Search:

sorry forgot about email provider. It is Yahoo

Hi, I have removed Utorrent and AVG. Here are fresh log files.

DDS

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 17:52:25 on 2011-09-23...

Thank you for your help

AS requested.
DDS.txt
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 9:20:50 on 2011-09-23
Microsoft Windows XP...

It seems my computer has been taken over as an email Bot.
I noticed mailer daemon faliure notices on emails I did not create. I have also noticed Malware bytes is blocking both incoming and...

Thanks for your help. I thought they might be false positives , but did not know how to confirm it.

"";"C:\WINDOWS\system32\DRIVERS\wowhd_kern_i386.sys";"Tvs.sys, hooked import wowhd_kern_i386.sys CreateWOWHDManager -> wowhd_kern_i386.sys CreateWOWHDManager";"Object is hidden"
...

Yes the sound

Tvs.sys keeps showing up in my avg scans. In 3 separate files When avg removes the infected file i lose some functions on my computer.
Here is DDS log.


DDS (Ver_10-03-17.01) - NTFSx86
Run...

So far it is looking good. Thank you for your help. I have AVG malwarebytes and Spybot all working concurrently. Any Idea how this got through?

Here is TDSS log

22:04:21:687 0164 TDSS rootkit removing tool 2.3.2.0 May 31 2010 10:39:48
22:04:21:687 0164 ================================================================================...

I just reran combofix. here is log

ComboFix 10-06-14.01 - Michael 06/14/2010 15:30:48.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3319.2806 [GMT -4:00]
Running from:...

Still getting redirects. Please help

Gmer Log

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-06-14 13:27:40
Windows 5.1.2600 Service Pack 3
Running: vu7ebjoq.exe; Driver: C:\DOCUME~1\Michael\LOCALS~1\Temp\afliapoc.sys
...

Gmer takes sometime to complete, 1.5 to 2 hours+. I have not been present at cycle end and it seems to reboot the computer and leaves no log. Did I miss something?

Gmer would not complete. And redirects returned. Here is a second combofix log. I will try to rerun gmer.

ComboFix 10-06-13.01 - Michael 06/13/2010 21:45:16.2.2 - x86
Microsoft Windows XP...

Here is the Combofix log file

ComboFix 10-06-12.04 - Michael 06/13/2010 16:00:05.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3319.2732 [GMT -4:00]
Running from:...

Yes I do Here is the latest DDS logfile

DDS (Ver_10-03-17.01) - NTFSx86
Run by Michael at 13:19:39.68 on Sun 06/13/2010
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_07...

Avg, Malwarebytes and Spybot all return clean scans.
But I am still getting redirects during google searches.

DDS Logfile


DDS (Ver_10-03-17.01) - NTFSx86
Run by Michael at 22:16:04.26 on...

Malwarebytes, spybot and AVG allshow no infection. But I keep getting redirects during google searches. Please help.

I have AVG and the paid version of malwarebytes running on my laptop. Resident shield keeps returning "Virus identified Win32/Patched.CG";"C:\WINDOWS\system32\drivers\atapi.sys";"Object is...

I have AVG and the paid version of malwarebytes running on my laptop. Resident shield keeps returning "Virus identified Win32/Patched.CG";"C:\WINDOWS\system32\drivers\atapi.sys";"Object is...