How to get rid of this Virus

Computing.Net > Forums > Security and Virus > How to get rid of this Virus

Computer Problems? Computing.Net has over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to start participating now! Also, be sure to check out the New User Guide.

How to get rid of this Virus

Name: tom.holland
Date: November 27, 2006 at 13:01:43 Pacific
OS: microsoft windows XP
CPU/Ram: Intel Centrino
Product: Dell Inspiron 6000

Comment:

This virus was passed over MSN MESSENGER and i cannot get rid of it off my computer. please help. it is entitled 'is that u? http://tuspics.tu.funpic.org/index....

Sponsored Link

Ads by Google

Response Number 1

Name: jabuck
Date: November 27, 2006 at 19:37:55 Pacific

Reply:

Please post a Hijack This log so that the files associated with the virus/spyware/hijacker can be identified.
Please download HJTsetup.exe from this link http://www.thespykiller.co.uk/files/HJTsetup.exe to your desktop.
Doubleclick on the HJTsetup.exe icon on your desktop.
By default it will install to C:\Program Files\Hijack This.
Continue to click "next" in the setup dialogue boxes until you get to the "Select Addition Tasks" dialogue.
Put a check by "Create a desktop icon" then click "Next" again.
Continue to follow the rest of the prompts from there.
At the final dialogue box click "Finish" and it will launch Hijack This.
Click on the "Do a system scan and save a logfile" button. It will scan and the log should open in notepad.
Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log and post it in this thread.
Do not fix anything yet unless you know what you are doing. This is a powerful tool that can crash the computer if used improperly.

Response Number 2

Name: Jennifer SUMN
Date: November 28, 2006 at 09:37:19 Pacific

Reply:

What is the name of the virus?
Life is more painless for those who are brainless.

Response Number 3

Name: www
Date: November 28, 2006 at 13:17:24 Pacific

Reply:

the most common one with that link has a free fix at symantec.
http://www.symantec.com/security_re...

Response Number 4

Name: Abnormal
Date: November 28, 2006 at 13:31:04 Pacific

Reply:

Hi Jennifer,
what others call it.

Response Number 5

Name: djmikey1
Date: November 30, 2006 at 03:04:51 Pacific

Reply:

help me quick!!!!!!!!!
this is the report from this test
SmitFraudFix v2.125
Scan done at 5:54:16.68, Thu 11/30/2006
Run from C:\Documents and Settings\Mike\Desktop\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
Fix run in normal mode
»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
C:\WINDOWS\system32\issearch.exe FOUND !
C:\WINDOWS\system32\ot.ico FOUND !
C:\WINDOWS\system32\tpedvf.dll FOUND !
C:\WINDOWS\system32\components\flx?.dll FOUND !
C:\WINDOWS\system32\components\flx??.dll FOUND !
C:\WINDOWS\system32\components\flx???.dll FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Mike

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Mike\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Start Menu
C:\DOCUME~1\ALLUSE~1\STARTM~1\Online Security Guide.url FOUND !
C:\DOCUME~1\ALLUSE~1\STARTM~1\Security Troubleshooting.url FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Mike\FAVORI~1
C:\DOCUME~1\Mike\FAVORI~1\Antivirus Test Online.url FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» Desktop
C:\DOCUME~1\ALLUSE~1\Desktop\Online Security Guide.url FOUND !
C:\DOCUME~1\ALLUSE~1\Desktop\Security Troubleshooting.url FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
C:\Program Files\Safety Bar\ FOUND !
C:\Program Files\Virus-Bursters\ FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys

»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{1a01a98c-4f25-42e1-971a-185cf63569b2}"="expatriates"
[HKEY_CLASSES_ROOT\CLSID\{1a01a98c-4f25-42e1-971a-185cf63569b2}\InProcServer32]
@="C:\WINDOWS\system32\tpedvf.dll"
[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1a01a98c-4f25-42e1-971a-185cf63569b2}\InProcServer32]
@="C:\WINDOWS\system32\tpedvf.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{A4F94C0C-54A7-4DB1-9AF3-B22E63D00404}"="z"
[HKEY_CLASSES_ROOT\CLSID\{A4F94C0C-54A7-4DB1-9AF3-B22E63D00404}\InProcServer32]
@="C:\WINDOWS\system32\fontextd.dll"
[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{A4F94C0C-54A7-4DB1-9AF3-B22E63D00404}\InProcServer32]
@="C:\WINDOWS\system32\fontextd.dll"
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~1\\GOOGLE\\GOOGLE~1\\GOEC62~1.DLL WIKI.DLL"

»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection

»»»»»»»»»»»»»»»»»»»»»»»» End

get rid of virus on my mac computer vi select all getting rid of null characters get weekday does reformatting get rid of viruses dos get system month how to get to c prompt get rid of linux ndd get free cna practice test online	exe to deb exe to msi exe to msi cure of boot viruses how to get rid of autocomplete how to get rid of pop up ads default.sfx virus hiack this get rid of partitions get rid of mirc
See More

Response Number 6

Name: jabuck
Date: November 30, 2006 at 03:38:49 Pacific

Reply:

djmickey1, You will need to start your own thread. It is considered rude to to post your problem in someone elses post, especially without a solution to the original posters problem.

Sponsored Link

Ads by Google

scan rebbots at 55.cab

b.exe Removal?!

Post Locked

This post is quite old and has been locked from receiving new replies. Please create a new posting instead.

Go to Security and Virus Forum Home

Sponsored links

Ads by Google

Results for: How to get rid of this Virus

how to get rid of W32/Duni.worm.b ?

Summary

www.computing.net/answers/security/how-to-get-rid-of-w32duniwormb-/4792.html

how to get rid of offeroptimizer

Summary

www.computing.net/answers/security/how-to-get-rid-of-offeroptimizer-/13219.html

NDr...how to get rid of it

Summary

www.computing.net/answers/security/ndrhow-to-get-rid-of-it/18312.html

From the Geek Dictionary
pew pew - Spunk, usually used near the term QQ. The term was made from the sound of...

Ask a Question!

Weekly Poll
Do you think Comcast should have bought NBC?

Poll Finishes In 4 Days.
Discuss in The Lounge
Poll History

Recent Posts
Did I buy the wrong hard drive?

Boot to usb from floppy

New CPU Now no boot! HELP

Computer wont start

copied dvd not rec ognized by the pc

All Awaiting Reply

Tom's News
Sony's PlayStation Turns 15

Google Goggles Lets You Search by Sight

SWAT Team Busts Guy For Assembling LEGO Gun

Crappy AT&T Service? There's an App for That

Amazon: We're Not Opening Physical Stores

More Tom's Guide News

Data Recovery

Manufacturer List | About Us | Advertising Info | Contact Us
The information on Computing.Net is the opinions of its users. Such opinions may not be accurate and they are to be used at your own risk. Computing.Net cannot verify the validity of the statements made on this site. Computing.Net and Computing.Net LLC hereby disclaim all responsibility and liability for the content of Computing.Net and its accuracy.
PLEASE READ THE FULL DISCLAIMER AND LEGAL TERMS BY CLICKING HERE