Jump to content

Caledrith

Members
  • Posts

    10
  • Joined

  • Last visited

Everything posted by Caledrith

  1. There were 4 errors, and Norton Anti-Virus said that RogueKiller was a virus Thanks so much for helping me.
  2. Hi, My computer is suddenly running a lot slower. A friend downloaded a lot of random crap, and I deleted most(all that I can see) of it through Add or Remove programs. I ran TDSSKiller and nothing showed up. Windows XP Inspiron 1501 attach.txt dds.txt
  3. Hi, I've had a virus problem solved here before, so I'm coming for help again. Sometimes there will be 3-4 svchost.exe processes running, and even worse than that, at 20,000 K memory usage a piece. I believe that isn't quite right. Also, my display is distorted, but only in Windows controlled windows. For example, this webpage is not distorted at all, but unfortunately, the start bar, and my desktop are. Pictures viewed in my pictures are distorted as well. Is this just from having an old video card, or is it a virus? Thanks so much for previous help as well. dds.txt attach.txt
  4. 8 toolbar.zugo again. + solimba log.txt
  5. It is running much better thank you. I really appreciate all you have done. Is there any other precautions I have to make, and how do I fix the Java insecurities?
  6. Alrighty, after 4 0.o hours, it is done. Also, the tool has been updated, and your instructions were hard to follow because of it, but I did it. I think this is what you wanted. 1/9/2012 3:40:40 PM OK \Device\HarddiskVolume2 1/9/2012 3:40:31 PM OK C 1/9/2012 6:21:38 PM Not processed c:\pagefile.sys Object is locked 1/9/2012 3:40:57 PM Not processed C:\pagefile.sys Object is locked 1/9/2012 4:42:18 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre6\bin\java.exe 1/9/2012 4:42:00 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre1.6.0_03\bin\java.exe 1/9/2012 4:41:41 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre1.6.0_02\bin\java.exe 1/9/2012 5:40:59 PM Detected: Trojan-Spy.Win32.Zbot.ctrj C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe 1/9/2012 5:42:13 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys 1/9/2012 5:42:12 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys 1/9/2012 5:41:54 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys 1/9/2012 5:41:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys 1/9/2012 5:41:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys 1/9/2012 5:40:57 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys 1/9/2012 5:40:56 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys 1/9/2012 5:42:30 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys 1/9/2012 5:42:27 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys 1/9/2012 5:42:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys 1/9/2012 5:42:23 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys 1/9/2012 5:42:21 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys 1/9/2012 5:26:36 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys 1/9/2012 5:26:32 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys 1/9/2012 5:26:30 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys 1/9/2012 5:41:11 PM Deleted: Trojan-Spy.Win32.Zbot.ctrj C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe 1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys 1/9/2012 5:42:20 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys 1/9/2012 5:42:19 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys 1/9/2012 5:42:13 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys 1/9/2012 5:42:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys 1/9/2012 5:42:37 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys 1/9/2012 5:42:36 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys 1/9/2012 5:42:32 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys 1/9/2012 5:42:29 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys 1/9/2012 5:42:26 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys 1/9/2012 5:42:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys 1/9/2012 5:41:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys 1/9/2012 5:41:11 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys 1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys 1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys 1/9/2012 4:23:30 PM Corrupted C:\Documents and Settings\Nightwatch Capital\My Documents\Downloads\HoNClient-2.0.29.exe/data0234/00000000/ui/images/logo.dds 1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys 1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys 1/9/2012 5:42:20 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys 1/9/2012 5:42:37 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys 1/9/2012 5:42:36 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys 1/9/2012 5:42:32 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys 1/9/2012 5:42:29 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys 1/9/2012 5:42:26 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys 1/9/2012 5:42:19 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys 1/9/2012 5:42:13 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys 1/9/2012 5:42:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys 1/9/2012 5:42:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys 1/9/2012 5:41:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys 1/9/2012 5:41:11 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys 1/9/2012 5:41:11 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe 1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys It was out of order, soooooooo
  7. Yes, I am, I was just busy with the holidays, sorry. Partially because I knew the scan would take a while and I needed my computer Starting the scan now(just didnt want the topic closed)
  8. My computer has been slower recently. checkup.txt log.txt
  9. I have not seen too much crap since the repairs. I can still access the internet which is good Ping.exe has not popped up at all. It did find a zeroaccess rootkit on tcp/IP stack. Let me know if there is anything else needing attention. Thanks! FSS.txt TDSSKiller.2.6.22.0_23.12.2011_19.34.54_log.txt MBRCheck_12.27.11_12.06.18.txt ComboFix.txt
  10. So ping.exe is taking all of the cpu. I end it and it comes back after 5 minutes. Here are the logs. attach.txt dds.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.