Search:

McAfee and Spybot have been congratulating me for a while and the system seems to be running fine.

Should I be worried about the notepad .exe space? I do use notepad quite a lot. Are there other...

And here's the hijacklog:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:24:34 PM, on 2/24/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00...

Here's the latest:

ComboFix 08-02-21 - Philip Guest 2008-02-24 21:29:34.4 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.206 [GMT -8:00]
Running from: C:\Documents and...

Here's the Panda Scan:

ANALYSIS: 2008-02-23 18:32:16
PROTECTIONS: 2
MALWARE: 28
SUSPECTS: 0

PROTECTIONS
Description Version Active ...

Thanks.

Fixing RdxIEwhatever.cab seemed to sever my internet connection. After some fuss I restored the most recent HijackThis backup and everything returned to normal. However, when I then run...

. . . and here's the HijackThis (which I had renamed to pguest.exe as I read on another thread that Hijack this is known and avoided by certain Virtumonde strains):

Logfile of Trend Micro...

Thank you rip_chain.

I must confess that the machine has appeared to be running fine with nothing showing up on any scans for a while so I hope I haven't done anything to re-infest in the interim....

I was not sure of the location of the original log file so I ran Combofix again yesterday. Here is the result:

ComboFix 08-02.05.3 - Philip Guest 2008-02-11 17:50:07.2 - NTFSx86
Running from:...

Thanks. The system seems to be o.k at the moment (touch wood) but the initial infestation was so profligate and good at self replicating that I'm still quite paranoid.

Here's Kaspersky:
...

After several passes with Spybot I ran Vundo and Combofix as this seemed to be good general advice.

Here is the HijackThis log.

I have also run the online Kaspersky, I will post the six lines...