ago my computer began acting wierd, it is evident that there is some virus installed on my computer. When i start the computer it has begun to ...
[Fixed] Help needed as soon as possible (instala.php)
A few days ago my computer began acting wierd, it is evident that there is some virus installed on my computer. When i start the computer it has begun to say D:/WINDOWS/SYSTEM32/INSTALA.PHP does not have a folder or a function please go to control panel and fix it. Well everytime i started internet explorer, it would be normal, than would have about 6 pop ups that would come on, i would close them, it would happen again, i have never in the past had one popup. It continued to do the same thing, and i also noticed icons on my desktop that had no picture, but seemed to be an application, when i clicked it it did nothing. so i deleted those, figuring that it was a virus i made internet explorer inaccessable from the set defaults tab in control panel, and now use firefox, but when i need to open something that requires internet explorer, or use active x i use internet explorer, and i get pop ups. so many popups. most from popuptraffic.com, i even went into system 32 and deleted instala.php and instala 1.php but something is still present in the computer. PLEASE HELP.
Hi sktfdc8, and welcome to pchf. First, click the prework link in my signature, follow all the steps, and post back with BOTH the hjt log and the AVG log. That way we can see what we are dealing with.
hoo boy, you've got some fun ones in there. Two questions:
1. did you run ATF?
2. Did you run AVG, and if so, can you please attach the logfile it generated? If you are confused, just click the link in my signature marked prework and follow all the steps there; that will leave you with both logs, and ATF having been run as well.
I have class tonight, so I may not get a chance to respond before tomorrow morning, but there is always someone on duty, so hopefully they can answer in my stead. If not, I will be answering you about 7 CST tomorrow a.m.
well avg i ran the free trial version and it was scanning but saaid it restarted, since the problem is in systnem 32 i decided i was gonna scan there, but before i could it had spotted something as a backdoor in system 32, but i will scan and post
so here is the agv for system 32 i dont think i need to make it an attatchment because its small tell me if i should in the future:
D:\WINDOWS\system32\__delete_on_reboot__3_7_._e_x_ e_ -> Backdoor.Small.ml.1 : No action taken.
D:\WINDOWS\system32\96.exe -> Downloader.Obfuscated.bg : No action taken.
D:\WINDOWS\system32\xrun.exe -> Downloader.Obfuscated.bg : No action taken.
::Report end
Also if memory serves (this started a week ago) i believe it started when i downloaded a tool called Youtube Downloader, but that might be a coincidence because this looked totally safe, and legit, and i uninstalled it and the virus is still present.
your link doesnt work- the scan i did of system 32 picked up 3 things to be worried about ^above, i will try scanning the whole thing again and get back to you right away,
Dont bother saying thankyou you have done more than i have asked i should be thanking you
ill google for kapersky
Satellite TV on your PC - over 3000 Channels! Click Here!
PC Help Forum
» Security & Safety
» [Fixed] Hijackthis! Logs
»
[Fixed] Help needed as soon as possible (instala.php)
[Fixed] Help needed as soon as possible (instala.php)
Linear Mode
