Malware and Browser crashes

Microsoft Windows xp professional editio...
October 17, 2009 at 00:38:59
Specs: Windows XP Professional SP2, Intel Celeron D 2.53 GHz with 1.21 GB RAM HDD is 40 gb
Hey techies ! Look I am quite new here i have
banged my head
against various site but no results i have come
with high hopes !
and believe my prob will be solved here !
Look I recently reformatted my computer and
installed Win XP SP2
from a fake CD it all went good but the CD
seems to be having virus
because resident shield of avg free edition has
detected
Win32.Virut in my computer ! anyways i
removed it by going to the
resident shield detection vault (hopefully) then i
downloaded and ran
rmvirut from grisoft which claims to remove this
virus it did not
detect any virus (i performed the scan in safe
mode ,and in normal
mode with no net connection) nothing has
been detected . now the
question is
Q1) Am I completely relived of this win32virut ?
Q2) Why are all my browsers (firefox 3.5 and
ie6) crashing after
opening them.....I mean whenever i open
firefox it opens fine and
works out well but after some time without any
reason a message
comes firefox.exe has encountered a problem
and needs to close !
i have reinstalled it but no relief !
i have AVG FREE .spybot search and destroy
,malwarebytes
,dr,web cure it i constantly perform scans
using the above cited
anti viruses but nothing is detected, avg had
also detected
HackTool.EEG but it moved it to virus vault or
deleted it !
Now only google chrome is not crashing
(probably it is not infected
yet) here I am posting my log of resident
shield detectionand
results of AVG


"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004842.exe";"Move
d to Virus
Vault";"10/15/2009, 7:41:02
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004841.exe";"Move
d to Virus
Vault";"10/15/2009, 7:41:00
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004840.exe";"Move
d to Virus
Vault";"10/15/2009, 7:40:59
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004839.exe";"Move
d to Virus
Vault";"10/15/2009, 7:40:57
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004838.exe";"Move
d to Virus
Vault";"10/15/2009, 7:40:55
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004837.exe";"Move
d to Virus
Vault";"10/15/2009, 7:40:54
AM";"file";"C:\WINDOWS\system32\MRT.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004842.exe";"Delet
ed";"10/15/2009,
7:18:26 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004841.exe";"Delet
ed";"10/15/2009,
7:18:25 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004840.exe";"Delet
ed";"10/15/2009,
7:18:24 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004839.exe";"Delet
ed";"10/15/2009,
7:18:23 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004838.exe";"Delet
ed";"10/15/2009,
7:18:21 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004837.exe";"Delet
ed";"10/15/2009,
7:18:20 AM";"file";"C:\Program Files\Windows
Defender\MsMpEng.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004842.exe";"Delet
ed";"10/15/2009,
7:09:26 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004841.exe";"Delet
ed";"10/15/2009,
7:09:23 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004840.exe";"Delet
ed";"10/15/2009,
7:09:21 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004839.exe";"Delet
ed";"10/15/2009,
7:09:19 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004838.exe";"Delet
ed";"10/15/2009,
7:09:16 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004837.exe";"Delet
ed";"10/15/2009,
7:09:14 AM";"file";"C:\Program
Files\Malwarebytes' Anti-
Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\TuxPaint\tuxpaint.exe";"Move
d to
Virus Vault";"10/14/2009, 8:46:02
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\TuxPaint\tuxpaint-
config.exe";"Moved
to Virus Vault";"10/14/2009, 8:45:59
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004836.exe";"Move
d to Virus
Vault";"10/14/2009, 8:45:46
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004835.exe";"Move
d to Virus
Vault";"10/14/2009, 8:45:41
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004834.exe";"Move
d to Virus
Vault";"10/14/2009, 8:45:37
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP10\A0003499.exe";"Move
d to Virus
Vault";"10/14/2009, 8:45:20
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\Paint.NET\WiaProxy32.exe";
"Moved
to Virus Vault";"10/14/2009, 8:45:12
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\Paint.NET\UpdateMonitor.exe
";"Moved to Virus
Vault";"10/14/2009, 8:45:09
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\Paint.NET\SetupNgen.exe";"
Moved
to Virus Vault";"10/14/2009, 8:45:04
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\Paint.NET\PaintDotNet.exe";"
Moved
to Virus Vault";"10/14/2009, 8:44:57
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found
Win32/Virut";"F:\Games\PC\IGI.exe";"Moved
to Virus
Vault";"10/14/2009, 8:43:14
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Virus found Win32/Virut";"F:\Games\Mortal
Kombat
4\Setup.exe";"Moved to Virus
Vault";"10/14/2009, 8:43:10
PM";"file";"C:\Program Files\Malwarebytes'
Anti-
Malware\mbam.exe"
"Virus found Win32/Virut";"F:\Games\Mortal
Kombat 4\Mortal
Kombat 4.exe";"Moved to Virus
Vault";"10/14/2009, 8:43:06
PM";"file";"C:\Program Files\Malwarebytes'
Anti-
Malware\mbam.exe"
"Potentially harmful program
HackTool.EEG";"C:\Documents and
Settings\Gurtej\My
Documents\Downloads\keyfinder.v1.51\keyfind
er.exe";"Deleted";"1
0/11/2009, 10:38:36
PM";"file";"C:\WINDOWS\explorer.exe"
"Potentially harmful program
HackTool.EEG";"C:\Documents and
Settings\Gurtej\My
Documents\Downloads\keyfinder.v1.51\keyfind
er.exe";"Moved to
Virus Vault";"10/11/2009, 10:38:32
PM";"file";"C:\Program
Files\WinRAR\WinRAR.exe"
"Virus found
Win32/Virut";"F:\Audacity\audacity.exe";"Dele
ted";"10/11/2009,
6:59:02
PM";"file";"C:\WINDOWS\explorer.exe"
"Potentially harmful program
HackTool.BVP";"C:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP5\A0002061.exe";"Moved
to Virus
Vault";"10/8/2009, 4:03:42
PM";"file";"C:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe"
"Potentially harmful program
HackTool.BVP";"C:\Documents and
Settings\Gurtej\Start
Menu\Programs\Startup\Reboot.exe";"Deleted
";"10/8/2009, 3:41:37
PM";"file";"C:\WINDOWS\pchealth\helpctr\bin
aries\msconfig.exe"

And here is the log of AVG Virus Vault


"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004837.exe";"";"10/
15/2009, 7:41:39
AM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004838.exe";"";"10/
15/2009, 7:41:38
AM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004839.exe";"";"10/
15/2009, 7:41:37
AM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004840.exe";"";"10/
15/2009, 7:41:37
AM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004841.exe";"";"10/
15/2009, 7:41:36
AM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004842.exe";"";"10/
15/2009, 7:41:35
AM"
"Infection";"Virus found
Win32/Virut";"F:\Paint.NET\PaintDotNet.exe";"
";"10/14/2009,
8:47:00 PM"
"Infection";"Virus found
Win32/Virut";"F:\Paint.NET\SetupNgen.exe";""
;"10/14/2009,
8:46:57 PM"
"Infection";"Virus found
Win32/Virut";"F:\Paint.NET\UpdateMonitor.exe
";"";"10/14/2009,
8:46:55 PM"
"Infection";"Virus found
Win32/Virut";"F:\Paint.NET\WiaProxy32.exe";
"";"10/14/2009,
8:46:43 PM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP10\A0003499.exe";"";"10/
14/2009, 8:46:39
PM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004834.exe";"";"10/
14/2009, 8:46:33
PM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004835.exe";"";"10/
14/2009, 8:46:30
PM"
"Infection";"Virus found
Win32/Virut";"F:\System Volume
Information\_restore{9655B72D-786D-418C-
AEF2-
E7D005FF46BB}\RP11\A0004836.exe";"";"10/
14/2009, 8:46:28
PM"
"Infection";"Virus found
Win32/Virut";"F:\TuxPaint\tuxpaint-
config.exe";"";"10/14/2009, 8:46:21 PM"
"Infection";"Virus found
Win32/Virut";"F:\TuxPaint\tuxpaint.exe";"";"10/
14/2009, 8:46:19
PM"
"Infection";"Virus found
Win32/Virut";"F:\Games\Mortal Kombat
4\Mortal Kombat 4.exe";"";"10/14/2009,
8:44:02 PM"
"Infection";"Virus found
Win32/Virut";"F:\Games\Mortal Kombat
4\Setup.exe";"";"10/14/2009, 8:43:58 PM"
"Infection";"Virus found
Win32/Virut";"F:\Games\PC\IGI.exe";"";"10/14
/2009, 8:43:54 PM"
"Warning";"Found Tracking
cookie.Revsci";"C:\Documents and
Settings\Gurtej\Application
Data\Mozilla\Firefox\Profiles\anwto69i.default\c
ookies.sqlite";"";"10/
14/2009, 8:39:18 PM"
"PUP";"Potentially harmful program
HackTool.EEG";"C:\Documents and
Settings\Gurtej\Local
Settings\Application
Data\Google\Chrome\User
Data\Default\Cache\f_0001ba";"";"10/14/2009,
7:39:36 PM"
"Warning";"Found Tracking cookie.Serving-
sys";"C:\Documents
and Settings\Gurtej\Cookies\gurtej@serving-
sys[2].txt";"";"10/14/2009, 7:38:55 PM"
"Warning";"Found Tracking
cookie.2o7";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@msnportal.112
.2o7[1].txt";"";"10/14
/2009, 7:38:54 PM"
"Warning";"Found Tracking
cookie.Doubleclick";"C:\Documents
and Settings\Gurtej\Application
Data\Mozilla\Firefox\Profiles\anwto69i.default\c
ookies.sqlite";"";"10/
14/2009, 7:38:54 PM"
"Warning";"Found Tracking
cookie.Webtrends";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@m.webtrends[
2].txt";"";"10/14/2009
, 7:38:46 PM"
"Warning";"Found Tracking cookie.Serving-
sys";"C:\Documents
and
Settings\Gurtej\Cookies\gurtej@bs.serving-
sys[2].txt";"";"10/14/2009, 7:38:45 PM"
"Warning";"Found Tracking
cookie.Yieldmanager";"C:\Documents
and
Settings\Gurtej\Cookies\gurtej@ad.yieldmana
ger[2].txt";"";"10/14/2
009, 7:38:45 PM"
"PUP";"Potentially harmful program
HackTool.EEG";"C:\Documents and
Settings\Gurtej\My
Documents\Downloads\keyfinder.v1.51\keyfind
er.exe";"";"10/11/200
9, 10:38:46 PM"
"Infection";"Virus found
Win32/Virut";"E:\SUPER_~1.EXE";"";"10/11/2
009, 12:59:15 AM"
"Infection";"Trojan horse
Downloader.Banload.AOOE";"E:\Other\Setup\
Firefox Setup
3.5.1.exe";"";"10/11/2009, 12:57:03 AM"
"Infection";"Virus found
Win32/Virut";"E:\NOTEPAD.EXE";"";"10/11/20
09, 12:57:02 AM"
"Infection";"Virus found
Win32/Virut";"E:\RUNDLL32.EXE";"";"10/11/20
09, 12:57:00 AM"
"Infection";"Virus found
Win32/Virut";"E:\CISVC.EXE";"";"10/11/2009,
12:56:58 AM"
"Infection";"Virus found
Win32/Virut";"E:\SPOOLSV.EXE";"";"10/11/20
09, 12:56:56 AM"
"Infection";"Virus found
Win32/Virut";"E:\INCDSRV.EXE";"";"10/11/200
9, 12:56:54 AM"
"Infection";"Virus found
Win32/Virut";"E:\USERINIT.EXE";"";"10/11/20
09, 12:56:53 AM"
"Infection";"Virus found
Win32/Virut";"E:\EXPLORER.EXE";"";"10/11/2
009, 12:56:52 AM"
"Infection";"Virus found
Win32/Virut";"E:\A0061985.EXE";"";"10/11/20
09, 12:56:50 AM"
"Infection";"Virus found
Win32/Virut";"E:\USRPRBDA.EXE";"";"10/11/
2009, 12:56:45 AM"
"PUP";"Potentially harmful program
HackTool.BVP";"C:\System
Volume Information\_restore{9655B72D-786D-
418C-AEF2-
E7D005FF46BB}\RP5\A0002061.exe";"";"10/8
/2009, 4:03:50 PM"
"Warning";"Found Tracking
cookie.Revsci";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@revsci[2].txt";"
";"10/8/2009,
3:51:31 PM"
"Warning";"Found Tracking
cookie.2o7";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@msnportal.112
.2o7[1].txt";"";"10/8/
2009, 3:51:31 PM"
"Warning";"Found Tracking
cookie.Webtrends";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@m.webtrends[
2].txt";"";"10/8/2009,
3:51:31 PM"
"Warning";"Found Tracking
cookie.Atdmt";"C:\Documents and
Settings\Gurtej\Cookies\gurtej@atdmt[1].txt";"
";"10/8/2009,
3:51:31 PM"
"Warning";"Found Tracking
cookie.Yieldmanager";"C:\Documents
and
Settings\Gurtej\Cookies\gurtej@ad.yieldmana
ger[1].txt";"";"10/8/20
09, 3:51:31 PM"
"Warning";"Found Tracking
cookie.Doubleclick";"C:\Documents
and Settings\Gurtej\Application
Data\Mozilla\Firefox\Profiles\f9njktar.default\co
okies.sqlite";"";"10/8
/2009, 3:51:31 PM"

Please help me ! !


See More: Malware and Browser crashes

Report •


#1
October 20, 2009 at 20:11:00
The problem you are having is actually one I've had myself.
Because you installed Windows from a fake CD, AVG is probably detecting the file that cracked the CD in the first place.
Anti-viruses are also meant to stop cracks, as well as viruses.
Also because you installed from a fake CD, it's not guaranteed
that everything is going to work 100%. My suggestion, get a
legal copy of Windows XP (E-bay, or Amazon works) to get rid of
these problems.

Report •
Related Solutions


Ask Question