Cheat Engine Forum Index Cheat Engine
The Official Site of Cheat Engine
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 


virus help plz

 
Post new topic   Reply to topic    Cheat Engine Forum Index -> Computer Talk
View previous topic :: View next topic  
Author Message
CALVlNXD
Advanced Cheater
Reputation: 0

Joined: 10 Dec 2007
Posts: 63
PostPosted: Thu Feb 07, 2008 10:41 pm    Post subject: virus help plz Reply with quote
i scanned then this showed up and i couldn't fix the virus or delete it
w.32virut.w
virus
high
status: repair failed
Process:
c:\program files\yahoo!\browser\ycommon.exe
Infection:
c:\windows\system32\spoolsv.exe
c:\windows\explorer.exe
c:\program files\yahoo!\browser\ycommon.exe
c:\windows\system32\imapi.exe
c:\windows\system32\sessmgr.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\ypcservice.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\msiexec.exe
c:\windows\system32\vssvc.exe
c:\program files\network associates\common framework\frameworkservice.exe
c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe
c:\windows\system32\hpzipm12.exe
c:\windows\system32\mshta.exe
c:\windows\system32\userinit.exe
c:\windows\system32\ieudinit.exe
c:\windows\inf\unregmp2.exe
c:\windows\system32\ie4uinit.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\regsvr32.exe
c:\windows\system32\hkcmd.exe
c:\program files\quicktime\bak\qttask.exe
c:\windows\system32\igfxtray.exe
c:\windows\system32\igfxpers.exe
c:\windows\system32\ctfmon.exe
c:\program files\messenger\msmsgs.exe
c:\program files\quicktime\qttask.exe
c:\program files\msn gaming zone\windows\chkrzm.exe
c:\program files\netmeeting\conf.exe
c:\program files\creative\ctmbdemo\ctmbdemo.exe
c:\windows\pchealth\helpctr\binaries\helpctr.exe
c:\program files\internet explorer\connection wizard\icwconn1.exe
c:\program files\internet explorer\connection wizard\icwconn2.exe
c:\program files\internet explorer\connection wizard\inetwiz.exe
c:\program files\internet explorer\connection wizard\isignup.exe
c:\program files\java\jre1.6.0_02\bin\javaws.exe
c:\windows\system32\usmt\migwiz.exe
c:\program files\movie maker\moviemk.exe
c:\program files\windows media player\mplayer2.exe
c:\program files\outlook express\msimn.exe
c:\program files\common files\microsoft shared\msinfo\msinfo32.exe
c:\program files\quicktime\pictureviewer.exe
c:\program files\creative\mixer\smixerfe.exe
c:\program files\outlook express\wab.exe
c:\program files\winrar\winrar.exe
c:\program files\microsoft office\office10\winword.exe
c:\program files\windows media player\wmplayer.exe
c:\windows\system32\logon.scr
c:\windows\system32\drwtsn32.exe
Service:
ImapiService
RDSessMgr
COMSysApp
YPCService
WmiApSrv
SwPrv
MSIServer
VSS
McAfeeFramework
Apple Mobile Device
Pml Driver HPZ12
Browser Cache
Registry:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon->Shell
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon->Userinit
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run->igfxhkcmd
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run->QuickTime Task
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run->igfxtray
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run->igfxpers
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1013\Software\Microsoft\Windows\CurrentVersion\Run->ctfmon.exe
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1013\Software\Microsoft\Windows\CurrentVersion\Run->MSMSGS
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1014\Software\Microsoft\Windows\CurrentVersion\Run->ctfmon.exe
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1015\Software\Microsoft\Windows\CurrentVersion\Run->ctfmon.exe
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1007\Software\Microsoft\Windows\CurrentVersion\Run->QuickTime Task
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1010\Software\Microsoft\Windows\CurrentVersion\Run->ctfmon.exe
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1010\Software\Microsoft\Windows\CurrentVersion\Run->QuickTime Task
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\chkrzm.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\CONF.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\CTMBDemo.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\HELPCTR.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\ICWCONN1.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\ICWCONN2.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\INETWIZ.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\ISIGNUP.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\javaws.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\migwiz.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\moviemk.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\mplayer2.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\msimn.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\msinfo32.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\MSMSGS.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\PictureViewer.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\SMixerFE.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\wab.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\WinRAR.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\Winword.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\wmplayer.exe
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1013\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1014\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1015\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1007\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-19\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-20\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1010\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\S-1-5-21-1390067357-1454471165-682003330-1011\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_USERS\.DEFAULT\Control Panel\Desktop->SCRNSAVE.EXE
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Aedebug->Debugger
Back to top
View user's profile Send private message AIM Address
SF
I'm a spammer
Reputation: 119

Joined: 19 Mar 2007
Posts: 6028
PostPosted: Thu Feb 07, 2008 10:48 pm    Post subject: Reply with quote
Similiar virus was talked about here, I'll find you the thread. All you can do is reformat, sad to say.

Thread here
_________________
Back to top
View user's profile Send private message
hcavolsdsadgadsg
I'm a spammer
Reputation: 26

Joined: 11 Jun 2007
Posts: 5801
PostPosted: Thu Feb 07, 2008 10:54 pm    Post subject: Reply with quote
looks like you're boned.

go find that windows disc.
Back to top
View user's profile Send private message
CALVlNXD
Advanced Cheater
Reputation: 0

Joined: 10 Dec 2007
Posts: 63
PostPosted: Thu Feb 07, 2008 11:04 pm    Post subject: Reply with quote
How do I reformat. Can you teach me step by step plz.
Back to top
View user's profile Send private message AIM Address
SF
I'm a spammer
Reputation: 119

Joined: 19 Mar 2007
Posts: 6028
PostPosted: Thu Feb 07, 2008 11:30 pm    Post subject: Reply with quote
CALVlNXD wrote:
How do I reformat. Can you teach me step by step plz.


Honestly, I am going to suggest you get it taken to a repair shop. No offense or anything, but, I'd rather not try to guide you through it, since it may get fucked up. Do you have a Windows XP disk / computer recovery disk?

Edit: Unless of course, you believe you can do it. Also, do you have a second computer?
_________________
Back to top
View user's profile Send private message
CALVlNXD
Advanced Cheater
Reputation: 0

Joined: 10 Dec 2007
Posts: 63
PostPosted: Thu Feb 07, 2008 11:45 pm    Post subject: Reply with quote
yes I have a second computer, though its old and laggy ,still not infected. I believe I can reformate my computer with your help.
Just wondering : Can't I like copy the data from the other computer and install it in mine. I'm pretty sure I don't have the installation c"d for this computer anymore.
Back to top
View user's profile Send private message AIM Address
SF
I'm a spammer
Reputation: 119

Joined: 19 Mar 2007
Posts: 6028
PostPosted: Thu Feb 07, 2008 11:58 pm    Post subject: Reply with quote
CALVlNXD wrote:
yes I have a second computer, though its old and laggy ,still not infected. I believe I can reformate my computer with your help.
Just wondering : Can't I like copy the data from the other computer and install it in mine. I'm pretty sure I don't have the installation c"d for this computer anymore.


It won't work that way. I'll add you on AIM. What is your current Operating System on the infected computer?

Edit: I'll add you and help tomorrow if someone else doesn't by then. It'll be Friday so I'll be able to stay up all night.
_________________
Back to top
View user's profile Send private message
hcavolsdsadgadsg
I'm a spammer
Reputation: 26

Joined: 11 Jun 2007
Posts: 5801
PostPosted: Fri Feb 08, 2008 1:36 am    Post subject: Reply with quote
it's a straightforward enough process.

pop the disc in, boot from it from the boot devices menu, or change the order in the bios.

read the instructions, you want to delete your current partition and quick format it.

the rest is straight forward if you read what it says.

it's pretty hard to screw up, after that you basically play the waiting game and input some info here and there.
Back to top
View user's profile Send private message
CALVlNXD
Advanced Cheater
Reputation: 0

Joined: 10 Dec 2007
Posts: 63
PostPosted: Fri Feb 08, 2008 9:55 pm    Post subject: Reply with quote
SaviourFamily wrote:
CALVlNXD wrote:
yes I have a second computer, though its old and laggy ,still not infected. I believe I can reformate my computer with your help.
Just wondering : Can't I like copy the data from the other computer and install it in mine. I'm pretty sure I don't have the installation c"d for this computer anymore.


It won't work that way. I'll add you on AIM. What is your current Operating System on the infected computer?

Edit: I'll add you and help tomorrow if someone else doesn't by then. It'll be Friday so I'll be able to stay up all night.

Im on windows xp on this infected computer. my aim sn is calvln xD<----2 L's no i's

Ok I found a windows xp pro. cd. Should I install it? Reply plz. I put in the cd and it says that my version of windows xp is newer, should I erase mine?
Back to top
View user's profile Send private message AIM Address
SF
I'm a spammer
Reputation: 119

Joined: 19 Mar 2007
Posts: 6028
PostPosted: Fri Feb 08, 2008 11:47 pm    Post subject: Reply with quote
CALVlNXD wrote:
SaviourFamily wrote:
CALVlNXD wrote:
yes I have a second computer, though its old and laggy ,still not infected. I believe I can reformate my computer with your help.
Just wondering : Can't I like copy the data from the other computer and install it in mine. I'm pretty sure I don't have the installation c"d for this computer anymore.


It won't work that way. I'll add you on AIM. What is your current Operating System on the infected computer?

Edit: I'll add you and help tomorrow if someone else doesn't by then. It'll be Friday so I'll be able to stay up all night.

Im on windows xp on this infected computer. my aim sn is calvln xD<----2 L's no i's

Ok I found a windows xp pro. cd. Should I install it? Reply plz. I put in the cd and it says that my version of windows xp is newer, should I erase mine?


That is what you will need to do. I added you on AIM, check your other computer, if it runs, put AIM on it before you do anything in case you have any problems during the re-format.
_________________
Back to top
View user's profile Send private message
CALVlNXD
Advanced Cheater
Reputation: 0

Joined: 10 Dec 2007
Posts: 63
PostPosted: Fri Feb 08, 2008 11:51 pm    Post subject: Reply with quote
SaviourFamily wrote:
CALVlNXD wrote:
SaviourFamily wrote:
CALVlNXD wrote:
yes I have a second computer, though its old and laggy ,still not infected. I believe I can reformate my computer with your help.
Just wondering : Can't I like copy the data from the other computer and install it in mine. I'm pretty sure I don't have the installation c"d for this computer anymore.


It won't work that way. I'll add you on AIM. What is your current Operating System on the infected computer?

Edit: I'll add you and help tomorrow if someone else doesn't by then. It'll be Friday so I'll be able to stay up all night.

Im on windows xp on this infected computer. my aim sn is calvln xD<----2 L's no i's

Ok I found a windows xp pro. cd. Should I install it? Reply plz. I put in the cd and it says that my version of windows xp is newer, should I erase mine?


That is what you will need to do. I added you on AIM, check your other computer, if it runs, put AIM on it before you do anything in case you have any problems during the re-format.

srry cant rite now, ill go on all day2 morow
Back to top
View user's profile Send private message AIM Address
Display posts from previous:   
Post new topic   Reply to topic    Cheat Engine Forum Index -> Computer Talk All times are GMT - 6 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum


Powered by phpBB © 2001, 2005 phpBB Group

CE Wiki   IRC (#CEF)   Twitter
Third party websites