virus/stupid, ... |
 May 15 2008, 05:08 PM
Post
#1
|
|
 ;)  Group: Duplicate Posts: 2,374 Joined: Feb 2004 Member No: 3,760  |
Yeah, I guess I was stupid and downloading some stuff and I'm pretty sure I just got a virus.
This thing called malwarrior keeps popping up; I ran a Symantic Endpoint virus scan and it said it found and quarantined 2 trojan horses. Is that all I have to do? Or is there more to do. |
|
|
|
 |
Replies
|
May 17 2008, 01:33 AM
Post
#2
|
|
|
*Influential Guitarist & Inspiring Writer* Group: Official Member Posts: 1,217 Joined: Sep 2004 Member No: 51,134 |
You have some shit going on here so first things first.
1. Open HJT short for HiJack This. 2. Remove the following below, Only the ones I listed if you remove anything else you might cause things to malfunction on your pc. O3 - Toolbar: pvnsmfor - {E738884B-E75D-4AC3-B03F-62F7E7DD853E} - C:\Windows\pvnsmfor.dll (file missing) O3 - Toolbar: pvnsmfor - {E738884B-E75D-4AC3-B03F-62F7E7DD853E} - C:\Windows\pvnsmfor.dll (file missing) O4 - HKLM\..\Run: [MSServer] rundll32.exe C:\Windows\system32\jkkHXNgh.dll,#1 O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [cmds] rundll32.exe C:\Users\Melissa\AppData\Local\Temp\pmnlkIBT.dll,c O4 - HKCU\..\Run: [MSServer] rundll32.exe C:\Users\Melissa\AppData\Local\Temp\xxyyvWOH.dll,#1 Unknown O21 - SSODL: mpfanvqg - {06396094-D56C-45FC-9CBE-AF186F6A8E6C} - C:\Windows\mpfanvqg.dll Unknown O21 - SSODL: vbksrofa - {579A9A79-E045-4AD9-83AA-39FDD1B19A7B} - C:\Windows\vbksrofa.dll You can remove the above by clicking the check box next to its name, after you've done that click on fixed check. Close HJT 3. Download Combofix from here http://download.bleepingcomputer.com/sUBs/ComboFix.exe Please disable any anti-virus or anti-malware you have running before you attempt to run this program, it may cause disruption during the process. during the combo fix it will disconnect you from the internet temporarily so don't freak out or try to reconnect or restart your pc during the process. Just follow the directions when prompted. Close any browsers as well, If you need to you can copy and paste these instructions on to somewhere in your desktop. After Combofix is done open the report from here C:\ComboFix.txt and paste the results here with a new HJT log as well. |
|
|
|
Posts in this topic
heartquasm virus/stupid May 15 2008, 05:08 PM
Supanamu That's all. Once they're quarantined, they... May 15 2008, 05:17 PM dispn0ygonekrazy just to be safe download trend micro hijack this l... May 15 2008, 05:26 PM SkyliteX i got the same thing, malware or something keeps p... May 15 2008, 05:27 PM dispn0ygonekrazy Download trend Micro's Hi Jack this! and p... May 15 2008, 05:44 PM superstitious I updated (upgraded?) AVG recently and now it does... May 15 2008, 05:47 PM
XTC I had a virus recently. I did a system restore an... May 17 2008, 01:06 AM heartquasm so i'm in the middle of getting rid of it now,... May 15 2008, 09:09 PM karmakiller Usually, your antivirus should let you view the qu... May 15 2008, 09:13 PM heartquasm yeah, apparently, my antivirus sucks (my school re... May 15 2008, 09:17 PM karmakiller Oh, okay. I use TrendMicro and in the past two yea... May 15 2008, 09:53 PM dispn0ygonekrazy ok heres the link
http://www.trendsecure.com/port... May 16 2008, 12:38 AM heartquasm i think i fixed it, but here:
QUOTELogfile of Tre... May 17 2008, 12:46 AM heartquasm ^ so i started to do what you told me to do, but t... May 17 2008, 07:15 AM dispn0ygonekrazy Alright then from what I see your log looks a lot ... May 17 2008, 08:47 AM |
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members: