Thank you so much!!!
I'll do my damndest to secure my PC and never have to come back for advice again.
Once more, thank you.
Type: Posts; User: eapers; Keyword(s):
Thank you so much!!!
I'll do my damndest to secure my PC and never have to come back for advice again.
Once more, thank you.
Here 'tis
Logfile of HijackThis v1.99.1
Scan saved at 5:37:52 AM, on 4/23/2007
Platform: Windows XP SP2, v.2096 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2096)
Running...
...continued:
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"
...
Computer seems to be running as good as new, although you'll probably have to tell me that's not yet the case :)
ActiveScan log:
Incident ...
First three mentioned files successfully found in safe mode and deleted.
Moved and scanned SPTD1805. Results:
Complete scanning result of "SPTD1805.SYS", received in VirusTotal at 04.20.2007,...
Used HJT on three files, seemed to go smoothly.
Uploaded two files to UploadMalware as requested- vwsrv.exe was successfully uploaded, but SPTD1805.SYS gave a "0 Bytes, this did not work" message....
Avenger results:
Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\pcmrycea
*******************
Script file...
The return of GMER continued:
86B5D540
Device \FileSystem\Cdfs \Cdfs IRP_MJ_QUERY_VOLUME_INFORMATION 86B5D540
Device \FileSystem\Cdfs \Cdfs...
GMER continued!:
86D6DCF0
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER 86D6DCF0
Device \Driver\Cdrom \Device\CdRom1...
...And GMER log:
GMER 1.0.12.12244 - http://www.gmer.net
Rootkit scan 2007-04-16 04:41:39
Windows 5.1.2600 Service Pack 2, v.2096
---- System - GMER 1.0.12 ----
SSDT sptd.sys ...
AVG Scan log:
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 4:30:16 AM...
...And this is the Combofix log (sorry for the stretching):
"Eric" - 07-04-15 2:10:44 Service Pack 2, v.2096
ComboFix 07-04-05.Rev3 - Running from: "C:\Documents and Settings\Eric\Desktop"
...
Here's the SDFix log:
SDFix: Version 1.78
Run by Eric - Sun 04/15/2007 - 2:00:27.95
Microsoft Windows XP [Version 5.1.2600]
Running From: C:\DOCUME~1\Eric\Desktop\SDFix
About five minutes after startup, my Avast! email scanner starts picking up hundreds of outgoing emails from many--and to many-- addresses. Additionally, Avast periodically mentions that it's found a...