Cerenia

My bad, I got a lecture last night - its fine after turning my PC off and leaving it a few moments before rebooting, I managed to nab someone to check it :D Thankyou very much all! :D

Uh-oh, I just assumed its normal now and again with laptops, its still rather new (4monthish), and I just thought I had too much stuff on there (have a 15gb archive folder of everything i've done on PCs in the 7 years i've had one, aiming to get down to 5gb and external hardrive it. All backed up on 2 other PCs in the house anyway, one with no internet access.

Well, talking to a PC literate friend of mine last night advised I research the infected file (at work, so don't have links), and its confirmed these are remnants of the MS Rogue antivirus that goes around. The only thing that happens is occasionally, my PC flickers or lags a little, but that happened on my old laptop, think its just an overused laptop syndrome, nothing to fret over. I do scan very frequently as when I was 15, I got infected with Parite-B, and that was a demon to remove XD Just paranoid about data being stolen and passed over to someone, but I check my bank statements frequently, just to be safe. Did try deleting the registry keys, it let me delete the sub folder 000, but thats all. Thanks guys, as long as I can rest easy, thats cool!! :)

The PC's running as it was before - Fine, except I have those rootkit/trace. left. Mbam clear, ESET clear, Kapersky online clear,, Avira clear, ran ATF cleaner, cleared all files. I have found the registry keys, shall I just try deleting them? Its only SAS finding them.

Hi guys, first post here, wondering if you can help me! I was infected with the Rouge antivirus last year, and got it cleaned up, purdy, and since then, no viruses (although Avira has quarentined a couple of things from when i've been on photobucket). However, I scanned with MBAM, Avira, kapersky online and SuperAntiSpyware. MBAM, Kapersky and Avira all came back clean, but SAS came back with: SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 01/12/2009 at 09:59 AM Application Version : 4.21.1004 Core Rules Database Version : 3700 Trace Rules Database Version: 1676 Scan type : Complete Scan Total Scan Time : 00:40:01 Memory items scanned : 635 Memory threats detected : 0 Registry items scanned : 6182 Registry threats detected : 24 File items scanned : 16111 File threats detected : 224 Adware.Tracking Cookie <deleted due to the amount XD> Browser Hijacker.Deskbar HKCR\Interface\{8F15B157-40D9-4B20-8D3B-B1F8B475B58D} HKCR\Interface\{8F15B157-40D9-4B20-8D3B-B1F8B475B58D}\ProxyStubClsid HKCR\Interface\{8F15B157-40D9-4B20-8D3B-B1F8B475B58D}\ProxyStubClsid32 HKCR\Interface\{8F15B157-40D9-4B20-8D3B-B1F8B475B58D}\TypeLib HKCR\Interface\{8F15B157-40D9-4B20-8D3B-B1F8B475B58D}\TypeLib#Version HKCR\Interface\{A0881AA1-68BE-41AC-9C0D-4C8A69C6C72C} HKCR\Interface\{A0881AA1-68BE-41AC-9C0D-4C8A69C6C72C}\ProxyStubClsid HKCR\Interface\{A0881AA1-68BE-41AC-9C0D-4C8A69C6C72C}\ProxyStubClsid32 HKCR\Interface\{A0881AA1-68BE-41AC-9C0D-4C8A69C6C72C}\TypeLib HKCR\Interface\{A0881AA1-68BE-41AC-9C0D-4C8A69C6C72C}\TypeLib#Version HKCR\Interface\{E827FFD9-95D1-4B49-BEB3-5D49E688C108} HKCR\Interface\{E827FFD9-95D1-4B49-BEB3-5D49E688C108}\ProxyStubClsid HKCR\Interface\{E827FFD9-95D1-4B49-BEB3-5D49E688C108}\ProxyStubClsid32 HKCR\Interface\{E827FFD9-95D1-4B49-BEB3-5D49E688C108}\TypeLib HKCR\Interface\{E827FFD9-95D1-4B49-BEB3-5D49E688C108}\TypeLib#Version Rootkit.Component/Trace HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ#NextInstance HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000 HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#Service HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#Legacy HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#ConfigFlags HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#Class HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#ClassGUID HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VBAGZ\0000#DeviceDesc SAS says they've been deleted and asks me to reboot, but they're still there, any advice? Thankyou :)