Jump to content

nellie2

Trusted Malware Techs
  • Content Count

    322
  • Joined

  • Last visited

About nellie2

  • Rank
    Advanced Member

Contact Methods

  • Website URL
    http://nellie2.malwareremoval.com/
  • ICQ
    0

Profile Information

  • Location
    UK

Previous Fields

  • Teams:
    Nothing Selected
  1. Yay... Don't forget to rehide your hidden files and folders, they are normally hidden for a good reason. Here are some suggestions to reduce the potential for spyware infection in the future. I strongly recommend installing the following : Spyware Blaster - It will prevent most spyware from ever being installed. Spyware Guard - It offers realtime protection from spyware installation attempts. IE-Spyad - IE-Spyad places over 4000 web sites and domains in the IE Restricted list which will severely impair attempts to infect your system. It basically prevents any downloads (cookies
  2. Nick, who is an admin at Spyware Warrior has posted a bit more info on this issue. ref from here With that in mind, I would use the Microsoft method to remove it. Looks like the AV companies jumped on the bandwagon and said they'd fix it, which was only partially true. They only decloaked it but left it intact. The actual removal is risky and they didn't want to have everyones CD drives disappear. Yet they let people assume on their own that it would be fixed.
  3. With regards to reformatting, it is up to you. I don't like to give up but at the end of the day it is your machine and you must do what ever you feel most comfortable with. I'm concerned that you cannot find these files when you look for them. Have you tried enabling hidden files and folders. Double-click the My Computer icon on the Windows desktop. Select the Tools menu and click Folder Options. Select the View Tab. Under the Hidden files and folders heading select "Show hidden files and folders". Uncheck the "Hide protected operating system files (recommended)" option. U
  4. You said it is 'still scanning all the porn files' Where are these files? Could you show me the path to these files. Please download and install this disk cleanup utility called Cleanup! http://cleanup.stevengould.org/ It will get rid of any malware which may be hiding in your temp folders ( a common hiding place). You will also regain a massive amount of disk space. Set the program up as follows: Click "Options..." Move the arrow down to "Custom CleanUp!" Put a check next to the following (make sure nothing else is checked!): Empty Recycle Bins Delete Cookies Delete Pref
  5. calhoun, try emptying your anti virus and anti spyware application quarrantines. It is most likely that the majority of the files that Ewido is picking up have been quarrantined by your AV as I don't see them running in your log. Reboot when you have done that and try Ewido again
  6. There has been some discussion recently about Rootkits, especially with the Sony Rootkit debacle going on at the minute However... people can get a little confused about rootkits (me included) but Suzi at SpywareWarrior has written an excellent information piece on Rootkits -------------------------------------------------------------------- Quote Suzi; Since rootkits are in the news recently, and a lot of people don't know much, if anything, about rootkits, I thought I'd post some info and a list of rootkit detection apps. Definitions: http://searchsecurity.techtarget.com/g
  7. Run hijackthis and click the scan button, when it has finished scanning then put a tick against the following, close all other browsers and windows and click 'fix checked' O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file) O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - Startup: 360Share On Startup.lnk = C:\Program Files\360Share\Gui\360Share.exe O4 - Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE O4 - Global Startu
  8. Hi calhoun Could you give me an idea of the problems you are having please? How many anti-virus programs do you have running on that PC? It is inadvisable to have more than one providing real time protection as there may be conflicts. Please decide which one you would like to keep and disable the others. You can use them for back up scanning purposes. If you haven't intentionally put My Web Search on your PC then go to add remove programs and uninstall it. Reboot and post a fresh log with an update on your problems and how things are now.
  9. Earwigs are horrible creepy crawlies that you get in the UK with huge pincer things on their bottoms. Hi DD
  10. Well the FxAgentB.exe seems to have done the trick, there isn't even anything left to clean up! You can use IE again now but could you come back tomorrow after using the net for a little while and post one last hijack log with the FxAgentB log. Just so that I can be sure that you aren't re-infected. Here are some suggestions to reduce the potential for spyware infection in the future. I strongly recommend installing the following : Spyware Blaster - It will prevent most spyware from ever being installed. Spyware Guard - It offers realtime protection from spyware installation a
  11. ok it looks like you have managed to get rid of some of the trojans... but you still have a nasty infection there. If possible do not use IE.. everytime you open it the infection will hook deeper into your system. You can try firefox, you might even prefer it!! Then Download FxAgentB.exe from this link FxAgentB.exe and save it to your desktop. After downloading, double-click the FxAgentB file to run it and the program will scan your entire hard drive - this may take a while. When it is done, it will generate a log file called FxAgentB.log - save that information as you will
  12. Please download and run the trial version of Trojan Hunter Then update your anti virus and do a full system scan, also do an online scan at Trend and eTrust or both. When done reboot and post a fresh hijack log please.
×
×
  • Create New...