Caledrith
-
Posts
10 -
Joined
-
Last visited
Content Type
Events
Profiles
Forums
Posts posted by Caledrith
-
-
Hi,
My computer is suddenly running a lot slower. A friend downloaded a lot of random crap, and I deleted most(all that I can see) of it through Add or Remove programs. I ran TDSSKiller and nothing showed up.
Windows XP
Inspiron 1501
-
Hi, I've had a virus problem solved here before, so I'm coming for help again.
Sometimes there will be 3-4 svchost.exe processes running, and even worse than that, at 20,000 K memory usage a piece. I believe that isn't quite right. Also, my display is distorted, but only in Windows controlled windows. For example, this webpage is not distorted at all, but unfortunately, the start bar, and my desktop are. Pictures viewed in my pictures are distorted as well.
Is this just from having an old video card, or is it a virus? Thanks so much for previous help as well.
-
8 toolbar.zugo again. + solimba
-
It is running much better thank you. I really appreciate all you have done. Is there any other precautions I have to make, and how do I fix the Java insecurities?
-
Alrighty, after 4 0.o hours, it is done.
Also, the tool has been updated, and your instructions were hard to follow because of it, but I did it.
I think this is what you wanted.
1/9/2012 3:40:40 PM OK \Device\HarddiskVolume2
1/9/2012 3:40:31 PM OK C
1/9/2012 6:21:38 PM Not processed c:\pagefile.sys Object is locked
1/9/2012 3:40:57 PM Not processed C:\pagefile.sys Object is locked
1/9/2012 4:42:18 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre6\bin\java.exe
1/9/2012 4:42:00 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre1.6.0_03\bin\java.exe
1/9/2012 4:41:41 PM Detected: http://www.securelist.com/en/advisories/46512 C:\Program Files\Java\jre1.6.0_02\bin\java.exe
1/9/2012 5:40:59 PM Detected: Trojan-Spy.Win32.Zbot.ctrj C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe
1/9/2012 5:42:13 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys
1/9/2012 5:42:12 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys
1/9/2012 5:41:54 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys
1/9/2012 5:41:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys
1/9/2012 5:41:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys
1/9/2012 5:40:57 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys
1/9/2012 5:40:56 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys
1/9/2012 5:42:30 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys
1/9/2012 5:42:27 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys
1/9/2012 5:42:25 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys
1/9/2012 5:42:23 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys
1/9/2012 5:42:21 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys
1/9/2012 5:26:36 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys
1/9/2012 5:26:32 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys
1/9/2012 5:26:30 PM Detected: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys
1/9/2012 5:41:11 PM Deleted: Trojan-Spy.Win32.Zbot.ctrj C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe
1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys
1/9/2012 5:42:20 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys
1/9/2012 5:42:19 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys
1/9/2012 5:42:13 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys
1/9/2012 5:42:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys
1/9/2012 5:42:37 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys
1/9/2012 5:42:36 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys
1/9/2012 5:42:32 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys
1/9/2012 5:42:29 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys
1/9/2012 5:42:26 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys
1/9/2012 5:42:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys
1/9/2012 5:41:12 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys
1/9/2012 5:41:11 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys
1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys
1/9/2012 5:40:23 PM Deleted: HEUR:Trojan.Win32.Generic C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys
1/9/2012 4:23:30 PM Corrupted C:\Documents and Settings\Nightwatch Capital\My Documents\Downloads\HoNClient-2.0.29.exe/data0234/00000000/ui/images/logo.dds
1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001034.sys
1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0001002.sys
1/9/2012 5:42:20 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0004147.sys
1/9/2012 5:42:37 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0007189.sys
1/9/2012 5:42:36 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0006189.sys
1/9/2012 5:42:32 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0005189.sys
1/9/2012 5:42:29 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP7\A0004189.sys
1/9/2012 5:42:26 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP6\A0004160.sys
1/9/2012 5:42:19 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0003147.sys
1/9/2012 5:42:13 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP5\A0002147.sys
1/9/2012 5:42:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002100.sys
1/9/2012 5:42:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP4\A0002092.sys
1/9/2012 5:41:12 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002054.sys
1/9/2012 5:41:11 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0001056.sys
1/9/2012 5:41:11 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP3\A0002087.exe
1/9/2012 5:40:23 PM Backed up C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP2\A0000002.sys
It was out of order, soooooooo
-
Yes, I am, I was just busy with the holidays, sorry.
Partially because I knew the scan would take a while and I needed my computer
Starting the scan now(just didnt want the topic closed)
-
-
I have not seen too much crap since the repairs. I can still access the internet which is good
Ping.exe has not popped up at all. It did find a zeroaccess rootkit on tcp/IP stack.
Let me know if there is anything else needing attention.
Thanks!
TDSSKiller.2.6.22.0_23.12.2011_19.34.54_log.txt
-
So ping.exe is taking all of the cpu. I end it and it comes back after 5 minutes. Here are the logs.
Random Virus Help
in Resolved Malware Removal Logs
Posted
There were 4 errors, and Norton Anti-Virus said that RogueKiller was a virus
Thanks so much for helping me.