[Excal]

If your not sure, that would be a good idea. remember to save the smit.txt



Excal

[Advertisements]

nooooooo!!! It gave me a message saying if I wanted to send something to microsoft.... And I clicked don't send and it got out of the whole program!!!!!!!! now I have to re-scan the whole thing!!!!!!!!!!!!!!!

[mpy]

nooooooo!!! It gave me a message saying if I wanted to send something to microsoft.... And I clicked don't send and it got out of the whole program!!!!!!!! now I have to re-scan the whole thing!!!!!!!!!!!!!!!

[mpy]

2 hours and still going!

[mpy]

ok here's the log for that mwav.exe thing:

Object "alexa Spyware/Adware" found in File System! Action Taken: No Action Taken.
Entry "HKCR\CLSID\{88E729D6-BDC1-11D1-BD2A-00C04FB9603F}" refers to invalid object "fde.dll". Action Taken: No Action Taken.
Entry "HKCR\CDDBControlApple.CddbFullName.1" refers to invalid object "{63338267-37c4-44cf-8e46-756fbe9c8fdc}". Action Taken: No Action Taken.
Entry "HKCR\CDDBControlApple.FullName" refers to invalid object "{63338267-37c4-44cf-8e46-756fbe9c8fdc}". Action Taken: No Action Taken.
File C:\Program Files\Sysreset\mirc.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.614. No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP28\A0003955.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP28\A0003957.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000247.exe infected by "Trojan-Dropper.Win32.Agent.sa" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000248.exe infected by "Trojan.Win32.Small.ev" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000249.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000250.exe infected by "Trojan.Win32.Puper.an" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000251.exe infected by "Trojan.Win32.Favadd.aj" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{148FEEEF-A4EA-49FD-A73A-B0FA13E725B0}\RP5\A0000252.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027304.dll tagged as "not-a-virus:AdWare.Altnet.a". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027305.dll tagged as "not-a-virus:AdWare.Altnet.a". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027306.exe tagged as "not-a-virus:AdWare.Altnet.a". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027308.dll tagged as "not-a-virus:AdWare.BrilliantDigital.3039". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027309.dll tagged as "not-a-virus:AdWare.Altnet.j". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027310.dll tagged as "not-a-virus:AdWare.Altnet.a". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027321.dll tagged as "not-a-virus:AdWare.ToolBar.RXBar.a". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027322.DLL tagged as "not-a-virus:AdWare.MySearch.e". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP102\A0027325.dll tagged as "not-a-virus:AdWare.Altnet.d". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP103\A0027365.dll tagged as "not-a-virus:AdWare.MySearch.e". Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP126\A0032714.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.614. No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP126\A0032739.exe tagged as not-a-virus:Client-IRC.Win32.mIRC.616. No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP137\A0034490.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP137\A0034491.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034597.exe infected by "Trojan-Downloader.Win32.Zlob.ah" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034598.exe infected by "Trojan-Dropper.Win32.Agent.sa" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034601.dll infected by "Virus.Win32.Nsag.b" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034602.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034625.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034630.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0034631.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0035630.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0035631.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0035637.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0035638.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0036637.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0036638.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0037637.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0037638.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038637.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038638.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038644.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038645.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038651.exe infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP138\A0038652.dll infected by "Trojan.Win32.Puper.ap" Virus! Action Taken: No Action Taken.
File C:\System Volume Information\_restore{EF5FA964-0256-42DA-A3C7-BF08FAABE48F}\RP59\A0016145.exe infected by "Backdoor.Win32.Rbot.gen" Virus! Action Taken: No Action Taken.

[Excal]

Great job, it appears your computer is clean

Ensure you rehide your “hidden files and folders” back to the way they were.

Now that your system is Malware Free, it is important to reset your system Restore. Click Here to learn how to.

I recommend that you Defrag your computer before setting your Restore points:

Go to start>all programs>accessories>system tools>Disk Defragmentor Make sure it set to the proper drive (default should be your main driver) and click on defragment


Might I suggest the following Free Spyware programs, if you don't already have them, for added security, you can download them at the following links. These programs work great for detection:

Ad-aware SE
Spybot S&D
Microsoft Anti-Spyware


If you are unhappy with your current antivirus and want to replace it or if you dont already have one, I suggest one of these free programs:
*Note - do not use more than one anti-virus program as it will more than likely cause conflict.

AVG
Avast
AntiVir


The following free programs are great for prevention:

SpywareBlaster 3.4
Spywareguard
IE/Spyad

A Firewall is a must! Here are 3 good free versions:
(do not have more than one firewall running on your system)

Sygate
Kerio
ZoneLabs

There are other options other than Internet Explorer for a browser, which some say have better security. Two of them are:

Firefox
Opera

If you decide to keep Internet Explorer, This site is a great source for tightening up security on It's settings.

Make sure that you keep your Operating System and IE updated with the latest Critical Security Updates from Microsoft...they usually come out once a month, on the 2nd Tuesday of each month.

Included in those updates is Windows XP Service Pack 2. Click Here
Since you're junkware free, the time to get it is NOW. Service Pack 2 is a MAJOR upgrade for XP. It adds numerous security and software patches, as well as new features and functionality. You will also be adding another layer of protection against future threats.

Be sure and give the Temp folders a cleaning out now and then as well, Make sure after you clean your Temp files to empty out your Recycle bin as well.
For ease use the following program:

Cleanup
Run "Cleanup" and when it has finished, Reboot

To help prevent future spyware installations/infections, please read the Anti-Spyware Tutorial and use the tools provided. Also read How I got Infected

[mpy]

If I am virus free then why do I still get that stop message when I try to go into my 1st OS?? I still have to use this one in "C:\WINDOWS2" and I can't hear sound and my some of my drivers are screwed up..

[Excal]

I have used all means avaialble to me and everything comes up the same. So I would imagine it might be etiher a hardware or software issue and NOW i would suggest posting in the XP forum. Just let the know you have already been in the malware section.


good luck



Excal

[mpy]

Thanks for your help

[Excal]

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.

If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.

Everyone else please begin a New Topic.