also @ TechSpot: Microsoft unveils Windows 7 pricing, upgrade programs
Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Login to participate.
Go Back   TechSpot OpenBoards > Operating Systems & Software > Virus & Malware removal
Reload this Page Sagipsul virus Log Posts

Sagipsul virus Log Posts

Reply
Bookmark Thread Tools
  #1  
Old 01-06-2009
Newcomer, in training
  
Member since: Jan 2009, 2 posts
I have contracted the sagipsul virus on my pc and have tried to get rid of it but to no avail.

I get a lot of POP-UPS (some are blank some are not). My system is a tad slower but nothing too noticibable.

My wife said she clicked on an error message and it blanked the screen then reset my resolution and messed with my desktop icons and added a few of its own.


I followed the 8 step guide and any help would be MUCH apprciated!!! Here are my logs...

*Update*

I can only get on the net for maybe 10 minutes at a time it seems. i lose connection and have to restart the computer to get back on.

Not sure if it is only when I am on tech websites or helping sites. Sometimes I can stay on longer when I am on say Yahoo or ESPN.
Attached Files
File Type: txt mbam-log-2009-01-05 (22-04-17).txt (3.3 KB, 3 views)
File Type: log SUPERAntiSpyware Scan Log - 01-05-2009 - 22-31-06.log (1.4 KB, 2 views)
File Type: log hijackthis.log (8.7 KB, 2 views)
Last edited by kimsland; 01-08-2009 at 09:06 AM.. Reason: merged 2 posts
Reply With Quote
  #2  
Old 01-08-2009
TechSpot Booster
  
Location: Illinois, USA
Member since: Feb 2007, 900 posts
System specs
Code:
C:\WINDOWS\system32\impwxo.dll (Trojan.Vundo.H) -> Delete on reboot.
MBAB did not handle all that it found until the computer restart.


Rescan with MBAB followed by SAS. Repeat until clean or something that cannot be cleaned.

HJT scan informs what has not been handled (computer restart before HJT scan)

Caught by HJT.
Code:
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) >> broken (yahoo companion)
O4 - HKUS\S-1-5-18\..\Run: [msiexec.exe] msiconf.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msiexec.exe] msiconf.exe (User 'Default user')

O20 - AppInit_DLLs: karna.dat impwxo.dll


  • Confirm files appearing in code box have been deleted.
    • 

  • HJT 'tick & fix'  can be used to delete O20 references to files
    • 

  • Or wait for updated MBAM to clean this reference.
    •
Post new logs and describe conditions.
Reply With Quote
Login to remove this ad - join the TechSpot Community for free.
  #3  
Old 01-08-2009
Newcomer, in training
  
Member since: Jan 2009, 2 posts
Hi rf6647. Thank you for yopur reply and I will scan my PC again and post the logs.
Reply With Quote
Reply
Thread Tools


Similar Topics
Topic Category Replies Last Post
Sagipsul.com Virus Virus & Malware removal 5 01-09-2009 01:14 AM
Sagipsul Virus please help Virus & Malware removal 7 01-08-2009 06:24 AM
Help with sagipsul virus Virus & Malware removal 3 01-05-2009 08:53 AM
Sagipsul Virus Virus & Malware removal 4 01-02-2009 08:34 PM
Sagipsul virus help Virus & Malware removal 7 01-02-2009 06:06 PM


All times are GMT -4. The time now is 05:32 PM.