suzannebaer

Members
  • Content Count

    12
  • Joined

  • Last visited

About suzannebaer

  • Rank
    Member
  1. Sorry for the delay in reply... we were out of town and I didn't get to check this thread very quickly. OtMoveIt Results: File/Folder O4 - HKLM\..\Run: [Windows Explorer] C:\WINDOWS\explore.exe not found. File/Folder O4 - HKLM\..\Run: [dumprep] C:\WINDOWS\system32\spoolw.exe not found. Created on 12/28/2007 14:43:13 I also got a message that it could not create a log.
  2. AVG is scanning clean and it appears to be working well. Thank you for your time and assistance!
  3. Both times I ran combofix, I waited until the log came up--which my understanding of the directions was that when the log came up, then combofix was finished. It was only after I had saved the log as a notepad file and copied it to paste that I attempted to run firefox. Should combofix be finished running when the log appears or is there something else I should wait for? AVG anti-spyware log: --------------------------------------------------------- AVG Anti-Spyware - Scan Report --------------------------------------------------------- + Created at: 19:49 12/19/2007 + Scan result: Nothin
  4. In case it's important... Both times that I ran combofix, it did not appear to reboot but firefox wouldn't open. When I try restarting the computer it gives me a program not responding for "SysFader" and then goes through a continuous loop of shutting down SysFader. Both times I have had to restart the computer by holding down the power button. Firefox works fine when the computer reboots. Combofix log: ComboFix 07-12-18.1 - Owner 2007-12-18 22:50:12.3 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.68 [GMT -8:00] Running from: C:\Documents and Settings\Owner\Desk
  5. Thanks! Combofix log: ComboFix 07-12-18.1 - Owner 2007-12-18 6:53:42.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.55 [GMT -8:00] Running from: C:\Documents and Settings\Owner\Desktop\ComboFix(3).exe * Created a new restore point . ((((((((((((((((((((((((( Files Created from 2007-11-18 to 2007-12-18 ))))))))))))))))))))))))))))))) . 2007-12-18 06:51 . 2007-12-18 06:51 <DIR> d-------- C:\WINDOWS\LastGood 2007-12-12 21:40 . 2004-11-02 08:58 163,840 --a------ C:\WINDOWS\system32\igfxres.dll 2007-12-12 21:39 . 2007-12-12 21:39 2,422 --a------ C:\WINDOWS\sy
  6. Is there something else I should or could be doing?
  7. Hi Sarahw! Thanks for being here to help! I followed the directions to show hidden files and disable TeaTimer. When I went to uploadmalware, I could not locate either of the files you requested. I tried browsing for them, typing the file names (got a message that said file not found) and doing a regular search for files and folders off the start menu. Similarly named files existed: explorer.exe and spoolsv.exe Is there some other way to look for them? Or should I be glad they appear to be gone? A new log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:14, on 2007-12-15 Plat
  8. Hello Helpful People! AVG found several files on my husband's computer it identified as trojans. AVG would delete the files but even 15minutes later a new scan would find the same or similar files. When the problem surfaced a few weeks ago he had downloaded some new games from some different game sites. I found a reference to combofix and tired downloading and running that. It seemed to work as AVG ran clean for a couple of weeks. Now it is doing the same thing. I'm hoping you can find something in a log that can help us get rid of whatever is re-inventing those files. Th
  9. Thank you so much for your help! Things seem to be running well! I already have most of the programs you mentioned at this point, will work on downloading and running the rest.
  10. Here's what I got from SuperAntiSpyware: SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 09/03/2007 at 00:04 AM Application Version : 3.9.1008 Core Rules Database Version : 3298 Trace Rules Database Version: 1306 Scan type : Complete Scan Total Scan Time : 01:39:26 Memory items scanned : 524 Memory threats detected : 0 Registry items scanned : 5727 Registry threats detected : 1 File items scanned : 84565 File threats detected : 3 Unclassified.Unknown Origin HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks#{00DBDAC8-4691-4
  11. Thanks for Helping. VundoFix said it found no infected files. I clicked Remove Vundo anyway and it said again that it found no infected files and would close (which it promptly did). Vundo Log: VundoFix V6.5.7 Checking Java version... Java version is 1.4.2.3 Old versions of java are exploitable and should be removed. Scan started at 10:14:39 AM 9/2/2007 Listing files found while scanning.... No infected files were found. Beginning removal... Here is the DSS Log: Deckard's System Scanner v20070826.66 Run by Karen on 2007-09-02 10:19:26 Computer is in Normal Mode. ---------------------------
  12. About a year ago, thanks to Norton (which randomly decided to stop running) I got some kind of downloader on my system. It took a few weeks and lots of help from my big brother--who also suggested I run AVG anti-virus instead--but the problem appeared to be cleared up. And after a few weeks I let AVG run a pre-scheduled daily check and stopped manually scanning or paying really close attention. So I just realized that for months AVG has been quietly removing the same tracking cookies from my computer every day. I don't know if this is related to the previous problem or something new. AVG