i just got avast,cuse i got like a bunch of pop up kind of things where it would bring up a new internet and it would take it to a site, anyway my freind told me to download the home version, i did, i ran it, and it told me i had
Win32:Spyware-gen [trj]
Win32:Spyware-gen [trj]
Win32:Spyware-gen [trj]
Win32:Dialer-567 [trj]
when i told it to move them to the chest it said it couldnt, when i said to delete it said it could, but the next time i run a test, the same things pop up, so i have no clue what to do, and avg says i dont have anything, and so does spybot search and destroy, so im completely clueless as to what to do, and get lost really easy in comp lingo, with all trhe numbers and parentheses, and abreviations, so ya if you could plz help, and dumb it down a bit if its not to much to ask
ty
Please download HijackThis from the link below, run the program but do not make any fixes, and then post the log results using the “copy & paste” method. It will probably take more than one post to be able to get the complete log posted. OR, you can post it as an attachment to your post by clicking on “Additional Options…” below left of the posting box. Someone will review your log and then offer help.
What is the infected file name, where was it found e.g. (C:\windows\system32\infected-file-name.xxx) ?
Check the avast! Log Viewer (right click the avast ‘a’ icon), Warning section, this contains information on all avast detections.
If you haven’t already got this software (freeware), download, install, update and run it, preferably in safe mode - http://www.pchell.com/support/safemode.shtml.
If using winXP or Vista SUPERantispyware On-Demand only in free version. Or Spyware Terminator Resident scanner (if you use this don’t install the toolbar or crawler or the anti-virus module). I think either of these is better than avg-as (I assume it was the anti-spyware version you meant).
k i did wat u said and downloaded hjackthis, then did what otherperson said and downloaded super something, anyway, heres the log from hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:47:00 PM, on 4/8/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
First you appear to be running two resident AVs, avast and AVG, this is a resipy for possible conflict.
Having two resident scanners installed is not recommended as rather than provide twice the protection it can cause conflicts that could leave you more vulnerable.
So you should choose which you want to keep and uninstall the other, there are othet options for a second opinion scan, either on-line scanner or an on-demand scanner (no resident elements), like the free version of BitDefender.
Secondly, you don’t appear to have an active firewall, it should be capable of blocking unauthorised outbound Internet Connections. What is your firewall ?
HJT Log:
There are some that would say this is adware (normally comes with AOHell), possibly when you installed AIM ?
C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
Is this something that you installed (below).
The PrismXL service lets the Client deploy Tasks on a target computer regardless of the current users permissions.
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
Other than that I don’t see anything obvious.
Did you run SAS in safe mode before running HJT ?
If you did run SAS (safe mode or otherwise) what did it find ?
ok,ill do the java thing, yes i instaled AIM, and idk what the other thing is,so im guessing i should get rid of it…but dont know how to do that
o ya and i have firewall, idk wich, its the one that came with my comp
and i wasnt in safe mode when i did the highjackthis
o hey AVG caught some stuff, and i put it in its chest,and deleted them, so i think im ok hopefully, ty for all the help so far
Firewall, it would be XP’s firewall that came with the OS.
Whilst the windows XP firewall is usually good at keeping your ports stealthed (hidden) it provides no outbound protection and you should consider a third party firewall.
Any malware that manages to get past your defences will have free reign to connect to the internet to either download more of the same, pass your personal data (sensitive or otherwise, user names, passwords, keylogger retrieved data, etc.) or open a backdoor to your computer, so outbound protection is essential.
There are many freeware firewalls such as, Comodo, PCTools Firewall Plus, Jetico, etc. -
Zone Alarm free works fine with avast and has a reasonably friendly user interface, however, the free version is becoming bloated with trial ware and is also crippled as far as outbound protection goes In the Program Control, configuration area, the slider will only goes as far as Medium protection, if you want more you have to buy the Pro version.
AIM may be the reason why Viewpoint is there I simply don’t know I have never used AOHell or any of their products.
The other thing,PrisimXL you mean (?), do you have a gateway or emachines computer, if so see the quote below,
Gateway/eMachines uses New Boundary software to configure PCs before they are shipped to customers. The Prismxl service is left over from that process. If you would like instructions for disabling the service, please go to the Prismxl section on this page: http://support.gateway.com/s/issues/2-1945178247.shtml
The safe mode relates to running SAS, it gives the best results, you shouldn’t run HJT (and I know you didn’t do that because the log says it was run from normal mode {Boot mode: Normal}) from safe mode.
It doesn’t matter if AVG did catch something there is a likelihood you could catch cold with two resident AV scanners, you have to make a choice.
No problem, glad I could help.
Welcome to the forums.