after totally reformatting and setting up trend micro again, i set up my email. the same email came in from myself which i had already recieved before having to reformat and did not send again and i am now getting the same symptoms.... start menu and other windows/windows popping up, shut downs on the email and the web?
downloaded a free scan and it said i had a trojan? can anyone help???
PLEASE
Moyra
forgot to mention. this computer is only four days old. with the probs i have had i havent even had time to load my office program
hi. moyra here, has any staff member looked at this yet??? i dont want to go any further istalling programs if it is a waste of time and i have to re-format again.
i would really appreciate your expert help.
thank you
i did an online scan from panda software and it states i have potentially unwanted software but can not find a fix for it !!!
Hi again. i was reading another log with similar problems and followed the instructions using sdfix. i ran the program and it found a trojan. i will post the log here. sorry if it is the wrong area i am not sure where i should put it. here it is. I would appreciate it if someone could have a look and see if i need to do anything else. thank you for your time.
SDFix: Version 1.124
Run by moyra on Sun 06/01/2008 at 06:03 AM
Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\Program Files\Setup.exe - Deleted
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
C:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-06 06:04:50
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
IPC error: 2 The system cannot find the file specified.
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
Remaining Files:
---------------
File Backups: - C:\SDFix\backups\backups.zip
Files with Hidden Attributes:
Wed 2 Jan 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\410ff09308a833491dba7686f0aee2eb\BIT5.tmp"
Finished!
Edited by moyra, 05 January 2008 - 01:14 PM.