My Inlaws computer gots Virus problems.

[WasTech]

ok ill recon

 

[Osiris]

After the scan completes, see if you can delete that folder. If not then download that program

 

[WasTech]

I sent new code. I don't think you can run combo while conn

 

[Osiris]

I got it, click connect

 

[WasTech]

remember the tsserv and avica problem. I also can't upgrade to winxp sp2 or get updates.

 

[WasTech]

This thing won't boot up right. I comes to the deskt but not loading. Seems to be regrun causing strt probs.

 

[WasTech]

got it

 

[WasTech]

sent PM

 

[WasTech]

If you want to stop it's ok it's after 11

 

[WasTech]

here's the SDfix log.

SDFix: Version 1.240
Run by Administrator on Mon 12/08/2008 at 23:36

Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix

Checking Services :

Name :
tdssserv

Path :
\systemroot\system32\drivers\TDSSserv.sys

tdssserv - Deleted



Restoring Default Security Values
Restoring Default Hosts File

Rebooting


Checking Files :

Trojan Files Found:

C:\WINDOWS\system32\drivers\TDSSserv.sys - Deleted





Removing Temp Files

ADS Check :



Final Check :

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-09 01:32:00
Windows 5.1.2600 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
"DeviceNotSelectedTimeout"="15"
"GDIProcessHandleQuota"=dword:00002710
"Spooler"="yes"
"swapdisk"=""
"TransmissionRetryTimeout"="90"
"USERProcessHandleQuota"=dword:00002710

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services :




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

Remaining Files :


File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes :

Fri 2 Nov 2001 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Fri 2 Nov 2001 401 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv13.bak"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT10.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT11.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT12.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT13.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT14.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT15.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT6.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT7.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT8.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BIT9.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITA.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITB.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITC.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITD.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITE.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\BITF.tmp"
Tue 13 Nov 2001 10,678 A..H. --- "C:\Program Files\Microsoft Office\Office\Shortcut Bar\Off1.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\Setup\BIT16.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\Setup\BIT4.tmp"
Wed 17 Jul 2002 0 A..H. --- "C:\Program Files\MSN\MSNCoreFiles\Setup\BIT5.tmp"
Sat 8 Jun 2002 49,386 A..H. --- "C:\Documents and Settings\All Users\Application Data\Microsoft\VisualStudio\7.0\vs000223.tmp"

Finished!