Search:

I was searching for help on this topic too. Sidebar.exe still showing up as red and the description is still the same. I also found it interesting that teatimer.exe is in yellow color.

Okay, first of all, I want to thank you for taking your time to help me on this subject. After I talked to the owner of the pc, he decided to go ahead and reformat the pc. So I guess thats the end...

Here are the reports:


SDFix: Version 1.99

Run by Princess GIANA on Sat 08/18/2007 at 04:29 PM

Microsoft Windows XP [Version 5.1.2600]

Running From: C:\sdfix\SDFix

Please guide me on how to clean the pc. I don't want to format the pc as its not my pc. And can you please tell me where is this backdoor trojan? Thanks

HJT log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:20:18 AM, on 8/16/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot...

Found drivecleaner and vundo in this pc, so I used spybot s&d, ad-aware, vundofix, and combofix. I just need help to check the scan log to see if there are any more malwares left in the pc. Thanks...

Thanks for all the tips, this is a pc of my friend's, I will tell her about the tips.

Thanks again for all your help. :bigthumb:

I think the pc is clean. I went to kaspersky online scan and it was a clean scan.

Here is the new log from hijackthis


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:01:01 AM, on 8/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00...

There is the scan report from kaspersky online scan. I forgot to delete the QooBox folder, but I removed it after the scan.
...

hijackthis log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:54:51 PM, on 8/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Boot...

Thanks for the quick reply. There are the new logs

Combofix log

ComboFix 07-08-04.3 - "Jamie Lasker" 2007-08-07 15:45:55.3 [GMT -4:00] - NTFS
Microsoft Windows XP Home Edition ...

That last combofix log was after I did the first scan of the pc. I dont know if you need that first log or not, so I'm going to post it anyway alone with the quarantined-files list.

ComboFix...

Combofix log

ComboFix 07-08-04.3 - "Jamie Lasker" 2007-08-07 11:39:09.2 [GMT -4:00] - NTFS
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.True


((((((((((((((((((((((((( ...

This is my hijackthis log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:38:26 AM, on 8/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00...