Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 5 of 5 Posts

·
Registered
Joined
·
579 Posts
Discussion Starter · #1 ·
Outta the blue yesterday Avast picked up ad-aware and then the next thing I knew after I told it to delete the Ad-aware I start getting more pop-ups from Avast saying Trojan Horse was found and it seemed like the warnings would never stop. So I unplugged my internet and re-booted in safe mode and ran Avast virus scan, Spybot, and bitdefender...Avst picked up nothing...spybot caught the stuff and deleted it (or so I thought) and bitdefender didnt pick up anything either. I also ran hijack this and deleted the stuff but since I had unplugged my internet so all the avst warnings wouldn't keep coming up I'm not sure how many more things are on my computer...I wasn't sure if the warnings would ever stop! I don't know what else to do.

Also the directory's that Avst is giving me dont exist on my computer
C:\Documents and Settings\Infinity\Local Settings\Temporary Internet Files\Content.IE5\BJHSI5DU\istsvc[1].exe

After Infinity...none of those directories are there.

Please help in anyway you can...I've never had anything this bad on my computer before...And I don't even know how I got this.

Now everytime I turn on my computer I get the same warning's and they just won't go away!!!
 

·
Registered
Joined
·
579 Posts
Discussion Starter · #3 ·
Logfile of HijackThis v1.99.1
Scan saved at 2:08:42 PM, on 6/17/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Ventrilo\Ventrilo.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\hijackthis\HijackThis.exe

O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [winupdate] C:\Program Files\winupdate\winupdate.exe /auto
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1118836889263
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

The only thing is the trojan and the stuff doesnt show up on the HJT logfile its really wierd. I already told HJT to remove the stuff I saw on there but when I start my computer back up all the stuff pops up again.
 

·
Registered
Joined
·
579 Posts
Discussion Starter · #4 ·
Everytime I delete this stuff it it goes away and when i reboot my computer to fix the stuff I get more and more little things it has implanted on the computer. I need serious help.
 
1 - 5 of 5 Posts
Status
Not open for further replies.
Top