stain

LOL, sorry it took so long to reply. been occupied with finding work. yeah everything seem to be in order now. feel better now that i have protection on my laptop. Just glad that I didn't get as badly as infected as my desktop.

Sure thing. Statistics Scanned: * Files: 50341 * System: 4168 * Not scanned: 67 Actions: * Disinfected: 0 * Renamed: 0 * Deleted: 0 * None: 0 * Submitted: 0 Files not scanned: * C:\HIBERFIL.SYS * C:\PAGEFILE.SYS * C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT * C:\WINDOWS\SYSTEM32\CONFIG\SAM * C:\WINDOWS\SYSTEM32\CONFIG\SECURITY * C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE * C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM * C:\WINDOWS\$NTUNINSTALLKB835732$\CALLCONT.DLL * C:\WINDOWS\$NTUNINSTALLKB835732$\GDI32.DLL * C:\WINDOWS\$NTUNINSTALLKB835732$\H323

Followed the steps and I was able to install Comodo and Avast! afterwards without a hitch. the guidelines said to submit a Highjackthis log so here it is just in case. Avast! found some things as well, think two of them are kodak easyshare crap and the other I think might be restore info. can't remember what to do though. attached a screenshot of the chest in case I'm wrong. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:59:00 PM, on 9/1/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\

Hello all! Once again I am submitting a log, this time for my laptop. See a while ago the motherboard died and had to be replaced, when I got it back I, for some reason, couldn't connect to the internet. so I left it at that. It wasn't that big of a deal since i could just continue using my desktop. I stopped using my laptop since a lot of the programs I used were on my desktops. then a few weeks ago I started getting an itch to play the sims again but didn't want to use any space on my desktop since I need the space for my lightwave projects. So I ended up reinstalling it on my laptop. while

Right, thanx for all your help.

so the pskavs.dll is okay even with Avast saying it has Win32:CTX(whatever that is)?

LoL, wsock32.dll, sorry typo. for the stuff thats legit do i just select restore? how do i keep them from being detected again?

Infected files Name: Origonal location: A0013651.exe C:\System Volume Information\_restore{E3B75538-F235-488D-A6AE-69E35517AB70}\RP142 A0013652.exe C:\System Volume Information\_restore{E3B75538-F235-488D-A6AE-69E35517AB70}\RP142 A0013653.exe C:\System Volume Information\_restore{E3B75538-F235-488D-A6AE-69E35517AB70}\RP142 A0014888.dll C:\System Volume Information\_restore{E3B75538-F235-488D-A6AE-69E35517AB70}\RP145 A0015987.dll C:\System Volume Information\_restore{E3B75538-F2

Avast found some stuff and I put in the chest thing, what do i do with it?

no weird crap is happening. downloaded some protection stuff from the recommended list so that slowed the desktop showing up at start up a little bit more. but that won't be a problem once i get a new graphic card for my other computer and i can uninstall some of the programs I've put on this one.

Here it is, ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Saturday, December 22, 2007 1:18:11 AM Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 22/12/2007 Kaspersky Anti-Virus database records: 491513 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target

Lots better, I don't have all that crap popping up all the time or my current window un-selecting itself. real annoying when I'm in modeler/layout and it did that. I still hear the start up sound before the desktop shows but still faster than before. Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 12:17:58 PM, on 12/21/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\sv

XP is gone, at the end of the steps they said to get scanned by panda Activescan to check for more things, but to fully remove them you have to buy the software, ignore that part? Anyway here's the log Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 9:07:41 PM, on 12/20/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Progr

ComboFix: ComboFix 07-12-20.1 - Kathryn 2007-12-19 23:18:38.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.636 [GMT -5:00] Running from: C:\Documents and Settings\Kathryn\Desktop\ComboFix.exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\.protected C:\WINDOWS\dat.txt C:\WINDOWS\search_res.txt C:\WINDOWS\system32\drivers\etc\.protected . ((((((((((((((((((((((((( Files Created from 2007-11-20 to 2007-12-20 ))))))))))))))))))))))))))))))) . 2007-12-12 03:07 . 2007-1

highjackthis log: Logfile of Trend Micro HijackThis v2.0.0 (BETA) Scan saved at 2:11:40 PM, on 12/18/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\stsystra.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\Java\jre1.6.0_03\