Travel Fans
Go Back   Computer Juice Computer Software Virus, Spyware & Security
Reload this Page

XP AntiVirus and Ultimate Cleaner - Help

Register Site Spy Member List Donate Search Today's Posts Mark Forums Read Forum Rules

Register

 Default 

XP AntiVirus and Ultimate Cleaner - Help




Reply
Page 3 of 3 12 3
 
Thread Tools
  #21  
Old 26th Jan 2008, 09:09
New Member
Posts: 14
 
Here it is.


Find AWF report by noahdfear ©2006
Version 1.40
Option 3 run successfully
The current date is: 2008-01-26
The current time is: 16:05:41.87

bak folders found
~~~~~~~~~~~

Duplicate files of bak directory contents
~~~~~~~~~~~~~~~~~~~~~~~

end of report

Thanks
Vicky

  #22  
Old 26th Jan 2008, 09:21
Moderator
Posts: 7,549
 
Double-click the FindAWF icon once again

If a Security Alert shows, allow the program to run.
As instructed, press any key to continue.
Use the following option: Press 4 then Enter to reset domain zones

This removes all entries from the domain zones.
When the program returns to the main menu, use the following option:
Press E then Enter to EXIT

----------

Run the Cleanup cleaner.

----------

Use the Trend Micro Housecall Scan
  • Click Scan Now. It's Free
  • Read and put a Check next to Yes, I accept the Terms of Use
  • Then click Launch HouseCall Wait for the Java-Based Housecall Kernel Test
  • Click Starting Housecall and wait for the updates to finish.
  • Under Scan complete computer for malware, grayware, and vulnerabilities click the Next>> button.
  • It will download the latest scan engine and pattern files. When the definitions have been downloaded, the scan will start.
  • Please wait while HouseCall scans your system…
  • Once the scan is complete, it will take you to the summary page.
  • Under Cleanup options choose Clean all detected infections automatically
  • Click the Clean now>> button.
  • When presented with a notification According to your instructions, all detected infections were cleaned..., click OK
  • The Housecall log is saved to C:\Documents and Settings\UserName\.housecall\log\
----------

Run a new Hijackthis scan and post the log.

----------

Next post
Housecall log
New Hijackthis log
__________________
  #23  
Old 26th Jan 2008, 10:08
New Member
Posts: 14
 
It won't allow Housecall to start, it opens a new web page and says done with error on page. Any ideas?

Thanks
Vicky
  #24  
Old 26th Jan 2008, 10:26
Moderator
Posts: 7,549
 
Try this link.

http://housecall.trendmicro.com/us/index.html
__________________
  #25  
Old 26th Jan 2008, 10:34
New Member
Posts: 14
 
Everything goes well until this Java plug in alert comes up, saying i have to open this in a new web browser to allow it to use the HTMl. I select yes and then the page with errors appears.

It's Still not budging
  #26  
Old 26th Jan 2008, 10:49
Moderator
Posts: 7,549
 
Check your version of Java and see if it is out of date. The newest version is Java 6 Update 4 If it is out of date then get the new version and try again.

Step 1

Go to the Sun Java Download Page
On the Sun Java page scroll to the 4th download.

Click the button and save the installer to the desktop.
Double click the installer from the Desktop and follow the prompts to complete the installation.

Step 2

Go to Start > Control Panel > Add/Remove programs
Uninstall all older versions of Java.
Remove any item with Java Runtime Environment (JRE or J2SE) in the name.Do not remove Java 6 Update 4
Restart your computer once all Java components are removed.
Double click My Computer on the desktop, Locate this folder: C:\Program Files\Java
Open the Java folder and delete any subfolders except the jre1.6.0_04 folder which was just created by the newest Java installation.
__________________
  #27  
Old 26th Jan 2008, 11:43
New Member
Posts: 14
 
Finally got House call to work and i think the below log is the correct one?

2008-01-26 17:57:51.437 WARNING [java:hc.util.LocalProxy] 404 http://housecall65.trendmicro.com:80...te/ini_xml.zip
2008-01-26 17:59:15.812 WARNING [java:hc.impl.lib.engine.CommonEngineImpl#Native] Read ini: Failed to read threat values, set to default values.
2008-01-26 17:59:15.984 WARNING [java:hc.impl.lib.engine.CommonEngineImpl#Native] Read ini: Failed to read threat values, set to default values.
2008-01-26 18:00:08.578 WARNING [java:hc.applet.process.GetThreatInformation] Multiple-Transfer failed for threats! Need to transfer single packages
2008-01-26 18:00:10.281 WARNING [java:hc.applet.process.GetThreatInformation] Multiple-Transfer failed for threats! Need to transfer single packages
2008-01-26 18:00:12.203 WARNING [java:com.trendmicro.web.housecall.share.engine.BootSectorScanProcess] Scanning the bootsector 'D:\', caused a return value of '-33'
2008-01-26 18:00:17.0 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_LIVEPERSON
2008-01-26 18:00:17.0 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_SERVINGSYS
2008-01-26 18:00:20.109 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_2O7
2008-01-26 18:00:20.109 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_BURSTBEACON
2008-01-26 18:00:20.671 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_BURSTNET
2008-01-26 18:00:20.718 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_DOUBLECLICK
2008-01-26 18:00:21.265 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_ATDMT
2008-01-26 18:00:22.62 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_PROFILING
2008-01-26 18:00:22.62 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_HITSLINK
2008-01-26 18:00:30.843 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:COOKIE_MEDIAPLEX
2008-01-26 18:03:19.31 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:35.765 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:35.765 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:35.953 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:35.953 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:36.78 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:36.78 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:36.312 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:03:36.312 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:04:37.375 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:04:37.375 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:04:40.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:04:40.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:05:26.828 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:05:26.828 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:06:34.750 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:14:04.156 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:18:44.656 SEVERE [java:com.trendmicro.web.housecall.share.engine.FileScanProcess] Scan failed on archive: C:\Program Files\McAfee.com\Agent\Uninst\screm.ui!
2008-01-26 18:18:44.687 SEVERE [java:com.trendmicro.web.housecall.share.engine.FileScanProcess] Scan failed on archive: C:\Program Files\McAfee.com\Agent\Uninst\shredrem.ui!
2008-01-26 18:20:21.421 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:20:27.718 SEVERE [java:hc.applet.process.GetThreatInformation] Could not get threat information for:ADW_PURITYSCA.CZ
2008-01-26 18:28:46.375 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:04.921 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:04.921 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.31 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.31 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.46 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.46 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.46 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.46 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.78 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:29:05.78 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:30:50.906 SEVERE [java:hc.impl.lib.engine.CommonEngineImpl#Native] File scanner error=-94,
2008-01-26 18:32:41.484 WARNING [java:hc.applet.context.Resolving] No cleaning action was selected for some detected infections
2008-01-26 18:32:56.390 WARNING [java:hc.applet.context.Resolving] No cleaning action was selected for some detected infections
2008-01-26 18:33:26.468 WARNING [java:hc.applet.context.Resolving] No cleaning action was selected for some detected infections
2008-01-26 18:34:21.468 WARNING [java:com.trendmicro.web.housecall.share.engine.BootSectorScanProcess] Scanning the bootsector 'D:\', caused a return value of '-33'

and below is the HJT log.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:40, on 2008-01-26
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\WINDOWS\stsystra.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\PROGRA~1\mcafee\SPAMKI~1\mskagent.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\SiteAdvisor\6253\SAService.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Documents and Settings\Paul\Desktop\LimeWire\LimeWire.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\PROGRA~1\COMMON~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www1.euro.dell.com/content/de...=uk&l=en&s=gen
R3 - URLSearchHook: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsecu.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar5.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6253\SiteAdv.dll
O3 - Toolbar: securedie Toolbar - {cd36797a-70f3-4acd-8825-623d3b896881} - C:\Program Files\securedie\tbsecu.dll
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKLM\..\Run: [DLCGCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCGtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\mcafee\SPAMKI~1\mskagent.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /startup
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKLM\..\Run: [Winupdate Engine] C:\WINDOWS\system32\wupeng.exe
O4 - HKLM\..\Run: [SBI] C:\Documents and Settings\Paul\Local Settings\Temporary Internet Files\Content.IE5\O0YTEM8R\install_sbd_en[1].exe
O4 - HKLM\..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: LimeWire On Startup.lnk = C:\Documents and Settings\Paul\Desktop\LimeWire\LimeWire.exe
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/sh...1/mcinsctl.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
O20 - AppInit_DLLs:
O21 - SSODL: bmlvqkn - {E1E1231D-D9D3-4E0C-84ED-000359A13C49} - C:\WINDOWS\bmlvqkn.dll (file missing)
O21 - SSODL: agrlmvp - {DA23183A-F2C7-44C3-88AA-4AF3B826DC8D} - C:\WINDOWS\agrlmvp.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: dlcg_device - - C:\WINDOWS\system32\dlcgcoms.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: McAfee SpamKiller Server (MskService) - Unknown owner - C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe (file missing)
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6253\SAService.exe
--
End of file - 9322 bytes
  #28  
Old 26th Jan 2008, 15:04
Moderator
Posts: 7,549
 
Open HijackThis and select Do a system scan only.

Place a check mark next to the following entries

O4 - HKLM\..\Run: [Winupdate Engine] C:\WINDOWS\system32\wupeng.exe
O4 - HKLM\..\Run: [SBI] C:\Documents and Settings\Paul\Local Settings\Temporary Internet Files\Content.IE5\O0YTEM8R\install_sbd_en[1].exe
O4 - HKLM\..\Run: [SpyHunter Security Suite] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe
O20 - AppInit_DLLs:
O21 - SSODL: bmlvqkn - {E1E1231D-D9D3-4E0C-84ED-000359A13C49} - C:\WINDOWS\bmlvqkn.dll (file missing)
O21 - SSODL: agrlmvp - {DA23183A-F2C7-44C3-88AA-4AF3B826DC8D} - C:\WINDOWS\agrlmvp.dll (file missing)

Close all windows except for HijackThis and click Fix checked.

Exit Hijackthis.

---------

Now download The Avenger By Swandog46, and save it to your Desktop.
  • Extract avenger.exe from the Zip file and save it to your desktop
  • Run avenger.exe by double-clicking on it.
  • Check the Input script manually box.
  • Click on the Magnifying Glass Icon which will open a new window titled View/edit script
  • Copy everything in the code box below, and paste it in the box that opens:
Code:
 Files to delete:
C:\WINDOWS\system32\wupeng.exe
C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter3.exe

Note: the above instructions were created specifically for this user. If you are not this user, DO NOT follow these directions as they could damage the workings of your system
  • Now click the 'Done' button.
  • Click on the Green Light and OK the prompt.
  • You will be prompted to restart, click OK at the prompt and your PC should reboot, if not, reboot it yourself.
  • A log file from Avenger will be produced at C:\avenger.txt
The Avenger will automatically do the following:
  • It will Restart your computer. (In cases where the code to execute contains "Drivers to Unload", The Avenger will actually restart your system twice.)
  • On reboot, it will briefly open a black command window on your desktop, this is normal.
  • After the restart, it creates a log file that should open with the results of Avenger's actions.
  • This log file will be located at C:\avenger.txt
  • The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.
  • Please attach the C:\avenger.txt in your next post.
__________________
Reply
Page 3 of 3 12 3

Register

Similar Threads
Thread Thread Starter Forum Replies Last Post
Comodo System-Cleaner - Home evilfantasy General Software Chat 3 12th Mar 2009 15:14
Kaspersky Antivirus 2009 ,Eset Nod32 Antivirus,McAfee Virusscan Enterprise runoades Virus, Spyware & Security 2 3rd Dec 2008 13:54
Registry Cleaner?? Mooseknuckle General Software Chat 12 31st Mar 2008 12:44
LCD cleaner mrdaveyk Graphics Cards & Monitors 2 2nd Dec 2007 13:49
ATF Cleaner Maria General Software Chat 2 30th Apr 2007 08:35
Thread Tools



Translations Powered by Powered by Google
Arabic Bulgarian Chinese Croatian Czech Danish Dutch English Finnish French German Greek Hebrew Hungarian Italian Japanese Korean Latvian Lithuanian Norwegian Polish Portuguese Romanian Russian Serbian Slovak Spanish Swedish Taiwanese Thai Turkish Ukrainian

Copyright ©2006 - 2010 Computer Juice.
Contact - Privacy - Sitemap - Top

Powered by vBulletin® Copyright ©2000 - 2010 Jelsoft Enterprises Ltd. SEO by vBSEO ©2009, Crawlability, Inc.