« previous next »
Pages: [1]   Go Down

Author Topic: Need helps!!!  (Read 3765 times)

0 Members and 1 Guest are viewing this topic.

andy214ever

  • Guest
Need helps!!!
« on: July 29, 2007, 09:14:26 AM »
today my sister use my pc......when there is a virus she just ignored it.....and now.....the virus keep coming non stop ......

and take a look at this....

29/07/2007 09:54:34   SYSTEM   1404   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\UH8ZET61\cm[1].exe" file. 
29/07/2007 09:54:39   SYSTEM   1404   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore0.exe" file. 
29/07/2007 09:54:55   SYSTEM   1404   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore0.exe" file. 
29/07/2007 09:55:02   SYSTEM   1404   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\EZ6JIHQ3\3023[1].exe" file. 
29/07/2007 09:55:28   SYSTEM   1404   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore1.exe" file. 
29/07/2007 09:55:52   SYSTEM   1404   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\EZ6JIHQ3\ho[1].exe" file. 
29/07/2007 09:56:09   SYSTEM   1404   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore3.exe" file. 
29/07/2007 09:56:18   SYSTEM   1404   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\KL0N478B\ar[1].exe\[Upack]" file. 
29/07/2007 09:56:40   SYSTEM   1404   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 09:56:50   SYSTEM   1404   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\UH8ZET61\do[1].exe" file. 
29/07/2007 09:56:56   SYSTEM   1404   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore5.exe" file. 
29/07/2007 09:57:13   SYSTEM   1404   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\OX49E7WH\cn[1].exe\[Upack]" file. 
29/07/2007 09:57:58   SYSTEM   1404   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\DOCUME~1\user01\LOCALS~1\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 10:10:18   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\WQ6JZ3BH\cm[1].exe" file. 
29/07/2007 10:10:41   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 10:11:27   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 10:11:36   SYSTEM   1412   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\3023[1].exe" file. 
29/07/2007 10:11:38   SYSTEM   1412   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 10:11:45   SYSTEM   1412   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 10:11:59   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ISOE201U\ho[1].exe" file. 
29/07/2007 10:12:01   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 10:12:08   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 10:12:13   SYSTEM   1412   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\ar[1].exe\[Upack]" file. 
29/07/2007 10:12:16   SYSTEM   1412   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 10:12:24   SYSTEM   1412   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 10:12:31   SYSTEM   1412   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\R1WV74NQ\do[1].exe" file. 
29/07/2007 10:12:33   SYSTEM   1412   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 10:12:40   SYSTEM   1412   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 10:12:53   SYSTEM   1412   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ISOE201U\cn[1].exe\[Upack]" file.
Logged

andy214ever

  • Guest
Re: Need helps!!!
« Reply #1 on: July 29, 2007, 09:15:00 AM »
29/07/2007 10:12:56   SYSTEM   1412   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 10:49:46   SYSTEM   1452   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 10:50:22   SYSTEM   1452   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 10:50:54   SYSTEM   1452   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 10:51:05   SYSTEM   1452   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 10:51:13   SYSTEM   1452   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 10:51:17   SYSTEM   1452   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 10:51:24   SYSTEM   1452   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 10:51:26   SYSTEM   1452   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 10:51:34   SYSTEM   1452   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 10:51:42   SYSTEM   1452   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\R1WV74NQ\cn[1].exe\[Upack]" file. 
29/07/2007 10:52:21   SYSTEM   1452   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 10:52:30   SYSTEM   1452   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 12:19:48   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 12:19:57   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 12:20:00   SYSTEM   1412   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 12:20:07   SYSTEM   1412   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 12:20:19   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 12:20:36   SYSTEM   1412   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 12:20:41   SYSTEM   1412   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 12:20:48   SYSTEM   1412   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 12:20:52   SYSTEM   1412   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 12:21:00   SYSTEM   1412   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 12:21:08   SYSTEM   1412   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 12:21:16   SYSTEM   1412   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 12:28:22   SYSTEM   1412   Sign of "Win32:Delf-FFN [Trj]" has been found in "http://www.popo321.cn/1/vip.exe\[UPX]\[Embedded#56f0]" file. 
29/07/2007 14:44:54   SYSTEM   1432   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 14:45:11   SYSTEM   1432   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 14:45:30   SYSTEM   1432   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 14:45:39   SYSTEM   1432   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 14:46:02   SYSTEM   1432   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 14:46:18   SYSTEM   1432   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
29/07/2007 14:47:23   user01   4068   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\3023[1].exe" file. 
29/07/2007 14:47:30   user01   4068   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\ar[1].exe\[Upack]" file. 
29/07/2007 14:47:32   user01   4068   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ISOE201U\ho[1].exe" file. 
29/07/2007 14:47:34   user01   4068   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\R1WV74NQ\cn[1].exe\[Upack]" file. 
29/07/2007 14:47:35   user01   4068   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\R1WV74NQ\do[1].exe" file. 
29/07/2007 14:47:37   user01   4068   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\WQ6JZ3BH\cm[1].exe" file. 
29/07/2007 14:49:01   user01   4068   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temp\iexplore0.exe" file. 
29/07/2007 14:51:48   user01   4068   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\user01\Local Settings\Temporary Internet Files\Content.IE5\UH8ZET61\cm[1].exe" file. 
29/07/2007 15:03:44   SYSTEM   1448   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\WQ6JZ3BH\cm[1].exe" file. 
29/07/2007 15:03:59   SYSTEM   1448   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore0.exe" file. 
29/07/2007 15:04:18   SYSTEM   1448   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\WQ6JZ3BH\3023[1].exe" file. 
29/07/2007 15:04:22   SYSTEM   1448   Sign of "Win32:Agent-JCX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore1.exe" file. 
29/07/2007 15:04:36   SYSTEM   1448   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\ho[1].exe" file. 
29/07/2007 15:04:39   SYSTEM   1448   Sign of "Win32:Agent-IWX [Trj]" has been found in "C:\WINDOWS\Temp\iexplore3.exe" file. 
29/07/2007 15:04:57   SYSTEM   1448   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\ar[1].exe\[Upack]" file. 
29/07/2007 15:04:59   SYSTEM   1448   Sign of "Win32:Agent-HDH [Trj]" has been found in "C:\WINDOWS\Temp\iexplore4.exe\[Upack]" file. 
29/07/2007 15:05:23   SYSTEM   1448   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\FGAIWELO\do[1].exe" file. 
29/07/2007 15:05:25   SYSTEM   1448   Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\Temp\iexplore5.exe" file. 
29/07/2007 15:05:47   SYSTEM   1448   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\R1WV74NQ\cn[1].exe\[Upack]" file. 
29/07/2007 15:05:51   SYSTEM   1448   Sign of "Win32:Agent-GRW [Trj]" has been found in "C:\WINDOWS\Temp\iexplore7.exe\[Upack]" file. 
Logged

andy214ever

  • Guest
Re: Need helps!!!
« Reply #2 on: July 29, 2007, 09:15:33 AM »
plz..help me......thank ....
Logged

Offline DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89249
  • No support PMs thanks
Re: Need helps!!!
« Reply #3 on: July 29, 2007, 02:36:52 PM »
First empty the Temporary Internet Files from within IE.
You could also use another program to clear temp folders, etc. ClearProg - Temp File Cleaner or CCleaner - Temp File Cleaner, etc.

You may have either an undetected trojan downloader bring this back or your browser has been hijacked.

If you haven't already got this software (freeware), download, install, update and run it, preferably in safe mode.
If using winXP AVG anti-spyware (formerly Ewido). Or SUPERantispyware Or Spyware Terminator. Or a-Squared free if using win98/ME.
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.4.6112 (build 24.4.9067.762) UI 1.0.803/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security
Pages: [1]   Go Up
« previous next »