crazyJoe

Members
  • Content Count

    14
  • Joined

  • Last visited

Everything posted by crazyJoe

  1. Logfile of HijackThis v1.99.1 Scan saved at 10:18:57 PM, on 7/18/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~1\Grisoft\AVG7\avgupsvc
  2. Logfile of HijackThis v1.99.1 Scan saved at 7:21:45 PM, on 7/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA~
  3. Logfile of HijackThis v1.99.1 Scan saved at 11:21:57 AM, on 6/30/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe C:\PROGRA
  4. Incident Status Location Potentially unwanted tool:Application/PRScheduler Not disinfected C:\Documents and Settings\All Users\Start Menu\Programs\Startup\PowerReg Scheduler.exe
  5. OK, finally got the report from Safe Mode. Would it help to see the Normal Mode scan at this time ? --------------------------------------------------------- AVG Anti-Spyware - Scan Report --------------------------------------------------------- + Created at: 7:56:28 AM 6/19/2007 + Scan result: :mozilla.33:C:\Documents and Settings\Collin\Application Data\Mozilla\Firefox\Profiles\gepqo14o.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.34:C:\Documents and Settings\Collin\Application Data\Mozilla\Firefox\Profiles\gepqo14o.default\cookies.txt -> TrackingCookie.2o7 : Cle
  6. Did all suggestions including -> Select "Automatically generate report after every scan". After the scan was completed, selected " Apply all actions", selected "Reports", but the reports page showed "none available." Looks like the AVG scan reported several items including tracking cookies, etc. Any suggestions at this point ? By the way, The AVG version shows "7.5.1.43 trial" Thanks
  7. From the UploadMalware.com site : Your file (ypwfkzup.exe) was successfully submitted. If someone requested you submit this file please let them know that you have submitted the file. The file you tried to upload was 0 Bytes or something prevented it from being uploaded. If someone requested you upload the file please let them know.Your file (gsaiijkj.exe) was successfully submitted. If someone requested you submit this file please let them know that you have submitted the file. Your file (avjdrupo.dll) was successfully submitted. If someone requested you submit this file please let them know
  8. WinPFind logfile created on: 6/9/2007 6:28:03 PM WinPFind by OldTimer - v2.0.3 Folder = C:\Documents and Settings\default\Desktop\WinPFind\ »»»»»»»»»»»»»»»»»»»» Windows OS and Versions »»»»»»»»»»»»»»»»»»»» Product Name: Microsoft Windows XP Service Pack 2 | Version: 5.1.2600 Internet Explorer Version: 7.0.5730.11 »»»»»»»»»»»»»»»»»»»» Memory/Drive Info »»»»»»»»»»»»»»»»»»»»»»»»»» 319.30 Mb Total Physical Memory | 192.35 Mb Available Physical Memory | 60.24% Memory free 774.13 Mb Paging File | 712.59 Mb Availabl
  9. Logfile of HijackThis v1.99.1 Scan saved at 3:06:36 PM, on 6/8/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16441) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\Progra
  10. "default" - 2007-06-04 20:38:30 Service Pack 2 ComboFix 07-06-3 - Running from: "C:\A1VirusTools\" ((((((((((((((((((((((((( Files Created from 2007-05-05 to 2007-06-05 ))))))))))))))))))))))))))))))) 2007-06-01 20:06 2,580 --a------ C:\WINDOWS\SYSTEM32\wpfigkui.exe 2007-06-01 19:45 2,580 --a------ C:\WINDOWS\SYSTEM32\fdknxack.exe 2007-06-01 19:32 131,124 --a------ C:\WINDOWS\SYSTEM32\qhyfhewr.dll 2007-06-01 19:25 43,602 --a------ C:\WINDOWS\SYSTEM32\xvid-uninstall.exe 2007-06-01 16:07 28,160 --a------ C:\WINDOWS\SYSTEM32\sysmon32.exe 2007-06-01 16:05 57,344 --a------ C:\DOCUME~1\ALLUS
  11. VundoFix V6.4.1 Checking Java version... Scan started at 9:45:09 PM 5/29/2007 Listing files found while scanning.... C:\WINDOWS\SYSTEM32\avkqervu.ini C:\WINDOWS\SYSTEM32\ddcyyvw.dll C:\WINDOWS\SYSTEM32\dirqxuhf.ini C:\WINDOWS\SYSTEM32\dtcplriw.ini C:\WINDOWS\SYSTEM32\fhuxqrid.dll C:\WINDOWS\SYSTEM32\gihheywn.ini C:\WINDOWS\SYSTEM32\iifedef.dll C:\WINDOWS\SYSTEM32\khfccbb.dll C:\WINDOWS\SYSTEM32\knoqr.ini C:\WINDOWS\SYSTEM32\lstfuotn.ini C:\WINDOWS\SYSTEM32\mmipvwqw.dll C:\WINDOWS\SYSTEM32\nnnnmkj.dll C:\WINDOWS\system32\ntouftsl.dll C:\WINDOWS\SYSTEM32\nwyehhig.dll C:\WINDOWS\SYSTEM32\olimlvas
  12. Ok, here ya go. thanks. Logfile of HijackThis v1.99.1 Scan saved at 10:39:49 AM, on 6/2/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16441) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WIND
  13. Hi there, hope someone can offer advice on removing the Vundo virus from my PC. Spybot, ad-aware and VundoFix all have failed to remove this #@# thing. Here is the HijackThis log. Any help would really be appreciated. Thanks. ///////////////////////////////////////////////////////////////////// Logfile of HijackThis v1.99.1 Scan saved at 10:19:05 PM, on 5/31/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16441) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32