Sagispul infection, logs

[OldGREGORY]

followed the steps, here are the logs

 

[rf6647]

Memory Modules Infected:
C:\WINDOWS\system32\khfDvssT.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\ndmknyhl.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\WINDOWS\system32\cokrzn.dll (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\yayyWQJb.dll (Trojan.Vundo) -> Delete on reboot.

HJT scan >> computer restarted?  Probably not.
O20 - AppInit_DLLs: cokrzn.dll

MBAB did not handle all that it found until the computer restart.

Rescan with MBAB & SAS (run as pairs) until clean or something that cannot be cleaned.

HJT scan informs what has not been handled (computer restart before HJT scan)

 

[OldGREGORY]

So after that i should be good right?
im performing the scans now

 

[orendk]

infected w sagispul.com can't access spyware

I am infected with sagispul.com. When I try to download antispyware.com or hijackthis.com I get a cannot load page error. How can I get around this to download a fix?

 

[OldGREGORY]

follow the steps:
https://www.techspot.com/community/topics/updated-4-step-viruses-spyware-malware-removal-preliminary-instructions.58138/

 

[rf6647]

OldGregory, no warranties tonight. I just issued the third overcall to run combo_fix. If the scans are clean and no symptoms remain or reappear, then we are done. HJT catches things that were not handled - but it has its limits too.

 

[OldGREGORY]

when i ran the scans, some things showed up, do you want the logs?

 

[rf6647]

Logs are easy to review. What is important is what you are experiencing for symptoms. Ordinarily, MBAM is clean by the third scan. If there is significant amount of browsing between scans, SAS finds cookies. If SAS keeps reporting traces, that is unusual. HJT is the sweeper - reports what was not handled.