kristen930

Could anyone please tell me what SMDialog is and if I need to get rid of it? I have noticed that when I start up my computer, SMDialog appears in the Applications tab of the Windows Task Manager. I have found very little information when I googled it. One site said, "This signature detects attempts to exploit a known vulnerability in Microsoft Internet Explorer (IE). IE 5.5 is vulnerable; IE 5 SP2 and 6.0 SP1 are not vulnerable. IE does not confirm that multiple open browser windows are operating in the proper security zones; attackers can obtain sensitive information from the host cache."

Hi all, I was online today on the same websites I always go to and am very familiar with. All of a sudden, the site I was on switched itself over to another site I had never been to. I immediately clicked back to my homepage and looked at my recent history. Aside from the normal sites I had been it, the history said I was just at valarysearch. com, clickndirect. com, and also listed findwhat.dll, go.php, and click.valary. Has anyone heard of these and if they can harm my computer in any way?? I really don't think I had a stray click when I was online. Nothing has happened since,

I am using a different computer to reply right now. I have been keeping my computer offline today and re-ran several of the programs recommended here. ThreatExpert came back with everything being safe. I will have a more secure internet connection this weekend, and will wait until then to do your suggestions. I am not familiar with Mediafire. Since ThreatExpert has its log come up on the internet browser, so I just do "Save Page As" and send that via Mediafire? Thank you

Thank you for the clarification. To me, my computer seems to be running well. When I ran ThreatExpert yesterday afternoon, it told me my computer was clean. Later that night, it found some malicious entries. I just re-ran ThreatExpert, and here are the details. Thank you. Full Scan Summary: * Scan details: o Scan started: Wednesday, December 17, 2008 15:32:01 o Scan time: 02 minutes, 02 seconds o Number of memory objects scanned: 4708 + processes: 41 + modules: 1471 + heap pages: 319

I think something may have messed up today. I was on my computer tonight and pressed "Control+ALT+DEL" for the Windows Task Manager, and under the Processes, I saw (and still see) csrss.exe. I have spent limited time on-line today, mainly coming to this forum to check this post. I am currently on a shared wireless internet at a hotel, and was wondering if it might be possible that someone is infecting my computer through this shared connection? I have run MBAM, and have also re-ran ComboFix and HJT. I did not see csrss.exe in the logs, but it is still under the Processes. Thank you,

I hope these are what you need below! ComboFix ComboFix 08-12-15.08 - Kristen 2008-12-16 16:18:14.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.511.284 [GMT -6:00] Running from: c:\documents and settings\Kristen\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\Kristen\Desktop\CFScript.txt * Created a new restore point FILE :: c:\windows\system\VMwareService.exe c:\windows\system32\drivers\RKHit.sys c:\windows\system32\drivers\srwsvc.sys c:\windows\system32\mlJYrSjK.dll . ((((((((((((((((((((((((((((((((((((((( Other

Here is the ComboFix log. My only problem came at the end when my computer was rebooted. I had disabled Norton Antivirus, but it was back on once the system was rebooted. I did tell it to allow ComboFix to proceed. Sorry about that...if I need to run ComboFix again, please let me know and I will set Norton to not start up during reboot. Thank you! ComboFix 08-12-15.08 - Kristen 2008-12-16 14:27:03.1 - NTFSx86 Running from: c:\documents and settings\Kristen\Desktop\ComboFix.exe . ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))

Tonight the Norton program on my computer was going crazy with pop-ups saying that I was trying to send e-mails with Subjects that looked like typical spam to addresses I was not familiar with. I ran some other programs, and found that csrsc.exe and VMwareservice.exe and a bunch of backdoor trojans are on my computer. I found on another post here a program called SDFix, and these are the results below. I am stuck as to what to do next. Thank you in advance for any help you can give me!! SDFix: Version 1.240 Run by Kristen on Mon 12/15/2008 at 11:21 PM Microsoft Windows XP [V