Your problem began here
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
In a couple of weeks the service pack 3 (SP3) should be released, you don't have just SP1
Fix with Hijackthis
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\RunServices: [WinProfile] iexpIore.exe
O23 - Service: Windows Accounts Driver (wai3322) - Unknown owner - C:\WINDOWS\System32\50.exe (file missing)
Run the script in AVZ
Код:
begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
StopService('wai3322');
DeleteService('wai3322');
StopService('oUltraf');
DeleteService('oUltraf');
QuarantineFile('C:\WINDOWS\System32\50.exe','');
QuarantineFile('C:\Program Files\Common Files\joipor.vxd','');
QuarantineFile('iexpIore.exe','');
QuarantineFile('C:\WINDOWS\wt\webdriver\webdriver.dll','');
DeleteFile('C:\WINDOWS\wt\webdriver\webdriver.dll');
DeleteFile('iexpIore.exe');
DeleteFile('C:\Program Files\Common Files\joipor.vxd');
DeleteFile('C:\WINDOWS\System32\50.exe');
BC_ImportDeletedList;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
After reboot upload the quarantine and make and upload all 3 logs once more.
After healing immediately install SP2 and all follow patches