also @ TechSpot: Motorola Droid 4 unboxing, hands-on video
Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Sign up or Login to participate.
Go Back   TechSpot OpenBoards > Tech Support > Virus and Malware Removal
Reload this Page Sagipsul virus Log Posts

Collaborate in the cloud with Office, Exchange, SharePoint, and Lync

Sagipsul virus Log Posts
Thread Tools Search this Thread
  #1  
Old 01-06-2009
Newcomer, in training
  
Member since: Jan 2009, 2 posts
I have contracted the sagipsul virus on my pc and have tried to get rid of it but to no avail.

I get a lot of POP-UPS (some are blank some are not). My system is a tad slower but nothing too noticibable.

My wife said she clicked on an error message and it blanked the screen then reset my resolution and messed with my desktop icons and added a few of its own.


I followed the 8 step guide and any help would be MUCH apprciated!!! Here are my logs...

*Update*

I can only get on the net for maybe 10 minutes at a time it seems. i lose connection and have to restart the computer to get back on.

Not sure if it is only when I am on tech websites or helping sites. Sometimes I can stay on longer when I am on say Yahoo or ESPN.
Attached Files
File Type: txt mbam-log-2009-01-05 (22-04-17).txt (3.3 KB, 3 views)
File Type: log SUPERAntiSpyware Scan Log - 01-05-2009 - 22-31-06.log (1.4 KB, 2 views)
File Type: log hijackthis.log (8.7 KB, 2 views)
Last edited by kimsland; 01-08-2009 at 10:06 AM.. Reason: merged 2 posts
  #2  
Old 01-08-2009
TechSpot Addict
  
Location: Illinois, USA
Member since: Feb 2007, 931 posts
System specs
Code:
C:\WINDOWS\system32\impwxo.dll (Trojan.Vundo.H) -> Delete on reboot.
MBAB did not handle all that it found until the computer restart.


Rescan with MBAB followed by SAS. Repeat until clean or something that cannot be cleaned.

HJT scan informs what has not been handled (computer restart before HJT scan)

Caught by HJT.
Code:
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) >> broken (yahoo companion)
O4 - HKUS\S-1-5-18\..\Run: [msiexec.exe] msiconf.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msiexec.exe] msiconf.exe (User 'Default user')

O20 - AppInit_DLLs: karna.dat impwxo.dll


  • Confirm files appearing in code box have been deleted.
    • 

  • HJT 'tick & fix'  can be used to delete O20 references to files
    • 

  • Or wait for updated MBAM to clean this reference.
    •
Post new logs and describe conditions.
  #3  
Old 01-08-2009
Newcomer, in training
  
Member since: Jan 2009, 2 posts
Hi rf6647. Thank you for yopur reply and I will scan my PC again and post the logs.
Closed Thread

Similar Topics
Topic Replies Forum
Sagipsul.com virus 0 Virus and Malware Removal
Sagipsul virus help 1 Virus and Malware Removal
Sagipsul Virus please help 7 Virus and Malware Removal
Sagipsul Virus 4 Virus and Malware Removal
Sagipsul virus help 7 Virus and Malware Removal

Thread Tools Search this Thread
Search this Thread:

Advanced Search
All times are GMT -4. The time now is 03:10 PM.