after running smitfraud and read first

After running through the read and run first, and then the smit fraud i still have one pop up. I must have missed a step somewhere here. Thanks for your help so far.
Here is the rapport log.

SmitFraudFix v2.274

Scan done at 15:22:12.14, Thu 12/27/2007
Run from C:\Documents and Settings\Amber\Desktop\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Killing process


»»»»»»»»»»»»»»»»»»»»»»»» hosts


127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files


»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix.exe by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Intel(R) PRO/100 VE Network Connection - Packet Scheduler Miniport
DNS Server Search Order: 204.127.203.135
DNS Server Search Order: 216.148.225.135

HKLM\SYSTEM\CCS\Services\Tcpip\..\{B6FA9D37-D652-48F8-B272-F92C4CC3FFEC}: DhcpNameServer=204.127.203.135 216.148.225.135
HKLM\SYSTEM\CS1\Services\Tcpip\..\{B6FA9D37-D652-48F8-B272-F92C4CC3FFEC}: DhcpNameServer=204.127.203.135 216.148.225.135
HKLM\SYSTEM\CS3\Services\Tcpip\..\{B6FA9D37-D652-48F8-B272-F92C4CC3FFEC}: DhcpNameServer=204.127.203.135 216.148.225.135
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=204.127.203.135 216.148.225.135
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=204.127.203.135 216.148.225.135
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=204.127.203.135 216.148.225.135


»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» End

 

Hi travamber
Welcome to MajorGeeks!

If you ran all the steps in the READ & RUN ME FIRST thread, then you should have logs for Combofix, AVG-Antispyware 7.5, and for MGlogs.zip. Please post these logs to us so we can see what got missed.

Thanks.
abri

 

sorry i'm not too great with this here... how do i find these logs Combofix, AVG-Antispyware 7.5, and for MGlogs.zip. i didn't run into these during the read and run steps.
thanks

 

Hi travamber!
The READ & RUN ME FIRST clarifies where each log can be found and what the name of the log is. If you go to this link and then scroll down to the bottom, you'll see instructions for your operating system. Click on the appropriate link and you will find more detailed information about the logs and how they are stored on the page that comes up. You can do a simple search of your system to find the logs. The MGlogs.zip will be located directly under the drive where your operating system is located (usually C). Combofix may have been installed to a default location where your downloads go. The log will be located wherever you put Combofix. The AVG-Antispyware scan may or may not have produced a log. Can you remember what it found and if it fixed those things it found?
abri