NOD32 cant cleane this Trojan (Log Posted)

Re: NOD32 cant cleaned this Trojan (Log Posted)

What has been suggested is the best method available to make sure your PC is clean.

Cheers

 

funny, the vundofix promise to start in less than a minute, but i waited for 10 mins, it didnt start back.

anyway this is m latest hijackthis log

now yeah after i delete ixto.dll using hijackthis in safemode, my IE didnt redirect to the damned page but now im scratching my head on the sqmdata.sqm file in my local C drive

 

Because you still have this file: C:\WINDOWS\system32\issearch.exe I'll get you to follow the instructions found HERE

Then please post a further HijackThis Log.

Cheers



PS: For future reference please do not post a HijackThis Log unless asked by a Moderator.

 

OMG! Try to clean startup from unnecessary entries.

 

heheh - you haven't seen mine

 

ive got a problem now, the smitRem RunThis.bat just refuse to run. it open ms dos prompt and close it, in a blink.

also in my WINDOWS there's alot of hidden $NtUninstallKB885835$ , $NtUninstallKB896422$ files...i mean alots of them same pattern with different numbers and KB905414.log , KB914389.log .. and what i mean alot is like 30++ of them in my C:\WINDOWS\

 

Forget the rest, just concentrate on the job at hand.

Have you done the following:

Blackspear.

 

when i want to download smitRem.exe a popout come out saying C:\DOCUME~1\LOCALS~1\Temp\fmqt5h01.exe could not be saved, because the source file could not be read. (using firefox)

when im using internet explorer ... it says the internet connection reset abnormally.

 

Clear your Firefox cache, downloads history and empty the contents of your Temp directory and see if you can then download the tool. Reboot before emptying Temp if you have not since installing any programs or updates.

1. Navigate to the users temporary directory.
2. By default the directory is located at C:\Documents and Settings\username\Local Settings\Temp\.
3. Press control-A to select all files and folders.
4. Press the delete key. (shift+delete bypasses the recycle bin)

 

This is normal. These hidden (and usually compressed) folders are created when you install patches from Microsoft, such as the security patches from Windows Update. These folders are created in case you want to uninstall the patches at a later date. The numbers refer to the article numbers within the Microsoft Knowledge Base. For example:

http://support.microsoft.com/kb/905414
http://support.microsoft.com/kb/914389

etc.

 

thanks guys, i think my computer is cleaned now. i didnt know what i really did, but i followed most of the methods given buy you guys including those who private message me.

i will come here back if i persist anymore probs.

 

Good to see and thanks for letting us know.

Cheers

 

Indeed - and you would be most welcome

Thanks for helping out when you did Blackspear - the way I was reading it earlier it was all good....

Cheers

 

My pleasure Mate, it was when I suddenly realised what we were dealing with that I knew the solution...

Cheers

 

Slapshock, is you're java up to date?

http://www.dslreports.com/forum/remark,14738046