Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Bad Registry Entries/folders


  • This topic is locked This topic is locked
4 replies to this topic

#1 wbreslin951

wbreslin951

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 21 February 2008 - 01:37 AM

Is there any way i could post a copy of all the contents of my registry so that someone could search it for bad entries/folders (spyware, viruses, and the like)? Just wonderin.. I know I'm infected with stuff.. just don't know what.. my comp is acting really wierd sometimes.. the other day it shutdown by itself :-?

BC AdBot (Login to Remove)

 


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,848 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:03:20 AM

Posted 21 February 2008 - 01:41 AM

Hello wbreslin951 and welcome to BC :flowers:

The registry is HUGE and it takes a lot of experience and knowledge to know what's what in it, so posting your registry is out of the question.

I note, however, that you haven't responded to your HJT helper's reply to your HJT thread here: http://www.bleepingcomputer.com/forums/t/126352/hijackthis-log/ I would advice doing so immediately especially since you say your computer is acting up.

Orange Blossom :thumbsup:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

#3 wbreslin951

wbreslin951
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:12:20 AM

Posted 21 February 2008 - 01:48 AM

i finally replied to it.. For some reason notification didn't show up in my email so I didn't get to see if I got a reply until now.. I'm having trouble with Trojan.Virtumonde/Vundo.. not sure, but lately i've been getting this error saying that "c:\\windows\system32\pmkhe.dll access denied" and the thing pops up about every two seconds without fail. I think I might have fixed the popup problem by searching the registry for the pmkhe entry and low and behold, it was there, and in a folder that had all kinds of other stuff in there.. I looked up the name of the folder in google and found unanimous results that the folder was bad, so I deleted it, along with all it's contents, of course, and now the popups have stopped =)

#4 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,848 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:03:20 AM

Posted 21 February 2008 - 02:13 AM

Hello wbreslin951,

In order to be notified of responses you need to make sure you are subscribed to the thread. The best way to do this is through your controls. Click on My Controls near the top of the screen. Then under Options on the left hand side, click on Email settings.

Be sure there is a check mark by this option:

Enable 'Email Notification' by default?
If ticked, choose default type:
Enabling this option will automatically subscribe you to any topic you start or reply to.


After the "default type" is a small window with a drop-down arrow. For now, choose Immediate e-mail notification.
---------
Concerning your computer issues, at this point you should only follow the directions of your HJT helper. Please DO NOT make any further changes to your computer: deleting files, editing the registry, using special fix tools, installing or uninstalling software etc. as this will make it more difficult for the HJT team to help you. Please be sure to advise your helper of all the issues you are currently having and any infections you have identified and what software programs identified them for you. Let him know what you have done in working on cleaning the computer. what worked and didn't work. The more information he has the better. Note: in the HJT forum, it is best to add missing information as a reply rather than editing the post once the initial post has received a reply.

Orange Blossom :thumbsup:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript

#5 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:03:20 AM

Posted 21 February 2008 - 08:16 AM

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a HJT Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the HJT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the HJT Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the HJT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another HJT Team member is already assisting you and not open the thread to respond.

If after 5 days you still have received no response, then post a link to your HJT log in the thread titled "Haven't Had A Reply In Five Days?".

To avoid confusion, I am closing this topic.
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users