Any insight you can give me will be helpful. I have read this forum a lot but never had to post. Thought I was pretty good with computer and don’t understand how both of my computers are infected with almost the same registry keys.
I formatted both computers less than 2 weeks ago because I suspected a problem and thought I would be clean. Tonight after reading some stuff on the new AVG from Grisoft just released I thought I would download it and see what it was like for giggles. It found 476 or some odd registry keys it listed as warnings and that they were Internet Explorer Active X registry key entries. I don't even use Internet Explorer and if I do it is once in a great while. My laptop I am almost 100 percent since the format that I have not even launched internet explorer. Which is why this is puzzling me?
Zone Alarm Professional Firewall
Avast Free Edition
Threatfire from PC Tools and Spyware Doctor - Those three are actively running all the time. I also have PC Tools Antivirus, Spyware Terminator (on desktop), Super Antispyware, Antivir installed but they do not run as an active scanners. I also have Mcafee Siteadvisor and No Script for firefox which tells me what sites to stay away. I know a little bit paranoid but some of things I have been reading lately kind of justifies it and since AVG just found all this crap.
I started to think that I had a hacked version of AVG so I triple checked that it was the right Grisoft website so it is not that unless there site was jacked.
I just can't figure out where I got the infection I know 100 percent that my laptop has not been on any warez, porn, or any other malware sites because I have been the only once using it and not that much. The desktop however not so sure if anyone else used it. I don't have shared directories on the computers because I have kept them in an internet zone and not a trusted zone to each other.
I restarted and did another scan and it is finding the same registry keys again. I will figure that out I hope probably reformat but I need to figure out how they are getting on both computers. I will keep it clean but I would like to cuss my head off. It is not detecting what ever is putting them back there.
Can someone take a look at the picture files that I have placed and see what they think. I made a list of software that I have on both computers and I think I might just have to format again and check after each software is installed (that sounds like so much fun).
My gut is telling me it is a root kit somehow or rogue software which I have tried like hell to stay away from. Anyone know of a good root kit software. AVG and Antivir did not find anything.
Any suggestions on programs to find out how they got there. Or what it is AVG is finding stuff but not what is placing it there.
I would like to find a program that will detect the infection so that I won’t use that CD or External Hard drive. There is no way I can just trash everything including backups without having something that will catch it.
I was going to attach the pictures but I don't see that option. I would paste the export of the scan but it is 23 pages a bit long I think. Can you attach a text file?
One other thing I don't see why they are listed as warnings is it cause they are registry entries.
Edited by Black9296, 29 April 2008 - 02:18 AM.