security virus only lets me post hijack log
soooo. i got a xp security 2012 virus and the reason i can't post my maleware and super antispyware logs is because the virus won't let me. i am also suspicious that there may be another virus called BHO.
the virus does not let me post on the internet nor will it let me use the help2go detector. but i still have access to the internet and i can download programs, it jut won't let you run them.
the virus continues to work even in safe mode. but the 1 good thing is that SUPER antispyare starts up running before the virus can stop it at startup so i can still scan and remove some threats. but the down side is that as soon as spyware gets rid of it it comes back instantly.
so far S&D has kept registry changes from happening but 2 registry files are infected or found to be a virus says super antispyware.
since i cannot post the log should i post the names of the files super antispyware lists as it scans?
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:42:48 PM, on 6/17/2011
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode with network support
Running processes:
C:\\WINDOWS\System32\smss.exe
C:\\WINDOWS\system32\winlogon.exe
C:\\WINDOWS\system32\services.exe
C:\\WINDOWS\system32\lsass.exe
C:\\WINDOWS\system32\svchost.exe
C:\\WINDOWS\System32\svchost.exe
C:\\WINDOWS\Explorer.EXE
C:\\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\\Documents and Settings\NetworkService\Local Settings\Application Data\twf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Comcast.net | Entertainment | News | Sports | Email | Watch TV Online | Comcast Deals | On Demand
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = actsvr.comcastonline.com:8100
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = cdn
02 - BHO: (no name) - {01A9EFF7-C140-4470-AC00-54CDDF32713a} - (no file)
02 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
02 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
02 - BHO: Comcast Toolbar - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29} - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL
02 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
02 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
02 - BHO: Window Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Fies\Microsoft Shared\Windows Live
\WindowsLiveLogin.dll
02 - BHO: Search Toolbar - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll
02 - BHO: b061ec06 - {D54A6DAE-9B7D-1331-2F81-CB9EBF7D0F64} - C:\WINDOWS\system32\oleaut3232.dll
02 - BHO: Java(tm) Plug-in 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
02 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
03 - Toolbar: Comcast Tolbar - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29} - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL
03 - Toolbar: Search Toolbar - {9D425283-D487-4337-BAB6-AB8354A81457} - C:\Program Files\Search Toolbar\SearchToolbar.dll
04 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
04 - HKLM\..\Run: [CellVision WLAN Monitor] C:\Program Files\AirLink101\WLAN Monitor\WLANmon.exe
04 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
04 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
04 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
04 - HKCU\..\Run: [30606544] C:\Documents and Settings\NetworkService\Local Settings\Application Data\twf.exe
04 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
04 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\\WINDOWS\system32\ctfmon.exe (USER 'Default user')
09 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
09 - Extra 'Tools' menuitem: spybot Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1
\SDHelper.dll
016 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http//update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1129422761284
016 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} (Java Plug-in 1.6.0_14) -
020 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSPYware\SASWINLO.DLL
022 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0c90312E1} - C:\WINDOWS\System32\browseui.dll
022 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
023 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 4580 bytes