Anyone have a virus remover cause My comp is infected like hell
I mean like
newdotnet
coolWWsearch
sexlist
wildtrojan
complexel trojanx8
winfixer and alot more too much to name

Please Help

Please Help Please READ (http://www.warboards.org/showthread.php?t=4133)! :mad:

you most likely will not need to reformat your hard drive or reinstall your OS. get a good virus scanner like norton, i think they have free trials you can download from their website. and get a host of spyware programs, like spybot search & destroy, ad-aware and hi-jack this.

I use AVG and Zonealarm to block all programs, plus an occasional Adaware scan. I first block off all access with Zonealarm for those programs, then I delete them with AVG. I havent had a virus in a long time. Oh, and Get Firefox (http://www.mozilla.com/firefox/).

Same as Mark. You can get it from here. Provided the site still works. It's 3 years forgoten >.>

http://www.gamehippo.com/free_util/avg.shtml (http://www.gamehippo.com/free_util/avg.shtml)

You may need to install CWShredder (http://www.intermute.com/spysubtract/cwshredder_download.html) to get write of CoolWWSearch. The variants of CoolWebSearch have been hard to remove with other programs, or so I hear. SpyBot S&D and Lavasoft Ad-Aware should be able to pick up the rest.

While you're at it, also look up JavaCoolSoftware's SpywareBlaster. It helps prevent your computer from being infected. I know SpyBot, Ad-Aware, and SpywareBlaster are all available at Download.com, so you might want to start there (they also have lots more software!).

Oh, and Get Firefox.
Or Opera (http://www.opera.com/). ;)

Same as Mark. You can get it from here. Provided the site still works. It's 3 years forgoten >.>

http://www.gamehippo.com/free_util/avg.shtml
Or he could just get it from the people that make it: http://free.grisoft.com/doc/2/lng/us/tpl/v5

Due to a small attrition between my McAfee Enterprise and my firewall (http://www.sunbelt-software.com/Kerio.cfm) I'm currently trying over again the latest AVG (http://free.grisoft.com/doc/1) and am glad with it (although it's doesn't offer me as much control as the McAfee A.V. uses to (especially in the WWW connections department).

But I drift away... Zerg_Eater, are you also willing to try a firewall as some implied above (even if not directly)? ;)

I use NOD32. It's only like $15 and well worth it. It is used by Microsoft people too.

WOW
the viruses stopped but starcraft is acting wierd when i got 2 bnet

i still haveit tho

i still have viruses though

Zerg_Eater, what have you tried to get rid of the viruses?

Your order of doing things should probably be:

CWShredder (http://www.download.com/CWShredder/3000-8022_4-10544058.html?tag=lst-0-1)
AVG Anti-Virus (http://www.download.com/AVG-Anti-Virus-Free-Edition/3000-2239_4-10543927.html?tag=lst-0-2)
Lavasoft Ad-Aware (http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10399602.html?tag=lst-0-1)
Spybot S&D (http://www.download.com/Spybot-Search-Destroy/3000-8022_4-10401314.html?tag=lst-0-1)

After you've run all of those, see if there are any more viruses / spyware left.

You should also look into SpywareBlaster (http://www.download.com/SpywareBlaster/3000-8022_4-10486084.html?tag=lst-0-1), which helps prevent spyware from being installed on your computer in the first place.

Note that all product names in this post are links to their page on Download.com, from which you can download them.

...
yeah about AVG
I used to use it and I frgt it already expired :(

I gave you a link to the free version. Uninstall the premium version and install the free version that I linked you to. It comes with free updates, as well.

Damn Viruses Wouldnt Lemme Get In The Internet

Zerg_Eater, what have you tried to get rid of the viruses?

Your order of doing things should probably be:

CWShredder (http://www.download.com/CWShredder/3000-8022_4-10544058.html?tag=lst-0-1)
AVG Anti-Virus (http://www.download.com/AVG-Anti-Virus-Free-Edition/3000-2239_4-10543927.html?tag=lst-0-2)
Lavasoft Ad-Aware (http://www.download.com/Ad-Aware-SE-Personal-Edition/3000-8022_4-10399602.html?tag=lst-0-1)
Spybot S&D (http://www.download.com/Spybot-Search-Destroy/3000-8022_4-10401314.html?tag=lst-0-1)

After you've run all of those, see if there are any more viruses / spyware left.

You should also look into SpywareBlaster (http://www.download.com/SpywareBlaster/3000-8022_4-10486084.html?tag=lst-0-1), which helps prevent spyware from being installed on your computer in the first place.

Note that all product names in this post are links to their page on Download.com, from which you can download them.
hEY thanks man
I... HOPE!!!!! it works
ARGH SOO MANY VIRUSES AVG KEEPS ON GOING VIRUS DETECTED

hey heres a log file
and i got all the files dled
ArchiveData(auto-quarantine- 2006-07-05 16-04-25.bckp)
Referencefile : SE1R113 28.06.2006
================================================== ====

MRU LIST
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=MRU RegReference : software\microsoft\directdraw\mostrecentapplicatio n name

WIN32.TROJAN.AGENT
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[1]=Process : C:\WINDOWS\system32\winaqs32.dll
obj[13]=Regkey : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winaqs32
obj[14]=RegValue : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winaqs32 "DllName"
obj[15]=RegValue : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winaqs32 "Impersonate"
obj[16]=RegValue : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winaqs32 "Startup"
obj[17]=RegValue : SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\winaqs32 "Shutdown"
obj[35]=File : c:\windows\system32\winaqs32.dll

WIN32.TROJAN.DOWNLOADER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[2]=Process : C:\WINDOWS\System32\mlpfc.exe
obj[3]=Process : C:\WINDOWS\System32\mlpfc.exe
obj[23]=Regkey : replace.hbo.1
obj[24]=Regkey : replace.hbo
obj[37]=File : C:\Documents and Settings\IVAN\Local Settings\Temp\vxt1.game
obj[46]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045636.exe
obj[47]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045650.exe
obj[48]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045652.dll
obj[53]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0046686.exe
obj[55]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0047713.exe
obj[57]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0049811.exe
obj[58]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP76\A0050017.exe
obj[59]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP76\A0050052.exe
obj[60]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP76\A0050055.dll
obj[64]=File : C:\WINDOWS\inet20026\alg.exe
obj[65]=File : C:\WINDOWS\inet20026\alg.exe.bak
obj[66]=File : C:\WINDOWS\system32\0c95d8be.exe
obj[67]=File : C:\WINDOWS\system32\mlpfc.exe
obj[68]=File : C:\WINDOWS\system32\xhwjmlk.exe

TIMESINK
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[4]=Regkey : clsid\{1dc1fa5e-773d-11d3-9f9f-006097a7311b}
obj[5]=Regkey : flexactive.flexactive
obj[6]=Regkey : flexactive.flexactive.1
obj[7]=Regkey : interface\{1dc1fa5d-773d-11d3-9f9f-006097a7311b}
obj[8]=Regkey : interface\{572a659c-37c9-11d4-b552-00c04f797b69}
obj[9]=Regkey : typelib\{1dc1fa50-773d-11d3-9f9f-006097a7311b}

ABETTERINTERNET.NAIL
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[10]=RegData : software\microsoft\windows nt\currentversion\winlogon "Shell"

WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[11]=RegData : software\microsoft\windows nt\currentversion\winlogon "Shell"

POSSIBLE BROWSER HIJACK ATTEMPT
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[12]=RegData : Software\Microsoft\Internet Explorer\Main "Start Page"

COOLWEBSEARCH
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[18]=Regkey : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer \Browser Helper Objects\{5321e378-ffad-4999-8c62-03ca8155f0b3}
obj[25]=Regkey : software\microsoft\downloadmanager
obj[26]=RegValue : software\microsoft\internet explorer\main "Enable Browser Extensions"
obj[27]=RegValue : software\microsoft\windows nt\currentversion\windows "run"
obj[28]=RegValue : software\microsoft\windows\currentversion\run "xp_system"
obj[29]=RegValue : software\microsoft\windows\currentversion\runservi ces "SystemTools"

TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[19]=IECache Entry : Cookie:admin@realmedia.com/
obj[20]=IECache Entry : Cookie:admin@zedo.com/
obj[21]=IECache Entry : Cookie:admin@ads.addynamix.com/
obj[22]=IECache Entry : C:\Documents and Settings\Guest\Cookies\guest@perf.overture[1].txt

SPYWARENO
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[30]=RegValue : software\microsoft\internet explorer\desktop\general "WallpaperFileTime"
obj[31]=RegData : software\microsoft\internet explorer\desktop\general "WallpaperStyle"
obj[32]=RegData : control panel\desktop "WallpaperStyle"
obj[33]=RegData : software\microsoft\internet explorer\desktop\components "GeneralFlags"
obj[38]=File : C:\Program Files\BraveSentry\BraveSentry1.dll
obj[39]=File : C:\Program Files\BraveSentry\BraveSentry3.dll
obj[44]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045629.dll
obj[45]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045630.dll
obj[51]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0046679.dll
obj[52]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0046680.dll

ISTBAR
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[34]=Regkey : winres.windowsresources
obj[69]=File : C:\WINDOWS\winres.dll

WIN32.TROJANDOWNLOADER.QOOLOGIC
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[36]=File : C:\Documents and Settings\IVAN\Local Settings\Temp\tp7543.exe

WIN32.TROJAN.SPAMBOT
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[40]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP74\A0041619.dll
obj[41]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP74\A0042620.dll
obj[42]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0043619.dll
obj[43]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0044619.dll
obj[49]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045653.dll
obj[54]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0047710.dll
obj[56]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0049716.dll
obj[61]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP76\A0050057.dll
obj[63]=File : C:\WINDOWS\comdlj32.dll_tobedeleted

WIN32.GENERIC.PWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[50]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP75\A0045654.dll
obj[62]=File : C:\System Volume Information\_restore{8414096D-B5C5-42E0-9415-E8B12047B472}\RP76\A0050058.dll

OTHER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[70]=File : C:\WINDOWS\prefetch\ALG.EXE-01BDA729.pf
obj[71]=File : C:\WINDOWS\prefetch\MLPFC.EXE-2B1080A7.pf
obj[72]=File : C:\WINDOWS\prefetch\XHWJMLK.EXE-084D1872.pf

Since no one has linked to this yet, I would recomend Spy Sweeper (http://www.webroot.com/land/freescan_download.php?rc=4257) -- it has successfully saved my computer every time a virus or bit of spyware came along. Although it's not free, they do have a 30 day free trial which does everything the paid version does. Download that, then update it - I would recomend running it in safe mode, and it should catch just about every bit of spyware on your computer (but while you're in safe mode, run all the other a/v programs you have).

and zerg eater, make sure you do all of this under safe mode or there's a greater chance it won't work. (hit f8 when your computer is booting up)

wait wait u mean umm webroot?

all it found was CoolWWsearch

Did you update the spyware definitions after installing the latest version available from the website I linked to? If so, did it successfully remove CoolWWsearch? From my personal experience, SpySweeper usually finds most of, if not all, spyware infecting a computer.

On a side note, I'd also recomend a program called Easy Cleaner (http://personal.inet.fi/business/toniarts/ecleane.htm) which isn't an anti-virus program, but it does offer some useful system maintenance tools like registry cleaner and temporary/unnecessary files cleaner -- both which I use quite frequently to keep my PC in top working order.

*Hmm's* Easy Cleaner, eh (BMB)? I'll try it. :)

Now just don't forget who pointed ya to the Spy Sweeper a looong time ago. ;)

aw crap
now i cant use the internet or my uncle will get infected too
hey and midnightgladius Refresh this now

dang backdoor trojans!!!!!!

MG, is your uncle? That, I never saw coming... :o
Although if you ask him, he sure as hell will fix it. ;)

Add: And if that is your HJT log, you're 'swimming' in nasty stuff. :shiftyl:

what the heck r u talkin about?

Please stop looking at porn. It kills baby kittens.

SHUT UP MAN UR the perverted one
NOW get out of this thread

yeah viruses are hidng and i cant take them out for some reason

yeah viruses are hidng and i cant take them out for some reason

Any further developments we should be aware of, after you followed all our advices? :P

And being nicer generally means faster and snappier responses, btw. Just a tiny note for future reference... and a lil' something for your mind to bite upon.

ok ive been hearing alot of news about Dunchy and other ppl being blamed for sometihng yet i dont know what it is

Dun be unlitterate bad it being yes.

Anyways...
Heres another tool, completely online:
http://housecall65.trendmicro.com/

yeah i know that from trend micro

yeah but theres a trojan backdoor which i cant remove

Here's an idea.

Turn your computer off.
Unplug the internet.
Turn it back on and go into Safe Mode.
Run all of your scanning programs.
Reboot.

k ill do that

did that and removed some viruses but i trhink someytihng is blocking my sound, a virus i guess