How do I deal with this virus, how do I get rid of it- for free?
Also, when the virus has been moved to the chest, what does that mean?
I suppose I cant get into email accounts that are important right now huh?
there are 4 avast listed:
instal privacy danger.bat 2 of them
and
tt4.tmp.vbs
tt6.tmp.vbs
below is the virus information from avast(scroll down to end), and Hijack This:
THANKS!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:59:45 AM, on 8/6/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\pphc1e5j0e127.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Alwil Software\Avast4\ashChest.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
O4 - HKLM..\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe”
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM..\Run: [StartCCC] “C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe”
O4 - HKCU..\Run: [Google Update] “C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe” /c
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
O4 - Global Startup: NETGEAR WG311v3 Smart Wizard.lnk = ?
O21 - SSODL: tfnslopk - {5699F8CF-779F-4D45-8B7B-8BCCE3E264E1} - C:\WINDOWS\tfnslopk.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
–
End of file - 3355 bytes
[size=10pt]here is the avast Virus chest infromation[/size]
Scanning of selected files
Program will try to scan 1 selected file(s) in the Chest
Move files to temporary folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp195473510.tmp
FileID: 0000000018 Original file name: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\install-privacy-danger.bat New folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp195473510.tmp\18.bat
Scan files in the temporary folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp195473510.tmp
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp195473510.tmp\18.bat BV:Malware-gen
Action was completed successfully!
Scanning of selected files
Program will try to scan 1 selected file(s) in the Chest
Move files to temporary folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp255980103.tmp
FileID: 0000000017 Original file name: C:\Documents and Settings\Compaq_Owner\Local Settings\Temp.tt6.tmp.vbs New folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp255980103.tmp\17.vbs
Scan files in the temporary folder: C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp255980103.tmp
C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp_avast4_\unp255980103.tmp\17.vbs VBS:Malware-gen
Action was completed successfully!