hello and good day to you.

recently i got a virus from a torrent file i downloaded. it was an episode of high stakes poker, and i thought nothing of it cause episodes 1-12 were all fine except one. anyway when i opened it to play it the windows media player came up and then boom everything went black on my screen and i knew it right away what happened.

it corrupted my AVG anti-virus to the point of uselessness, saying the virus database is inccorect. it has corrupted the time and date on my computer noting the date as novevember 6 2002 and a time that is many hours behind. it will not let me change the time or the date also. when i try to update the time by "automatically syncronize with an internet time server" it just says "an error occured getting the status of the last syncronization, the RPC server is unavailable" when i try to use my google spell checker it will not let me. when im loggin into hotmail its says some of the certificates are broken. these are just some of the problems im aware of but im sure there are plenty more.

i have a real version of spy sweeper on my computer it found nothing. when i did my AVG scan it found 12 items, but it would not let me heal them. so i deleted AVG and downloaded AVAST! and that is not helping me either, the scan took over 8 hours found a virus but it doesnt seem like it fixed anything. i have also downloaded ewido and updated the files first and ran the full system scan and it is not finding the problem.



ok that was my post in the other thread that bram was so kind to help my out with and show me the steps needed to be done to get to this point. thx to anyone who can help me with these log files.

ps i have windows xp. P3 800 mghz i think. 13.6 gb hard drive cable modem. hope thats everything

Hya Addy.


I dont see to much wrong there.

Boot youre pc in safemode (hit f8 when booting up)


Click Start>Run and type in: services.msc
Click OK
In the Services window find: Symantec Network Drivers Service
Select/highlight and right click the entry, and choose: Properties
On the General tab, under Service Status click the Stop button
Beside: Startup Type, in the drop menu, select: Disabled
Click Apply, then OK

Open HJT and click config > misc tools > ?delete an NT service?
Copy and past: SNDSrvc
Click OK.

Then fix these with hjt:

Reboot and post a new hjt log please.


And any luck with the Panda scan? Did you save the log from that?

hi joe,

i followed what you said. and when i went "delete an NT service" with SNDSrvc it said " the service you entered is system critical. it can't be deleted"

so i stopped at that point not sure if i should continue with the rest of the steps?


ps i never got a chance to finish the panda scan

hey joe

ya so i did a panda scan and it didnt find any viruses which is good.


i skipped the step of "delete an NT service" SNDSrvc because it would not let me delete it.

but i did fix the 4 files with HJT like you told me. and i ran a new scan. here are the results at the bottom

my pc seems to be runnin a bit better, tho its still kind of groggy.

the worst problem is the time and date. which wants to stay as wednesday november.6 , 2002 for some reason, with the time hours behind as well. my windows automatic update comes up everytime i re-start the computer, cause it thinks it is out of date. when i tried to check for updates from microsoft myself on their site, it gave me an error cause my time/date were out of wack, and gave me 3 ways to correct it. but all 3 ways on the microsft website to correct this problem none of them worked. please help again when u get a chance. thx

hey again.

the panda scan didnt find anything. so i ran an avast scan and it found lots!

here is a name of the file it found "win32:klez-H [WRM] "

i noticed that that it appears to find these viruses in the C: doucements and settings.


the avast scan will prolly take a few hours so ill edit this post when its done, with the final number of viruses it finds.

talk to you later

You dont use Norton anymore , and it has been uninstalled i think? Then it shouldn't be a problem to remove that Symantec service.

And if you fix this one with hjt then youre log should be clean:

And this tool should be able to remove that Klez virus:

http://www3.ca.com/Files/VirusInform...on/ClnKlez.zip

Have a look if Avast still finds anything after running that tool , and then please post the results from Avast and a new hjt log.

hello joe thx for the reply

i ran that winklez virus tool you gave me and it found nothing

ill post the log from it.

and also here is the new HJT log.

thx again