i have this two virus or spyware jvxnpf.exe kndncso.exe, i saw them in the task manager, they been trying to install other virus but some of them was block by the AVG anti-spyware/virus. i look in the System Information and foud they located in the system32 but i wasn't able to find it. Need help!!!

At the bottom of my post is a link to a read this first page which also has a link for installing hijackthis. Please follow instructions there and post a hijackthis log back into this same thread and we will take a look.

it fine now the deepfreeze helped me clear the virus/spyware. o ya just incase other have the same problem when there that thing on i cant open hijackthis.

Okay good luck.

do you have a way to slove it , because it got infected again, deepfreeze remove it but then it got inside again. maybe it because i don't have a firewall you have any recmmandation.

You really need to post a hijackthis log like suggested above then we can take a look.


4. Consider using a free firewall if you are not already using one. Some good free ones are:
Kerio
http://www.sunbelt-software.com/Kerio.cfm

Zone Labs Personal Firewall:
Zone Labs

Only one firewall is needed

Logfile of HijackThis v1.99.1
Scan saved at 2:13:58 PM, on 5/17/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
E:\PROGRA~2\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\ctfmon.exe
e:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
C:\Program Files\Faronics\Deep Freeze\Install C-0\_$Df\FrzState2k.exe
e:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
e:\PROGRA~2\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\wscntfy.exe
E:\Program Files\Tencent\TT\TTraveler.exe
C:\Program Files\HijackThis\HijackThis.exe

O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVG7_CC] e:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "e:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: DfLogon - C:\WINDOWS\SYSTEM32\LogonDll.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - e:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - e:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - e:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - e:\PROGRA~2\Grisoft\AVG7\avgemc.exe
O23 - Service: DF5Serv - Faronics Corporation - C:\Program Files\Faronics\Deep Freeze\Install C-0\DF5Serv.exe

i think this one dont have virus because the jvxnpf.exe and kndncso.exe are not running right now, and if they are running hijack would work..And i dont't know it a virus or what but when i try to open first image then it will show up the 2nd image

how to download Kerio?