Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

http://680130.net and [RESOLVED]

Started by akakage , Jul 29 2005 07:15 PM

This topic is locked

#16
akakage

Posted 30 July 2005 - 01:23 PM

Member

Topic Starter
Member
19 posts

okay...here is the post this file from service filter

The script did not recognize the services listed below.
This does not mean that they are a problem.

To copy the entire contents of this document for posting:
At the top of this window click "Edit" then "Select All"
Next click "Edit" again then "Copy"
Now right click in the forum post box then click "Paste"

########################################

ServiceFilter 1.1
by rand1038

Microsoft Windows XP Home Edition
Version: 5.1.2600 Service Pack 2
Jul 30, 2005 3:20:40 PM

===> Begin Service Listing <===

Unknown Service #1
Service Name: AOL ACS
Display Name: AOL Connectivity Service
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\program files\common files\aol\acs\aolacsd.exe"
State: Running
Process ID: 1312
Started: True
Exit Code: 0
Accept Pause: False
Accept Stop: True

Unknown Service # 2
Service Name: AOL TopSpeedMonitor
Display Name: AOL TopSpeed Monitor
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\program files\common files\aol\topspeed\2.0\aoltsmon.exe
State: Running
Process ID: 1324
Started: True
Exit Code: 0
Accept Pause: False
Accept Stop: True

Unknown Service # 3
Service Name: SvcProc
Display Name: System Startup Service
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\windows\svcproc.exe
State: Stopped
Process ID: 0
Started: False
Exit Code: 0
Accept Pause: False
Accept Stop: False

Unknown Service #4
Service Name: SwPrv
Display Name: MS Software Shadow Copy Provider
Start Mode: Manual
Start Name: LocalSystem
Description: Manages software-based volume shadow copies taken by the Volume Shadow Copy service. If this ...
Service Type: Own Process
Path: c:\windows\system32\dllhost.exe /processid:{4ea5d935-81e6-4b0b-a6d7-86c8a0152778}
State: Stopped
Process ID: 0
Started: False
Exit Code: 1077
Accept Pause: False
Accept Stop: False

---> End Service Listing <---

There are 84 Win32 services on this machine.
4 were unrecognized.

Script Execution Time: 12.67188 seconds.

#17
Daemon

Posted 30 July 2005 - 01:30 PM

Security Expert

Retired Staff
4,356 posts

Go to Start->Run and type Services.msc then hit Ok. Scroll down and find the service called "System Startup Service". When you find it, double-click on it. In the next window that opens, click the Stop button, then click on properties and under the General Tab, change the Startup Type to Disabled. Now hit Apply and then Ok and close any open windows.

Post a new servicefilter log.

#18
akakage

Posted 30 July 2005 - 01:40 PM

Member

Topic Starter
Member
19 posts

okay
It was already stopped when I opened it up. So I changed the startup type from Automatic to Disabled. Here is the new post this log

The script did not recognize the services listed below.
This does not mean that they are a problem.

To copy the entire contents of this document for posting:
At the top of this window click "Edit" then "Select All"
Next click "Edit" again then "Copy"
Now right click in the forum post box then click "Paste"

########################################

ServiceFilter 1.1
by rand1038

Microsoft Windows XP Home Edition
Version: 5.1.2600 Service Pack 2
Jul 30, 2005 3:36:51 PM

===> Begin Service Listing <===

Unknown Service #1
Service Name: AOL ACS
Display Name: AOL Connectivity Service
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: "c:\program files\common files\aol\acs\aolacsd.exe"
State: Running
Process ID: 1312
Started: True
Exit Code: 0
Accept Pause: False
Accept Stop: True

Unknown Service # 2
Service Name: AOL TopSpeedMonitor
Display Name: AOL TopSpeed Monitor
Start Mode: Auto
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\program files\common files\aol\topspeed\2.0\aoltsmon.exe
State: Running
Process ID: 1324
Started: True
Exit Code: 0
Accept Pause: False
Accept Stop: True

Unknown Service # 3
Service Name: SvcProc
Display Name: System Startup Service
Start Mode: Disabled
Start Name: LocalSystem
Description: ...
Service Type: Own Process
Path: c:\windows\svcproc.exe
State: Stopped
Process ID: 0
Started: False
Exit Code: 0
Accept Pause: False
Accept Stop: False

Unknown Service #4
Service Name: SwPrv
Display Name: MS Software Shadow Copy Provider
Start Mode: Manual
Start Name: LocalSystem
Description: Manages software-based volume shadow copies taken by the Volume Shadow Copy service. If this ...
Service Type: Own Process
Path: c:\windows\system32\dllhost.exe /processid:{4ea5d935-81e6-4b0b-a6d7-86c8a0152778}
State: Stopped
Process ID: 0
Started: False
Exit Code: 1077
Accept Pause: False
Accept Stop: False

---> End Service Listing <---

There are 84 Win32 services on this machine.
4 were unrecognized.

Script Execution Time: 11.60938 seconds.

#19
Daemon

Posted 30 July 2005 - 01:54 PM

Security Expert

Retired Staff
4,356 posts

Open HijackThis > Config > Misc Tools > Delete an NT Service Tab. In the dialogue box that opens enter SvcProc in the slot and click OK. Reboot and post a new HJT log.

#20
akakage

Posted 30 July 2005 - 02:19 PM

Member

Topic Starter
Member
19 posts

new hijackthis log

Logfile of HijackThis v1.99.1
Scan saved at 4:18:32 PM, on 7/30/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\PV92Tray.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\America Online 9.0\waol.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\America Online 9.0\shellmon.exe
C:\Program Files\lmsw\pato.exe
C:\Documents and Settings\Robert\Desktop\THE GAME STORE\HijackThis.exe
C:\Documents and Settings\Robert\Desktop\THE GAME STORE\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.lexmark.c...0409&os=5&src=1
O4 - HKLM\..\Run: [PV92TRAY] PV92Tray.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0\AOL.EXE" -b
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesus.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmesus.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.syma...bin/AvSniff.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.com...kup/qdiagcc.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.av.a...83/mcinsctl.cab
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.co...clean_micro.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1093743624578
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.syma...n/bin/cabsa.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.av.a...,20/mcgdmgr.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D4ED3C42-ED20-4148-AEA4-49864CF17B6D}: NameServer = 205.188.146.145
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

#21
Daemon

Posted 30 July 2005 - 02:22 PM

Security Expert

Retired Staff
4,356 posts

Looks good - how is it running now?

#22
akakage

Posted 30 July 2005 - 02:29 PM

Member

Topic Starter
Member
19 posts

no pop-ups so it seems.

I do notice a few other malware programs on there..like that dumprep -0k thing and a few others..but they don't seem to be bothering it at the moment. It is also running a tad slow...its just a lil slow...nothing major though...

#23
Daemon

Posted 30 July 2005 - 02:33 PM

Security Expert

Retired Staff
4,356 posts

Click here to download ewido security suite - it is a trial version of the program.

Install ewido security suite
When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
Launch ewido, there should be an icon on your desktop double-click it.
The program will now go to the main screen

You will need to update ewido to the latest definition files.

On the left hand side of the main screen click update
Then click on Start Update

The update will start and a progress bar will show the updates being installed. If you are having problems with the updater, you can use this link to manually update ewido. Once the updates are installed, reboot into Safe Mode by tapping F8 after the BIOS has loaded, then:

Click on scanner
Click on Complete System Scan and the scan will begin (do not open any folders or open the windows control panel while the scan is in progress).
While the scan is in progress you will be prompted to clean files, click OK
When it asks if you want to clean the first file, put a check in the lower left corner of the box that says "Perform action on all infections" then choose clean and click OK.
Once the scan has completed, there will be a button located on the bottom of the screen named Save report
Click Save report.
Save the report .txt file to your desktop.

Now close ewido security suite.

Post the report in your next reply.

#24
akakage

Posted 30 July 2005 - 06:56 PM

Member

Topic Starter
Member
19 posts

here ya go
---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------

+ Created on: 8:50:08 PM, 7/30/2005
+ Report-Checksum: 912E5EB6

+ Scan result:

C:\Documents and Settings\Robert\Cookies\robert@2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/acsmsext.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/aetiveds.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/afmlib.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/aiicap32.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/antxprxy.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/aomlib.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/cdprops.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/cipbk32.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ctusapi.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/dgnmpntw.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/dgrgsnap.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/drloader.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/dttmsft.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/dxwsockx.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/edsvc.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/enent.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/epentprf.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/gbtuname.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ibetcfg.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/icetmib1.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ieetmib1.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/iietcomm.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ilsecsnp.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kadtuf.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kdd106.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kddmlt48.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kndfi.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kodca.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/krdinmal.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ksd106.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/kydla.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mdcbase.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mirepl40.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mkvcrt.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mvwebdvd.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mwnsspc.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/mxiole32.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/nzwdev.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ocfox32.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/ojeaut32.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/osbcint.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/paofmap.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/pdusbp2r.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/pIpgraph.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/pOutoenr.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/qldwipes.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/sabcsp.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/sblogcfg.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/sgtupdll.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/stbrccsp.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/VAAR332.DLL -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/vdoy.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/vedex.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/wghisn.dll -> Spyware.Look2Me : Error during cleaning
C:\Documents and Settings\Robert\Desktop\l2mfix\backup.zip/wqnotify.dll -> Spyware.Look2Me : Error during cleaning

::Report End

#25
Daemon

Posted 31 July 2005 - 12:56 AM

Security Expert

Retired Staff
4,356 posts

Looks clean - what other 'malware programs' are you concerned about?

#26
akakage

Posted 31 July 2005 - 10:45 AM

Member

Topic Starter
Member
19 posts

looks like it got rid of them....or maybe I was just paranoid. Ewido seems to be very good. I'm contemplating purchasing it now. Is there one you feel is better than ewido? I have avg free edition it was great when I first downloaded it...but after those backdoor programs got on there somehow...it wasn't detecting them anymore. Also when it scans it says that the files it keeps detecting are in the l2mfix backup.zip, then it asks if I want to delete the whole archive? What do you reccommend I do? The file is like acmesext.dll, something like that.

#27
Daemon

Posted 02 August 2005 - 11:56 PM

Security Expert

Retired Staff
4,356 posts

Ewido is very good and should be used in parallel with AVG - they do target different things.

Delete the whole archive - it's just the backups from the fix we did earlier.

How is it running now?

#28
akakage

Posted 03 August 2005 - 08:36 AM

Member

Topic Starter
Member
19 posts

Pop-ups are gone...has been running pretty good as of late....U RAWK DAEMON!!!!
Thanks for your help with this, I had been fighting with it for a while. Where can I learn how to identify and fix problems like this and others? I'm sure some of it is trial and error. THANKS ALOT DAEMON!!!!!

#29
akakage

Posted 03 August 2005 - 08:37 AM

Member

Topic Starter
Member
19 posts

#30
Daemon

Posted 03 August 2005 - 09:56 AM

Security Expert

Retired Staff
4,356 posts

You're welcome - glad to help :tazz:

To learn more have a look here: http://www.geekstogo...ersl-t2792.html

To help keep you clean follow the recommendations in Tony's article here:

So how did I get infected in the first place?

As this problem has been resolved the topic will be closed. If you need this topic reopened, please email the moderating team - be sure to include the address of the thread and the name you posted under.