Jump to content

jammer09

Members
  • Content Count

    9
  • Joined

  • Last visited

About jammer09

  • Rank
    Newbie
  • Birthday 01/01/1970

Profile Information

  • Interests
    SUPERANTISPYWARE
  1. Heilsa! i did what you said, I restored those three files and then did another scan it found only those three files again so I sent off a false positive report on them and then restored them again. I was supposed to restore them again wasnt I? Concerning those other Adware that Avast found I am on Avast forum going to see what they recommend doing with what Avast found. I couldnt find a section to send or upload any files for analysis there on superantispyware dot com at all. I must be missing something maybe you could give me direct link or an explanation as to how to go about doing that. If you would thtat is. Thank you for all of your help!
  2. Heilsa! Ok, will do. Thank you. Would you care to take a stab at what Avast found or should I ask them? I will report back as to anything else that goes on, thank you again. Ves Heill! Farr Heill!
  3. Heilsa! Can't stay long but here is what you asked for SUPERAntiSpyware Scan Log https://www.superantispyware.com Generated 05/13/2009 at 08:34 AM Application Version : 4.26.1002 Core Rules Database Version : 3890 Trace Rules Database Version: 1838 Scan type : Complete Scan Total Scan Time : 02:32:11 Memory items scanned : 694 Memory threats detected : 0 Registry items scanned : 9071 Registry threats detected : 0 File items scanned : 171318 File threats detected : 3 Trojan.Dropper/Gen C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\WZSE0.TMP\PROGRAM FILES\SIERRA WIRELESS\SWUSBDRIVERS\GENERIC\REMINFS.EXE C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\WZSE1.TMP\PROGRAM FILES\SIERRA WIRELESS\SWUSBDRIVERS\GENERIC\REMINFS.EXE C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\_UNPS.EXE Here is what Avast found and has quarantined C:\Program Files\HP Connections\6811507\Program\Interop.SHDocVw.dll C:\Program Files\HP Connections\6811507\Program\HPBWSetup\Interop.SHDocVw.dll C:\Windows\HPCPCUninstall-6811507\Interop.SHDocVw.dll Thank you for the very quick response!
  4. Heilsa! I am working on a friend of mines laptop, an HP Pavilion dv6000 running Windows Vista Home Premium and uninstalled with Norton Removal tool the Norton AV it had on it and the AVG AV running at the same time and placed ZoneAlarm, Avast and SUPERAntiSpyware on it instead. Well, all went well on install of all three and did scan with Avast and it found and quarantined 3 Adware. I then ran a thorough scan with SUPER and it found THREE TROJAN DROPPER/GEN and quarantined them and says it wants to remove them on next boot (restart). Well my question is this, I have never ran SUPER or any of the three ZoneAlarm, Avast and or SUPER on a Vista machine before and the three quarantined Trojans are in an area I am not sure of, as in removing sure of. Should I remove these they are in these areas. The first one is here; C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\_UNPS.EXE The second one is here; C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\WZSE0.TMP\PROGRAM FILES\SIERRA WIRELESS\SWUSBDRIVERS\GENERIC\REMINFS.EXE The third one is here; C:\USERS\MIGUEL\APPDATA\LOCAL\TEMP\WZSE1.TMP\PROGRAM FILES\SIERRA WIRELESS\SWUSBDRIVERS\GENERIC\REMINFS.EXE What is throwing me off here is the part "SIERRA WIRELESS\SWUSBDRIVERS", if it hadn't had this or some similar legitimate sounding part to the address I would've already rebooted and let it remove them at will as they are in a TEMP folder. Can I just remove these? Or are they a legitimate part of this machines wireless setup and or drivers etc...? And what about that first one_UNPS.EXE it should just be removed no problem I would think being in a TEMP folder like that. I did a couple of cleanings with REVO Uninstaller thought that would've clean those TEMP folders out before the scans, I guess not. Can anyone help me out here, need to get this machine back to my friend as soon as possible? Thank you very much!
  5. Heilsa! Well, we ran another scan awhile back with updated definitions etc... and it found approximately 900 and something infected files, it had everything on it, same PC. So Super did its thing, removed some and quarantined some so whatever it quarantined I just removed. Thank you for all of your help! I thoroughly love SuperAntispyware! Thank you everyone here for your contributions to our safety online! Ves Heill! Farr Heill!
  6. Heilsa! Couldn't find the file after it was quarantined so I am going to restore it then upload it to virustotal and see what it says and look at it properties, unless someone else knows of a way to upload it while in quarantined etc... Then run another scan with SuperAntiSpyware and see what all it comes up with this time.
  7. Heilsa! I am working on a friends PC and it was not letting me install Microsoft .NET Framework, AutoCAD or SP3 on said PC. So we started to go through the motions as to find out why. I installed SuperAntiSpyware on it and updated and ran a full scan. It quarantined some adware.tracking cookies of which I got rid of and this "GTIDMTJH.EXE" in "C:\WINDOWS\SYSTEM32\" directory. So it is located in this spot "C:\WINDOWS\SYSTEM32\GTIDMTJH.EXE". SuperAnitSpyware calls it an "Unclassified.Unkown Origin". I did a little searching and can't find "ANY" info. on this EXE file good or bad. I think that is a bad situation too as there should be some info. as to whether or not it is a legit file or not. Can anyone help me out in this situation? It is still quarantined in SuperAntiSpyware. How do I find out about it and then remove it safely if it is malicious? Is it something new and needs to be investigated or harmless and suppose to be there or is it something in the wrong spot?
  8. Heilsa! I don't know when you installed the Sp3 for XP but if it was not very long before the reboot situation it might be your Sp3 and XP doing this and not some adware or malware. You can check it out here: http://www.slipperybrick.com/2008/05/wi ... -troubles/ . This is not the only site concerning the matter it is all over the internet and at microsoft. I am not saying this is what it is and am no expert in this area. But I have been reading up on this situation as I am getting a blue screen stop error every now and then after booting. (Which probably does not have anything to do with your situation) but I have been going through the processes and all probabilities as to my situation and someone suggested it being the installation of the Sp3 to XP, hence the investigation of said matter.
  9. Heilsa! I am Jammer09 . I would like to say hello to all and take a few minutes to make this introduction as Superantispyware was recommended to me & I have used it but don't quite know where to go from there. Anyway, nice to make all of your acquaintances . Knowledge is Power! Seek ever to expand the Mind!
×
×
  • Create New...