Thread: No control Panel and Windows antivirus popups driving me crazy!
View Single Post
Join Date: Sep 2007
Posts: 14
Reputation: lswords is an unknown quantity at this point 
Solved Threads: 0
lswords lswords is offline Offline
Newbie Poster

Re: No control Panel and Windows antivirus popups driving me crazy!

 
0
  #3
Sep 20th, 2007
Ok I did everything you told me to do and got my control panel back. I am still getting popups stating the following....Windows Security Alert
Warning Potential Spyware Operation!
Your computer is making unauthorized copies of your system and internet files. Run full scan now to prevent any unauthorized access to your files! Click yes to download spyware remover.

The other popup is Windows Antivirus
Windows has detected spyware infection.

Also I cannot view my my yahoo mail it gives me an error saying cannot open page.
Invalid syntax error-Microsoft Internet Explorer

Thanks for your help!!!
Lisa

SDFix: Version 1.106

Run by Cindy Brock on Thu 09/20/2007 at 01:05

AM

Microsoft Windows XP [Version 5.1.2600]

Running From: C:\SDFIX\NEWCOM~1\SDFix

Safe Mode:
Checking Services:

Killing PID 864 'shell.exe'

Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...


Normal Mode:
Checking Files:

Trojan Files Found:

C:\Documents and Settings\All Users\Start

Menu\Programs\Startup\autorun.exe - Deleted
C:\Documents and Settings\Cindy Brock\Start

Menu\Programs\Startup\findfast.exe - Deleted
C:\Documents and Settings\Cindy

Brock\Application Data\antivirus.exe -

Deleted
C:\Documents and Settings\Cindy

Brock\Application Data\Install.dat - Deleted
C:\WINDOWS\shell.exe - Deleted
C:\WINDOWS\system32\explore.exe - Deleted
C:\WINDOWS\system32\ntsystem.exe - Deleted
C:\WINDOWS\system32\printer.exe - Deleted
C:\WINDOWS\system32\spoolvs.exe - Deleted



Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.



Final Check:

Remaining Services:
------------------




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\

services\sharedaccess\parameters\firewallpoli

cy\standardprofile\authorizedapplications\lis

t]
"%windir%\\system32\\sessmgr.exe"="%windir%\\

system32\\sessmgr.exe:enabledxpsp2res.dll

,-22019"
"C:\\Program Files\\America Online

9.0\\waol.exe"="C:\\Program Files\\America

Online 9.0\\waol.exe:Enabled:America Online

9.0"
"C:\\WINDOWS\\SYSTEM32\\SPOOL\\DRIVERS\\W32X8

6\\3\\SAGENT4.EXE"="C:\\WINDOWS\\SYSTEM32\\SP

OOL\\DRIVERS\\W32X86\\3\\SAGENT4.EXEisabl

edAgent4"
"C:\\Program

Files\\IncrediMail\\bin\\IMApp.exe"="C:\\Prog

ram

Files\\IncrediMail\\bin\\IMApp.exe:Enabled:

IncrediMail"
"C:\\Program

Files\\IncrediMail\\bin\\IncMail.exe"="C:\\Pr

ogram

Files\\IncrediMail\\bin\\IncMail.exe:Enable

d:IncrediMail"
"C:\\Program

Files\\IncrediMail\\bin\\ImpCnt.exe"="C:\\Pro

gram

Files\\IncrediMail\\bin\\ImpCnt.exe:Enabled

:IncrediMail"
"C:\\Program

Files\\IncrediMail\\bin\\ImLc.exe"="C:\\Progr

am

Files\\IncrediMail\\bin\\ImLc.exe:Enabled:I

ncrediMail"
"C:\\Program Files\\Common

Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program

Files\\Common

Files\\AOL\\ACS\\AOLDial.exe:Enabled:AOL"
"C:\\Program Files\\Common

Files\\AOL\\ACS\\AOLAcsd.exe"="C:\\Program

Files\\Common

Files\\AOL\\ACS\\AOLAcsd.exe:Enabled:AOL"
"C:\\Program

Files\\Yahoo!\\Messenger\\YPager.exe"="C:\\Pr

ogram

Files\\Yahoo!\\Messenger\\YPager.exe:Enable

d:Yahoo! Messenger"
"C:\\Program

Files\\Yahoo!\\Messenger\\YServer.exe"="C:\\P

rogram

Files\\Yahoo!\\Messenger\\YServer.exe:Enabl

ed:Yahoo! FT Server"
"C:\\Program Files\\MSN

Messenger\\msnmsgr.exe"="C:\\Program

Files\\MSN

Messenger\\msnmsgr.exe:Enabled:Windows Live

Messenger 8.0"
"C:\\Program Files\\MSN

Messenger\\msncall.exe"="C:\\Program

Files\\MSN

Messenger\\msncall.exe:Enabled:Windows Live

Messenger 8.0 (Phone)"
"C:\\Program

Files\\Messenger\\msmsgs.exe"="C:\\Program

Files\\Messenger\\msmsgs.exe:Enabled:Window

s Messenger"
"C:\\Program Files\\Common

Files\\AOL\\1151891915\\ee\\aolsoftware.exe"=

"C:\\Program Files\\Common

Files\\AOL\\1151891915\\ee\\aolsoftware.exe

:Enabled:AOL Shared Components"
"%windir%\\system32\\winav.exe"="%windir%\\sy

stem32\\winav.exe:Enabledxpsp2res.dll,-22

019"
"C:\\WINDOWS\\Temp\\us10050.exe"="C:\\WINDOWS

\\Temp\\us10050.exe:Enabledxpsp2res.dll,-

22019"
"C:\\WINDOWS\\system32\\printer.exe"="C:\\WIN

DOWS\\system32\\printer.exe:Enabledxpsp2r

es.dll,-22019"
"C:\\WINDOWS\\system32\\spoolvs.exe"="C:\\WIN

DOWS\\system32\\spoolvs.exe:Enabledxpsp2r

es.dll,-22019"
"C:\\WINDOWS\\shell.exe"="C:\\WINDOWS\\shell.

exe:Enabledxpsp2res.dll,-22019"
"C:\\Documents and Settings\\Cindy

Brock\\Start

Menu\\Programs\\Startup\\findfast.exe"="C:\\D

ocuments and Settings\\Cindy Brock\\Start

Menu\\Programs\\Startup\\findfast.exe:Enabl

edxpsp2res.dll,-22019"
"C:\\Documents and Settings\\All Users\\Start

Menu\\Programs\\Startup\\autorun.exe"="C:\\Do

cuments and Settings\\All Users\\Start

Menu\\Programs\\Startup\\autorun.exe:Enable

dxpsp2res.dll,-22019"
"C:\\Documents and Settings\\Cindy

Brock\\Application

Data\\mcrupdate.exe"="C:\\Documents and

Settings\\Cindy Brock\\Application

Data\\mcrupdate.exe:Enabledxpsp2res.dll,-

22019"
"C:\\Program Files\\Common

Files\\AOL\\Loader\\aolload.exe"="C:\\Program

Files\\Common

Files\\AOL\\Loader\\aolload.exe:Enabled:AOL

Loader"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\

services\sharedaccess\parameters\firewallpoli

cy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\

system32\\sessmgr.exe:enabledxpsp2res.dll

,-22019"
"C:\\Program Files\\America Online

9.0\\waol.exe"="C:\\Program Files\\America

Online 9.0\\waol.exe:Enabled:America Online

9.0"
"C:\\Program Files\\Common

Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program

Files\\Common

Files\\AOL\\ACS\\AOLDial.exe:Enabled:AOL"
"C:\\Program Files\\Common

Files\\AOL\\ACS\\AOLAcsd.exe"="C:\\Program

Files\\Common

Files\\AOL\\ACS\\AOLAcsd.exe:Enabled:AOL"
"C:\\Program Files\\MSN

Messenger\\msnmsgr.exe"="C:\\Program

Files\\MSN

Messenger\\msnmsgr.exe:Enabled:Windows Live

Messenger 8.0"
"C:\\Program Files\\MSN

Messenger\\msncall.exe"="C:\\Program

Files\\MSN

Messenger\\msncall.exe:Enabled:Windows Live

Messenger 8.0 (Phone)"
"%windir%\\system32\\winav.exe"="%windir%\\sy

stem32\\winav.exe:Enabledxpsp2res.dll,-22

019"
"C:\\WINDOWS\\Temp\\us10050.exe"="C:\\WINDOWS

\\Temp\\us10050.exe:Enabledxpsp2res.dll,-

22019"
"C:\\WINDOWS\\system32\\printer.exe"="C:\\WIN

DOWS\\system32\\printer.exe:Enabledxpsp2r

es.dll,-22019"
"C:\\WINDOWS\\system32\\spoolvs.exe"="C:\\WIN

DOWS\\system32\\spoolvs.exe:Enabledxpsp2r

es.dll,-22019"
"C:\\WINDOWS\\shell.exe"="C:\\WINDOWS\\shell.

exe:Enabledxpsp2res.dll,-22019"
"C:\\Documents and Settings\\Cindy

Brock\\Start

Menu\\Programs\\Startup\\findfast.exe"="C:\\D

ocuments and Settings\\Cindy Brock\\Start

Menu\\Programs\\Startup\\findfast.exe:Enabl

edxpsp2res.dll,-22019"
"C:\\Documents and Settings\\All Users\\Start

Menu\\Programs\\Startup\\autorun.exe"="C:\\Do

cuments and Settings\\All Users\\Start

Menu\\Programs\\Startup\\autorun.exe:Enable

dxpsp2res.dll,-22019"
"C:\\Documents and Settings\\Cindy

Brock\\Application

Data\\mcrupdate.exe"="C:\\Documents and

Settings\\Cindy Brock\\Application

Data\\mcrupdate.exe:Enabledxpsp2res.dll,-

22019"

Remaining Files:
---------------

File Backups: -

C:\SDFIX\NEWCOM~1\SDFix\backups\backups.zip

Files with Hidden Attributes:

C:\Program Files\America Online

9.0\aolphx.exe
C:\Program Files\America Online

9.0\aoltray.exe
C:\Program Files\America Online 9.0\RBM.exe
C:\Program Files\Common

Files\Adobe\ESD\DLMCleanup.exe

Finished!
Reply With Quote