|
Posted by Malke on May 11, 2008, 11:57 pm
Please log in for more thread options
sean_in_cali@yahoo.com wrote:
> Hello everyone.
>
> I had the same problem as in other virus/adware/spyware except i know
> where i got it--while I was browsing a friend's myspace pictures.
>
> First the IE7 crashed and then acrobat reader open with a blank file
> called index. And then the desktop flashed and turned into red
> background with a message in the middle saying I have been infected
> with a spyware.
>
> And the link the the middle of the desktop(yes the desktop turned red
> and had a hyper link in the middle) took me to antispyspider.us/69
> website which appears to be antispyware program page.
>
> Of course I didn't enter any information on it because it's probably a
> phishing website.
>
> I managed to remove webhancer and 15 other trojans that infected my
> computer using SDFix upon booting into safemode. That seems to have
> gotten rid of most of the problem, all except one.
>
> When I run hijackthis it brings back this entry which cannot be
> deleted.
>
> O4 - HKLM\..\Run: [BM271f59cb] Rundll32.exe "C:\WINDOWS
> \system32\qwfkxbss.dll",s Unknown application.
>
> I can't delete this process using hijack this and when I'm using IE7 i
> get unwated popups about malwares and spywares now.
(snippage)
We don't interpret HijackThis or SDFix logs here in the MS newsgroups. It
takes a great deal of time and expertise to analyze these logs and you will
not get the help you need here.
Choose one of the specialty forums below, register, read its posting FAQ,
and post your log(s) there in the manner they request. You will generally
be asked to:
1. Download and execute HiJack This! (HJT) -
http://www.trendsecure.com/portal/en-US/threat_analytics/HJTInstall.exe
2. Disable Notepad's word wrap - In Notepad.exe; Format --> uncheck; "Word
wrap"
3. Download/run Deckard's System Scanner -
http://www.techsupportforum.com/sectools/Deckard/dss.exe
4. Save the scan results (Main.txt and Extra.txt)
5. And then post the contents of Main.txt and Extra.txt in your post at the
forum you chose. DO NOT POST LOGS IN THE MS NEWSGROUPS.
http://aumha.org/downloads/hijackthis.zip
http://www.aumha.org/a/hjttutor.htm - HijackThis tutorial by Merijn
http://www.bleepingcomputer.com/forums/index.php?showtutorial=42 - another
tutorial
http://aumha.net/ - Click on the HijackThis forum. Read the announcement and
the stickies *first*.
http://www.atribune.org/forums/index.php?showforum=9
http://aumha.net/viewforum.php?f=30
http://www.bleepingcomputer.com/forums/forum22.html
http://castlecops.com/forum67.html
http://www.dslreports.com/forum/cleanup
http://www.cybertechhelp.com/forums/forumdisplay.php?f=25
http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html
http://gladiator-antivirus.com/forum/index.php?showforum=170
http://spywarewarrior.com/viewforum.php?f=5
http://forums.techguy.org/54-security/
Malke
--
MS-MVP
Elephant Boy Computers
www.elephantboycomputers.com
Don't Panic!
| 
XML Sitemap