lesser-equity

Magazine
Go Back   Computer Juice > Computer Software > Virus, Spyware & Security
Reload this Page

Iexplore virus and some more?

Register Site Spy Member List Donate Search Today's Posts Mark Forums Read Forum Rules


Register


Reply
 
Thread Tools
  #1  
Old 19th Oct 2008, 18:45
New Member Group
  
Hi,
I have a few problems with my PC for about a week, and it's just get worst.

The problems:
1. "regedit" won't start, it's not recognized in windows.
2. My task manager won't start when I press alt+ctrl+del.
3. When I shut down the computer I have a blue screen with fatal error says C000021a.. something like that.
4. When I log into Windows I get tons of pop ups with ads. that window's address is c:\windows\iexplore.html or something with rdmngr and a long continue..
To be able to use my PC I built a batch file that close every process of iexplore.exe and therefore I'm now using google chrome to write this thread.

The protection programs I had until couple of days were Symantec norton anti virus + firewall (both not updated).
The programs I have now (after downloading and deleting others) are AVG internet security (which won't let me update itself - it says my internet connection is not good - weird?)
SPYWAREfighter (fully updated and clean from problems..)
and last of all that I think is the most helpful one is SpyBot S&D (fully updated).

I'll give a little info. about what happening in my comp. now: (all from spybot s&d)

My running processes:

--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008-07-07 blindman.exe (1.0.0.8)
2008-07-07 SDFiles.exe (1.6.0.4)
2008-07-07 SDMain.exe (1.0.0.6)
2008-07-07 SDShred.exe (1.0.2.3)
2008-07-07 SDUpdate.exe (1.6.0.8)
2008-07-07 SDWinSec.exe (1.0.0.12)
2008-07-07 SpybotSD.exe (1.6.0.30)
2008-09-16 TeaTimer.exe (1.6.3.25)
2008-10-19 unins000.exe (51.49.0.0)
2008-07-07 Update.exe (1.6.0.7)
2008-07-07 advcheck.dll (1.6.1.12)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2008-09-15 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2008-07-07 Tools.dll (2.1.5.7)
2008-09-02 Includes\Adware.sbi
2008-10-14 Includes\AdwareC.sbi
2008-06-03 Includes\Cookies.sbi
2008-09-02 Includes\Dialer.sbi
2008-09-09 Includes\DialerC.sbi
2008-07-23 Includes\HeavyDuty.sbi
2008-09-02 Includes\Hijackers.sbi
2008-10-07 Includes\HijackersC.sbi
2008-09-09 Includes\Keyloggers.sbi
2008-10-14 Includes\KeyloggersC.sbi
2004-11-29 Includes\LSP.sbi
2008-10-08 Includes\Malware.sbi
2008-10-14 Includes\MalwareC.sbi
2008-09-02 Includes\PUPS.sbi
2008-10-14 Includes\PUPSC.sbi
2007-11-07 Includes\Revision.sbi
2008-06-18 Includes\Security.sbi
2008-09-30 Includes\SecurityC.sbi
2008-06-03 Includes\Spybots.sbi
2008-06-03 Includes\SpybotsC.sbi
2008-09-09 Includes\Spyware.sbi
2008-10-14 Includes\SpywareC.sbi
2008-06-03 Includes\Tracks.uti
2008-10-15 Includes\Trojans.sbi
2008-10-14 Includes\TrojansC.sbi
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll

PID: 0 ( 0) [System]
PID: 1420 ( 4) \SystemRoot\System32\smss.exe
size: 50688
PID: 1620 (1420) \??\C:\WINDOWS\system32\csrss.exe
size: 6144
PID: 1656 (1420) \??\C:\WINDOWS\system32\winlogon.exe
size: 502272
PID: 1712 (1656) C:\WINDOWS\system32\services.exe
size: 108032
MD5: C6CE6EEC82F187615D1002BB3BB50ED4
PID: 1724 (1656) C:\WINDOWS\system32\lsass.exe
size: 13312
MD5: 84885F9B82F4D55C6146EBF6065D75D2
PID: 1948 (1712) C:\WINDOWS\system32\ibmpmsvc.exe
size: 73782
MD5: 21ABD7E16659602723F984F512C65E02
PID: 1980 (1712) C:\WINDOWS\system32\Ati2evxx.exe
size: 380928
MD5: A2093ED04D20F3ACA0C0D348234C6998
PID: 2020 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 304 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 484 (1712) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 520 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 600 (1712) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
size: 86016
MD5: 80AAA1C7520C86CA0641C69851E124AF
PID: 692 (1712) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
size: 360521
MD5: 3962B7C74E9E335FAA419CCBF4BD1835
PID: 812 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 868 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1188 (1024) C:\WINDOWS\Explorer.EXE
size: 1033216
MD5: 97BD6515465659FF8F3B7BE375B2EA87
PID: 1556 (1712) C:\WINDOWS\system32\spoolsv.exe
size: 57856
MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F
PID: 1248 (1712) C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
size: 231704
MD5: 9B40D378D4E521464212E878BE8216A4
PID: 1604 (1712) C:\PROGRA~1\AVG\AVG8\avgfws8.exe
size: 1220888
MD5: 1BB3A220C3616098E4BEBD6865E8F433
PID: 544 (1712) C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
size: 258103
MD5: 32EDF745816649DFB0C1AA9E723C245F
PID: 1100 (1712) C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
size: 622700
MD5: 0700D8F92F7A93C2AB33CE2E0EBC29F4
PID: 1496 (1248) C:\PROGRA~1\AVG\AVG8\avgam.exe
size: 638744
MD5: AC67ECB5AD03CE4A3FB971221F574E6B
PID: 1260 (1248) C:\Program Files\avg\avg8\avgrsx.exe
size: 287000
MD5: BA1CE056CE1466CA28CE118585EA86C4
PID: 1448 (1712) C:\WINDOWS\System32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 1576 (1248) C:\PROGRA~1\AVG\AVG8\avgnsx.exe
size: 424216
MD5: C9BEA16C638562EB677746D07C673F07
PID: 2756 (1712) C:\WINDOWS\system32\HPZipm12.exe
size: 69632
MD5: 9D84376931440F3679BEEF2A414FA493
PID: 2880 (1712) C:\Program Files\Fighters\configservice.exe
size: 139912
MD5: 9B48A953DE6E8D20E17D634EBDFF1755
PID: 3144 (1712) C:\WINDOWS\System32\QCONSVC.EXE
size: 81920
MD5: F34DB50EF26BC0FED48BB5ADAF9B878F
PID: 3232 (1712) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
size: 139264
MD5: F8489639E1D60D21F63F69A0605DD667
PID: 3272 (1712) C:\WINDOWS\system32\svchost.exe
size: 14336
MD5: 8F078AE4ED187AAABC0A305146DE6716
PID: 3376 (1712) C:\WINDOWS\System32\TPHDEXLG.EXE
size: 77824
MD5: 5515311013AF3EB8746FA6806AA4A859
PID: 3420 (1712) C:\WINDOWS\system32\TpKmpSVC.exe
size: 32768
MD5: DFB268FF0A6DCB9280015FF527F892FF
PID: 3456 (1712) C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService. exe
size: 40960
MD5: 7541BD8978AA1447FC2467C1F2B39B87
PID: 2988 (2020) C:\WINDOWS\system32\wbem\wmiprvse.exe
size: 218112
MD5: 075EA6C849AB0FE416A3D6DD65C3CF41
PID: 3184 (1712) C:\PROGRA~1\AVG\AVG8\avgemc.exe
size: 875288
MD5: EC5B6AFF1A0BD1480B3B40CE78FAA527
PID: 3796 (1712) C:\Program Files\Fighters\licenseservice.exe
size: 283272
MD5: 7A433AA7803B408E50963F3007B7C134
PID: 2392 (1712) C:\Program Files\Fighters\updateservice.exe
size: 307848
MD5: 2DFBDA4C2484938B77737846446BADB5
PID: 2008 (1712) C:\Program Files\Fighters\ScannerService.exe
size: 311944
MD5: B0AB3FAFD1C65FA7FFC9178DAF8B5B96
PID: 992 (1712) C:\Program Files\Windows Media Player\WMPNetwk.exe
size: 913408
MD5: F74E3D9A7FA9556C3BBB14D4E5E63D3B
PID: 2804 (1712) C:\WINDOWS\System32\alg.exe
size: 44544
MD5: F1958FBF86D5C004CF19A5951A9514B7
PID: 3904 (1188) C:\WINDOWS\LSPRN.EXE
size: 16896
MD5: 8D10954E841EEFC61E5022432E8F55E8
PID: 2436 (1188) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
size: 110592
MD5: 0E6AA8A1D47148DC7AD82BF9C81AC69C
PID: 2400 (1188) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
size: 512000
MD5: 89FC9B12D36005F6A43A8F8B58306AC8
PID: 2776 (3904) C:\WINDOWS\system32\PRINTDRV.EXE
size: 552748
MD5: 2B3B794301779CF6AD7EA9F2FEA87CA5
PID: 632 (1188) C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
size: 237568
MD5: EB21E4E92F5A81F7A6E6B9DC8E6BFBB6
PID: 3624 (1188) C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
size: 94208
MD5: 8F00D8FB0E51D4AB0587B3FC06E8079E
PID: 1856 (3624) C:\Program Files\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
size: 77824
MD5: E56AED1AD96125AE952F9B2B1D468177
PID: 504 (3624) C:\Program Files\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
size: 86016
MD5: F1DE90D990C6928EF549602A5ECE4029
PID: 1148 (1188) C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
size: 98304
MD5: 92B1EE9575F696F75FAB3A5A2D0D6642
PID: 3296 (1188) C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
size: 81920
MD5: 763DAB43BDAB27316DBF3373192823D7
PID: 3336 (1188) C:\Program Files\IBM ThinkVantage\SafeGuard PrivateDisk\pdservice.exe
size: 49152
MD5: 64AB0F0795A0AEE366D34007D75F4A12
PID: 3140 (1188) C:\Program Files\ThinkPad\ConnectUtilities\QCWLICON.EXE
size: 86016
MD5: 11ADBA54E52216F21675E75F5535C553
PID: 2252 (1188) C:\WINDOWS\system32\rundll32.exe
size: 33280
MD5: DA285490BBD8A1D0CE6623577D5BA1FF
PID: 2116 (1188) C:\PROGRA~1\ThinkPad\CONNEC~1\QCTray.exe
size: 745472
MD5: 616EF177F379D42EBDEA5E92411A8F6E
PID: 236 (1188) C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
size: 144784
MD5: 6AB4C021FBD36DC6764924C312428D97
PID: 2480 (1188) C:\Program Files\Fighters\spywarefighter\SpywarefighterUser.e xe
size: 180872
MD5: C491ABE2B0E515260CD8816F279B079F
PID: 1472 (1188) C:\PROGRA~1\AVG\AVG8\avgtray.exe
size: 1235736
MD5: B95536F0B568C4476A78966CFA7BA006
PID: 664 (1188) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 24232996A38C0B0CF151C2140AE29FC8
PID: 2840 (1188) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
size: 68856
MD5: E616A6A6E91B0A86F2F6217CDE835FFE
PID: 3092 (1188) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
size: 133104
MD5: 626A24ED1228580B9518C01930936DF9
PID: 3940 (1188) C:\Program Files\Windows Media Player\WMPNSCFG.exe
size: 204288
MD5: 7EAED08CCCA4DDDE61A388C82598CFA9
PID: 2464 (2480) c:\program files\fighters\spywarefighter\SPYWAREfighterTray.e xe
size: 246408
MD5: 3728857211EF65AE850DC29DF3205E10
PID: 5496 (1188) C:\WINDOWS\system32\cmd.exe
size: 388608
MD5: EEB024F2C81F0D55936FB825D21A91D6
PID: 5948 (1188) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
size: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 796 (5948) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
size: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4200 (1188) C:\WINDOWS\system32\rundll32.exe
size: 33280
MD5: DA285490BBD8A1D0CE6623577D5BA1FF
PID: 252 (4200) C:\Program Files\National Instruments\Shared\NIUninstaller\uninst.exe
size: 1247840
MD5: F3B04AD6D6605A5059CC4A5CB36BED46
PID: 1408 (1712) C:\WINDOWS\system32\msiexec.exe
size: 78848
MD5: F5F0146580E7023ADB963879840777F8
PID: 6060 (5948) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
size: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 3260 (5948) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
size: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4472 (5948) C:\Documents and Settings\Iris Reiss\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
size: 634368
MD5: 393AF6392BA299FE1C7B13FA29C09711
PID: 4652 (5696) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4891472
MD5: 3B1B5D09D3C9C4CD39D4DB06ED7A0855
PID: 4 ( 0) System
PID: 4348 (1408) C:\WINDOWS\system32\MsiExec.exe
size: 78848
MD5: F5F0146580E7023ADB963879840777F8
PID: 5480 (1408) C:\WINDOWS\Installer\MSI34A.tmp
size: 56232
MD5: 2A7F9A2F8F08BBC0C5829B3A90B7EE96

A log file from earlier this evening when I just downloaded spy bot s&d


--- Report generated: 2008-10-19 18:44 ---

Hint of the Day: Click the bar at the right of this to see more information! ()


AdwareAlert: [SBI $52C5F396] Settings (מפתח רישום, nothing done)
HKEY_USERS\S-1-5-21-343743635-3307870191-2053664491-1006\Software\AdwareAlert

ErrorSmart: [SBI $8E4C1D3D] Settings (מפתח רישום, nothing done)
HKEY_USERS\S-1-5-21-343743635-3307870191-2053664491-1006\Software\ErrorSmart

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 05_31_58 PM_484.log

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 05_49_53 PM_796.log

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 08_16_38 PM_328.log

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 08_41_00 PM_671.log

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 09_27_33 PM_515.log

ErrorSmart: [SBI $879FA510] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\ErrorSmart\Log\2008 Oct 14 - 12_16_19 PM_859.log

ErrorSmart: [SBI $7B416CCA] Data (קובץ, nothing done)
C:\WINDOWS\Tasks\ErrorSmart Scheduled Scan.job

RegistrySmart: [SBI $FCEE4898] Settings (מפתח רישום, nothing done)
HKEY_USERS\S-1-5-21-343743635-3307870191-2053664491-1006\Software\RegistrySmart

RegistrySmart: [SBI $81F408AB] Settings (מפתח רישום, nothing done)
HKEY_LOCAL_MACHINE\Software\RegistrySmart

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_05_17_11_51_45.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_05_17_11_51_53.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_05_24_09_10_06.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_06_14_10_01_53.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_06_15_03_09_36.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_06_20_22_29_01.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_07_01_20_40_26.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_07_12_12_06_09.log

RegistrySmart: [SBI $A1D98DAB] Log file (קובץ, nothing done)
C:\Documents and Settings\Iris Reiss\Application Data\RegistrySmart\Log\log_2007_07_14_17_02_38.log

RegistrySmart: [SBI $A6ED8F18] Data (קובץ, nothing done)
C:\WINDOWS\Tasks\RegistrySmart Scheduled Scan.job

Microsoft.Windows.Security.InternetExplorer: [SBI $366713D4] Settings (רישום שהשתנה, nothing done)
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_ LOCKDOWN\iexplore.exe

Microsoft.WindowsSecurityCenter.AntiVirusOverride: [SBI $3604910C] Settings (רישום שהשתנה, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusOverride

Microsoft.Windows.AppFirewallBypass: [SBI $2593FAE5] Settings (ערך הרישום, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\S haredAccess\Parameters\FirewallPolicy\StandardProf ile\AuthorizedApplications\List\C:\WINDOWS\system3 2\winver.exe

Microsoft.Windows.AppFirewallBypass: [SBI $17E546F4] Settings (ערך הרישום, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\S haredAccess\Parameters\FirewallPolicy\StandardProf ile\AuthorizedApplications\List\C:\WINDOWS\system3 2\winver.exe

Hupigon13: [SBI $D5A7DCB6] Settings (מפתח רישום, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\regedit.exe

Virtumonde: [SBI $1F8EC695] Settings (מפתח רישום, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSMGR

Virtumonde.dll: [SBI $8770FED0] Library (קובץ, nothing done)
C:\WINDOWS\system32\jkkJaxXQ.dll

Virtumonde.dll: [SBI $8770FED0] Library (קובץ, nothing done)
C:\WINDOWS\system32\geBsqpqR.dll

Virtumonde.dll: [SBI $8770FED0] Library (קובץ, nothing done)
C:\WINDOWS\system32\ddcBTNDW.dll

Zlob.Downloader.bit: [SBI $12A26DDA] Installer (קובץ, nothing done)
c:\autorun.inf

Log: Activity: COM+.log (קובץ גיבוי, nothing done)
C:\WINDOWS\COM+.log

Log: Activity: SchedLgU.Txt (קובץ גיבוי, nothing done)
C:\WINDOWS\SchedLgU.Txt

Log: Activity: imsins.log (קובץ גיבוי, nothing done)
C:\WINDOWS\imsins.log

Log: Activity: OEWABLog.txt (קובץ גיבוי, nothing done)
C:\WINDOWS\OEWABLog.txt

Log: Activity: ntbtlog.txt (קובץ גיבוי, nothing done)
C:\WINDOWS\ntbtlog.txt

Log: Install: comsetup.log (קובץ גיבוי, nothing done)
C:\WINDOWS\comsetup.log

Log: Install: ocgen.log (קובץ גיבוי, nothing done)
C:\WINDOWS\ocgen.log

Log: Install: setupact.log (קובץ גיבוי, nothing done)
C:\WINDOWS\setupact.log

Log: Install: setupapi.log (קובץ גיבוי, nothing done)
C:\WINDOWS\setupapi.log

Log: Install: svcpack.log (קובץ גיבוי, nothing done)
C:\WINDOWS\svcpack.log

Log: Install: wmsetup.log (קובץ גיבוי, nothing done)
C:\WINDOWS\wmsetup.log

Log: Install: DtcInstall.log (קובץ גיבוי, nothing done)
C:\WINDOWS\DtcInstall.log

Log: Shutdown: System32\wbem\logs\mofcomp.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\mofcomp.log

Log: Shutdown: System32\wbem\logs\wbemcore.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemcore.log

Log: Shutdown: System32\wbem\logs\wbemess.lo_ (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemess.lo_

Log: Shutdown: System32\wbem\logs\wbemess.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemess.log

Log: Shutdown: System32\wbem\logs\wbemprox.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wbemprox.log

Log: Shutdown: System32\wbem\logs\wmiadap.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wmiadap.log

Log: Shutdown: System32\wbem\logs\wmiprov.log (קובץ גיבוי, nothing done)
C:\WINDOWS\System32\wbem\logs\wmiprov.log

Cookie: Cookie (22) (Cookie, nothing done)


Cache: Cache (663) (Cache, nothing done)


History: History (65) (History, nothing done)



--- Spybot - Search & Destroy version: 1.6.0 (build: 20080707) ---

2008-07-07 blindman.exe (1.0.0.8)
2008-07-07 SDFiles.exe (1.6.0.4)
2008-07-07 SDMain.exe (1.0.0.6)
2008-07-07 SDShred.exe (1.0.2.3)
2008-07-07 SDUpdate.exe (1.6.0.8)
2008-07-07 SDWinSec.exe (1.0.0.12)
2008-07-07 SpybotSD.exe (1.6.0.30)
2008-09-16 TeaTimer.exe (1.6.3.25)
2008-10-19 unins000.exe (51.49.0.0)
2008-07-07 Update.exe (1.6.0.7)
2008-07-07 advcheck.dll (1.6.1.12)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2008-09-15 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2008-07-07 Tools.dll (2.1.5.7)
2008-09-02 Includes\Adware.sbi (*)
2008-10-14 Includes\AdwareC.sbi (*)
2008-06-03 Includes\Cookies.sbi (*)
2008-09-02 Includes\Dialer.sbi (*)
2008-09-09 Includes\DialerC.sbi (*)
2008-07-23 Includes\HeavyDuty.sbi (*)
2008-09-02 Includes\Hijackers.sbi (*)
2008-10-07 Includes\HijackersC.sbi (*)
2008-09-09 Includes\Keyloggers.sbi (*)
2008-10-14 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2008-10-08 Includes\Malware.sbi (*)
2008-10-14 Includes\MalwareC.sbi (*)
2008-09-02 Includes\PUPS.sbi (*)
2008-10-14 Includes\PUPSC.sbi (*)
2007-11-07 Includes\Revision.sbi (*)
2008-06-18 Includes\Security.sbi (*)
2008-09-30 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2008-09-09 Includes\Spyware.sbi (*)
2008-10-14 Includes\SpywareC.sbi (*)
2008-06-03 Includes\Tracks.uti
2008-10-15 Includes\Trojans.sbi (*)
2008-10-14 Includes\TrojansC.sbi (*)
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll

*If any other details required so ask and you'll get.

Thats it. hope to get some quick helpful tips to this ugly situation..
Thanks,
Rotem
  #2  
Old 19th Oct 2008, 18:46
Administrator Group
  
http://www.computer-juice.com/forums...-posting-7476/

Follow the guide, install the free software and post the log files.

Then the malware team can see what is wrong with your system.
__________________

My System: Hybr!d

Processor(s):
AMD Turion 64 x2 TL-64 2.2GHz
Motherboard:
HP nForce 560
RAM Memory:
2GB DDR2 PC2-5300
Graphics Card(s):
Nvidia 7150M Onboard Integrated
Sound Card:
5.1 Onboard Integrated
Hard Drive(s):
250GB 5400RPM SATA300
Optical Drive(s):
18x CD/DVDRW-DL ATA
Case / PSU:
Stock HP
Cooling:
Stock HP
Network / Internet:
10/100 Nic / 10MB Virgin Cable
Monitor(s):
17" WXGA+ HD BrightView Widescreen
Operating System(s):
Windows 7 Ultimate 32Bit
Reply

Register
Thread Tools



Arabic Bulgarian Chinese (Simplified) Chinese (Traditional) Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Thai Turkish Ukrainian

Copyright ©2006 - 2009 Computer Juice.
Contact - Privacy - Sitemap - Top

Powered by vBulletin® Copyright ©2000 - 2009 Jelsoft Enterprises Ltd. SEO by vBSEO ©2009, Crawlability, Inc.