GMER isn't cooperating with me so I apologize that I couldn't include it in the Attach.zip DDS (Ver_09-07-30.01) - NTFSx86 Run by Banksters at 12:29:00.57 on Sat 09/05/2009 Internet Explorer: 6.0.2900.2180 With these logs we can determine the infections present & decide whether to deploy ComboFix. I haven't opened my IE nor my Firefox since then. Since then everytime I use Safely Remove device or pull out the USB plug, I get a gh pitched buzz (coil noise, right?) till I reboot ... look at this site

C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup svchost.exe svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program

Thanks in advance!!
iamsk Sep 5, 2009 7:12 PM (in response to paullotion) Hi,Removed Vscan8.exe as recommended. check over here iamsk Sep 6, 2009 4:30 PM (in response to iamsk) I copied the secured2k-bootcd.iso into a CD on a clean PC. Got what I tnk is called the Vundo/Antivir Solution Pro Virus yesterday ... As such, be advised that any request for assistance in removing malware may go unanswered, or may be discontinued, if the cracked (illegal) software is still present on the machine Also,

Click HERE to download HijackThis InstallerSave HijackThis Installer to your desktop.Doubleclick on the HijackThis Installer icon on your desktop.By default it will install to C:\Program Files\Trend Micro\HijackThis .Click on Install.It will I had to re-download it again and rename the file before placing it on my desktop. scanning hidden autostart entries ...

MBAM kept telling me that it found a "uacinit.dll" which it would delete on reboot, but never does everytime I reboot the computer.

My infected laptop passed the secured2k boot cd and went straight to boot from HDD. Contents of the 'Scheduled Tasks' folder 2009-09-04 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-12 20:34] 2009-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1606980848-725345543-1003Core.job - c:\documents and settings\Banksters\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2009-07-13 09:39] 2009-09-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1844237615-1606980848-725345543-1003UA.job - c:\documents and settings\Banksters\Local Anyway's the computer seemed better so I decided to perform one last Virus scan ... http://dekovsoft.com/cannot-remove/cannot-remove-avg-7-5.html Speed is good.

Have you uninstalled Norton?'I don't have Norton installed on my laptop. I understand that some svchost files are needed to make processes run on my pc but I didn't know if these were the good svchost files or the bad ones.Kapersky Log As we are concerned these days on mostly security as most of our phones get damaged due to the Viruses wch attack it ... Here's the MBAM log and AVG log.

View Answer Related Questions Os : Remove Virus By Reading Hijackthis Log I have a ts second pc and i tnk my PC is Infected with Virus ... I can boot into safe mode though on the infected laptop, but cannot boot into the external secured2k boot cd. How do I do that?All seems normal, but I am still cautious about using the internet because of Kapersky's log scan. Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-8-29 114768] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-6-23 9968] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-6-23 72944] R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-9-10 611664] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-8-29 20560] R2 avast!

I suspect it is something to do with Windows XP and ISO formatting - but may be wrong. Save both reports to your desktop.---------------------------------------------------Please include the contents of the following in your next reply:DDS.txtAttach.txt.