DK64_MASTER

\o/ Now maybe we can get the pitcrew back into the top 40 like we were 2 years ago! Great job Devan! Hopefully this will encourage others to support the pit, and we can once again come off as one of the elite 50!!

Thank you so much!!! I already use spywareblaster, adaware, and spyboy search and destroy, but I will be sure to take a look at the other links

Ah, nevermind, it appears I was confused on what bitdefender and avg did. I did all what you told me to do. I disabled system restore, rebooted, and enabled it. Here's the final HJT log: Logfile of HijackThis v1.99.1 Scan saved at 10:47:13 AM, on 4/5/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program File

HJT log: Logfile of HijackThis v1.99.1 Scan saved at 6:52:53 PM, on 4/4/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe C:\WIN

I have held back on installing the new version of java. I well get to it right now. Windows updates work fine if I go to the main site and click "custom" Also, should I delete the bitdefender quarantine files? EDIT: HOOOOOOOOORAAAAAAAAAAY!! Dial-a-fix solved the update problems!! Thanks so much!!!! Now all that's left is that weird dll. I will provide a new HJT log in a new post just for good measure.

Killbox log: Pocket Killbox version 2.0.0.881 Running on Windows XP as Amar(Administrator) was started @ Tuesday, April 03, 2007, 4:13 PM Killbox Closed(Exit) @ 4:15:13 PM __________________________________________________ Pocket Killbox version 2.0.0.881 Running on Windows XP as Amar(Administrator) was started @ Tuesday, April 03, 2007, 4:15 PM # 1 [Delete on Reboot] Path = C:\WINDOWS\system32\taskrgm.exe # 2 [Delete on Reboot] Path = C:\DOCUME~1\Amar\LOCALS~1\Temp\crasos.exe # 3 [Delete on Reboot] Path = C:\DOCUME~1\username\LOCALS~1\Temp\Cn911.exe

new bitdefender log: [ ] Ignore [X] Disinfect [ ] Delete [ ] Copy to quarantine [ ] Move to quarantine [ ] Rename [ ] Prompt user Second action [ ] Ignore [ ] Delete [ ] Copy to quarantine [X] Move to quarantine [ ] Rename [ ] Prompt user Scan options [X] Enable warnings [X] Enable heuristics [ ] Show all files in log [X] Report file: vscan.log [ ] Append to existing report Summary: C:\RECYCLER\S-1-5-21-3041384506-2576806245-3432160194-1006\Dc8\Quarantine\07-04-03\Program Files\foxitreader\gmzavhen.dll.vir Suspect Generic.Malware.Fdldg.2565C127 C:\RECYCLER\S-

Just an update to this topic: Most of the bugfixes have been done in the HJT topic here: http://forums.pcpitstop.com/index.php?showtopic=138386 I'm pretty sure I'm bug free (running 1 more scan). Big thanks to Jacee, Juliet, Wademan, and the whole PCPitstop Crew!

Actually, FYI, the second regfix should be named fix2.reg, not fix.reg2. You may want to fix that in-case someone else has this same problem. (I'm computer-savvy enough to recognize file extensions ) BitDefender is running (slowly) will have the log up within the next few hours. I'm feeling very optimistic . I think I'll go into hiding too. Would a full format of its contents get rid of the viruses? (don't worry, I won't format it on this computer, maybe a computer with linux on it)

Well I wasn't for a while. I had to do some crazy view source things, and copy and past javascript urls into the explorer bar. I got IE working now (I had a friend send me iexplore.exe, I hope doing that action wasn't illegal, but oh well). I will do the aformentioned things right now. It seems that most, if not all of the pests are gone now . I will post back a bitdefender log in a few hours. (I am away from my computer now). Thanks again, and look for my edit. I don't see this checked entry called security I don't see a "temporary internet files" button. I see a

Sorry for the double post, but I seemed to have some CWS crap according to panda, should I try out the famous cool web shredder? -Thanks in advance.

HJT: Logfile of HijackThis v1.99.1 Scan saved at 6:45:03 PM, on 4/3/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.

Panda log and avg log is coming up in the next 1-4 hours. It takes a long time to scan my system. :/ I'm doing panda first, just giving you a heads up. And it has found a lot of stuff. Once again, thanks for all your help. I hope I can return the favor like I used to before I got busy.

This is before the panda active scan, but dc++ is a popular peer to peer network that is spyware free (it's distributed on sourceforge as open source software). And I use it for legal purposes only. See here: http://dcplusplus.sourceforge.net/ Is this file infected, or just suspicious. I can remove it, by just uninstalling it...

Scanned that file: AntiVir Found TR/Delphi.Downloader.Gen ArcaVir Found nothing Avast Found nothing AVG Antivirus Found nothing BitDefender Found BehavesLike:Trojan.WUDisable (probable variant) ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing Rising Antivirus Found nothing VirusBuster Found nothing VBA32 Found nothing Bad!! Currently