Solve : UNKNOWN VIRUS?

1.	Solve : UNKNOWN VIRUS?
Answer» HI, I HAVE RECEIVED A MESSAGE BY MY ANTIVIR: Q-te A VIRUS OR UNWANTED PROGRAM WAS FOUND. C:\WINDOWS\Temp\tmp1D.tmp Contains detection pattern of a probably damaged sample CC/Agent.HM Unq-te My AVIRA antivir cannot neutralize it. Any help? Thanks! Please start here. Please read this before requesting malware removal helpQuote from: evg1024 on May 14, 2008, 01:22:39 PM HI, I HAVE RECEIVED A MESSAGE BY MY ANTIVIR: Q-te A VIRUS OR UNWANTED PROGRAM WAS FOUND. C:\WINDOWS\Temp\tmp1D.tmp Contains detection pattern of a probably damaged sample CC/Agent.HM Unq-te My AVIRA antivir cannot neutralize it. Any help? Thanks! HI, I HAVE PREFORMED AS SUGGESTED AND SuperAntispyware log Malwarebytes' log Hijackthis log ARE ENCLOSED. THANKS VERY MUCH FOR THE VERY SOUND AND QUALITY ASSISTANCE! SHOULD I KEEP ALL DOWNLOADED PROGRAMS ON MY PC? AND HOW OFFTEN SHOULD I RUN IT? THANKS AGAIN! JEV [recovering space - attachment deleted by admin]Quote from: evilfantasy on May 14, 2008, 06:34:00 PM Please start here. Please read this before requesting malware removal help The logs look fine, are you still having any problems? Run the new programs EVERY other week or so just to ensure nothing has made it's way back into the computer. Just a quick fix with hijackthis and then some cleanup steps. Open Hijackthis and select Do a system scan only. Place a check mark next to the following entries: (if there) O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) Important: Close all windows except for Hijackthis and then click Fix checked. Exit Hijackthis. ---------- Please download ATF Cleaner by Atribune. ATF Cleaner Make sure that all browser windows are closed. Windows Vista USERS: ATF-Cleaner must be Run as an Administrator Under the Main tab, put a check next to Select All. Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies) If you use the Firefox browser: Click on Firefox at the top and put a check next to Select All. If you would like to keep your saved passwords, click No at the prompt. Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies) If you use the Opera browser: Click on Opera at the top and put a check next to Select All. If you would like to keep your saved passwords, click No at the prompt. Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies) . Important: Restart the computer before continuing. ---------- This is a good time to clear your infected system restore points and establish a new clean restore point: Go to Start &GT; All Programs > Accessories > System Tools > System Restore Select Create a restore point, and click Next. Next, go to Start > Run and type in cleanmgr Select the More OPTIONS tab Next to System Restore click Clean up... This will remove all restore points except the new one you just created. Use the Secunia Software Inspector Click Start Now Check the box next to Enable thorough system inspection. Click Start Allow the scan to finish and scroll down to see if any updates are needed. Update anything listed. . Learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place? Let us know if anything else comes up.HI, ALL IS WELL NOTED. THANKS A LOT FOR ALL - HAVE A VERY BEAUTIFUL DAY!Good to know. Safe surfing... There was no need for this to be broken up into two different threads, so I went ahead and merged them. Glad to see all is well.

Answer» HI,
I HAVE RECEIVED A MESSAGE BY MY ANTIVIR:

Q-te
A VIRUS OR UNWANTED PROGRAM WAS FOUND.

C:\WINDOWS\Temp\tmp1D.tmp

Contains detection pattern of a probably damaged sample

CC/Agent.HM
Unq-te

My AVIRA antivir cannot neutralize it. Any help?

Thanks!
Please start here. Please read this before requesting malware removal helpQuote from: evg1024 on May 14, 2008, 01:22:39 PM

HI,
I HAVE RECEIVED A MESSAGE BY MY ANTIVIR:

Q-te
A VIRUS OR UNWANTED PROGRAM WAS FOUND.

C:\WINDOWS\Temp\tmp1D.tmp

Contains detection pattern of a probably damaged sample

CC/Agent.HM
Unq-te

My AVIRA antivir cannot neutralize it. Any help?

Thanks!

HI,
I HAVE PREFORMED AS SUGGESTED AND
SuperAntispyware log
Malwarebytes' log
Hijackthis log
ARE ENCLOSED.

THANKS VERY MUCH FOR THE VERY SOUND AND QUALITY ASSISTANCE! SHOULD I KEEP ALL DOWNLOADED PROGRAMS ON MY PC? AND HOW OFFTEN SHOULD I RUN IT?
THANKS AGAIN!
JEV

[recovering space - attachment deleted by admin]Quote from: evilfantasy on May 14, 2008, 06:34:00 PM

Please start here. Please read this before requesting malware removal help

The logs look fine, are you still having any problems?

Run the new programs EVERY other week or so just to ensure nothing has made it's way back into the computer.

Just a quick fix with hijackthis and then some cleanup steps.

Open Hijackthis and select Do a system scan only.

Place a check mark next to the following entries: (if there)

O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

Important: Close all windows except for Hijackthis and then click Fix checked.

Exit Hijackthis.

----------

Please download ATF Cleaner by Atribune. ATF Cleaner

Make sure that all browser windows are closed.

Windows Vista USERS: ATF-Cleaner must be Run as an Administrator

Under the Main tab, put a check next to Select All.
Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies)
If you use the Firefox browser:
Click on Firefox at the top and put a check next to Select All.
If you would like to keep your saved passwords, click No at the prompt.
Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies)
If you use the Opera browser:
Click on Opera at the top and put a check next to Select All.
If you would like to keep your saved passwords, click No at the prompt.
Click the Empty Selected button. (Note: if you remove cookies, automated login at forums and sites will be disabled. If you do not want this, uncheck Cookies)

.
Important: Restart the computer before continuing.

----------

This is a good time to clear your infected system restore points and establish a new clean restore point:

Go to Start &GT; All Programs > Accessories > System Tools > System Restore
Select Create a restore point, and click Next.
Next, go to Start > Run and type in cleanmgr
Select the More OPTIONS tab
Next to System Restore click Clean up...

This will remove all restore points except the new one you just created.

Use the Secunia Software Inspector

Click Start Now
Check the box next to Enable thorough system inspection.
Click Start
Allow the scan to finish and scroll down to see if any updates are needed.
Update anything listed.

.

Learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place?

Let us know if anything else comes up.HI,
ALL IS WELL NOTED.
THANKS A LOT FOR ALL - HAVE A VERY BEAUTIFUL DAY!Good to know.

Safe surfing...

There was no need for this to be broken up into two different threads, so I went ahead and merged them. Glad to see all is well.

Solve : UNKNOWN VIRUS?

Discussion

No Comment Found

Related InterviewSolutions

Reply to Comment