1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

computer shutdown

Discussion in 'Windows - Virus and spyware problems' started by BIGnewb, Jan 12, 2006.

  1. BIGnewb

    BIGnewb Guest

    i was on a website and suddenly a mcaffee thing pops up saying there's a virus and suddenly computer just crashed.i started computer in safe mode and im trying to remove it.i have the following programs:avg 7.0,mcaffee,spy sweeper,xoftspy,spyhunter.....please any suggestions are welcome.
     
    BIGnewb, Jan 12, 2006
    #1
  2. rav009

    rav009 Active member

    Joined:
    Nov 14, 2005
    Messages:
    2,204
    Likes Received:
    0
    Trophy Points:
    66
    ok first of all scan with this and send in a Hi jack this log,

    http://www.ewido.net/en/download/


    the send in a HJT log and ill check it and tell you what to fix
     
    rav009, Jan 13, 2006
    #2
  3. BIGnewb

    BIGnewb Guest

    Scan result:

    HKLM\SOFTWARE\Classes\CLSID\{4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{4D1C4E89-A32A-416b-BCDB-33B3EF3617D3} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{4D1C4E8B-A32A-416b-BCDB-33B3EF3617D3} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{630D6140-04C5-4db0-B27A-020D766FF09B} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Interface\{4D1C4E8A-A32A-416B-BCDB-33B3EF3617D3} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Interface\{4D1C4E8C-A32A-416B-BCDB-33B3EF3617D3} -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin\CLSID -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin\CurVer -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.SettingsPlugin.1 -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin\CLSID -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin\CurVer -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Classes\Need2FindBar.ToolbarPlugin.1 -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Need2FindBar Uninstall -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Need2Find -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Need2Find\bar -> Spyware.Need2Find : Cleaned with backup
    HKLM\SOFTWARE\Need2Find\bar\Partner -> Spyware.Need2Find : Cleaned with backup
    HKU\S-1-5-21-776561741-1409082233-725345543-1003\Software\Need2Find -> Spyware.Need2Find : Cleaned with backup
    HKU\S-1-5-21-776561741-1409082233-725345543-1003\Software\Need2Find\bar -> Spyware.Need2Find : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@ad.adocean[1].txt -> Spyware.Cookie.Adocean : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@burstnet[2].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@casalemedia[2].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    C:\Documents and Settings\Administrator\Cookies\administrator@media.fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\01Z42PU5\install[1].html -> Not-A-Virus.Exploit.HTML.CodeBaseExec : Cleaned with backup
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\D1ZQDZ9W\ysb_prompt[1].html -> Downloader.IstBar.j : Cleaned with backup
    C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\KAT9WGYS\drsmartload_js[1].html -> Downloader.IstBar.j : Cleaned with backup
    :mozilla.9:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.26:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.31:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.35:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
    :mozilla.36:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
    :mozilla.60:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.61:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.62:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
    :mozilla.63:C:\Documents and Settings\Ewa\Application Data\Mozilla\Firefox\Profiles\3p869ozw.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
    C:\Documents and Settings\Ewa\Cookies\ewa@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.13:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.16:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.17:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.18:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.22:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.24:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.25:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.26:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.27:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.33:C:\Documents and Settings\Karcio\Application Data\Mozilla\Firefox\Profiles\tdl7za8z.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@ads.addynamix[2].txt -> Spyware.Cookie.Addynamix : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@media.fastclick[1].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@pmads.valuead[2].txt -> Spyware.Cookie.Valuead : Cleaned with backup
    C:\Documents and Settings\Karcio\Cookies\karcio@valueclick[2].txt -> Spyware.Cookie.Valueclick : Cleaned with backup
    C:\Documents and Settings\Lukas\Cookies\lukas@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\bit2.exe -> Adware.Ezula : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\bitcoll.dll -> Adware.Ezula : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Cookies\lukas@2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Cookies\lukas@ads.pointroll[2].txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Temporary Internet Files\Content.IE5\K5I78B4X\full[1].anr -> Downloader.Ani.c : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Temporary Internet Files\Content.IE5\K5I78B4X\pic[1].wmf -> Exploit.MS05-053-WMF : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Temporary Internet Files\Content.IE5\K5I78B4X\psg[1].anr -> Downloader.Ani.c : Cleaned with backup
    C:\Documents and Settings\Lukas\Local Settings\Temp\Temporary Internet Files\Content.IE5\SF4NSL49\wmf_dcode[1].wmf -> Exploit.MS05-053-WMF : Cleaned with backup
    C:\Program Files\Enigma Software Group\SpyHunter\Backup\administrator@counter2.hitslink[2].txt.dat/Documents and Settings/Administrator/Cookies/administrator@counter2.hitslink[2].txt -> Spyware.Cookie.Hitslink : Error during cleaning
    C:\Program Files\Enigma Software Group\SpyHunter\Backup\administrator@doubleclick[1].txt.dat/Documents and Settings/Administrator/Cookies/administrator@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Error during cleaning
    C:\Program Files\Enigma Software Group\SpyHunter\Backup\administrator@spylog[1].txt.dat/Documents and Settings/Administrator/Cookies/administrator@spylog[1].txt -> Spyware.Cookie.Spylog : Error during cleaning
    C:\Program Files\Enigma Software Group\SpyHunter\Backup\lukas@casalemedia[1].txt.dat/Documents and Settings/Lukas/Cookies/lukas@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Error during cleaning
    C:\Program Files\Enigma Software Group\SpyHunter\Backup\p2psetup.exe.dat/Documents and Settings/Lukas/Local Settings/Temp/p2psetup.exe -> Spyware.P2PNetworking : Error during cleaning
    C:\WINDOWS\system\DRIVER\services.exe -> Backdoor.Iroffer.14b2 : Cleaned with backup
    C:\WINDOWS\system32\msiev32.dll -> Spyware.Visua : Cleaned with backup
    C:\WINDOWS\system32\shell32.exe -> Trojan.Pakes : Cleaned with backup
    C:\WINDOWS\system32\sp2protect.exe -> Backdoor.Wootbot.z : Cleaned with backup
    C:\WINDOWS\system32\username.exe -> Dropper.Agent.xc : Cleaned with backup
    C:\WINDOWS\system32\wuauclt10.exe -> Downloader.IstBar.is : Cleaned with backup
    C:\WINDOWS\system32\wudupdate.exe -> Trojan.Pakes : Cleaned with backup
     
    BIGnewb, Jan 14, 2006
    #3
  4. rav009

    rav009 Active member

    Joined:
    Nov 14, 2005
    Messages:
    2,204
    Likes Received:
    0
    Trophy Points:
    66
    ok now send a hijackthis log in.
     
    rav009, Jan 18, 2006
    #4

Share This Page