Well for starters no more .exe files from any P2P's and Limewire is a name that will go down in infamy but I shall digress. SF has entrusted the chronicling of our adventure to me but I will freely admit it was his brains and not my fingers that got us through this.

As soon as I realised I had a problem I tried to access some online spyware and virus scanners but the bug was blocking access even through a proxy. So I turned to the Milforum for help. I read this thread and went through all the steps and advice from SF and his signature bar... adaware, spyware hunter killer etc. To no avail.

I was online and talking to IG when I told him I was about to just reformat the "ing thing" and he said no no no and put me in contact with SF. We went through and checked all the obvious things and under his guidance I went through the motions again... now he was "mad".

We went to Hijack This and I ran it and he looked at the log but NOTHING. It wasn't picking it up and the only thing Ad-aware was finding was Look2Me.Topconverting, but couldn't delete it, even on reboot. So we downloaded Killbox and DllCompare and then even when I fed the file to Killbox...nothing. Tried it on reboot with dummy and NOTHING, still being hijacked. So on dll compare we ran the log a couple times... we tried regedit but it would vanish, the box would open and disappear instantly... clever bastard.

So then we kill the 4 new dll files that showed on the DLL Compare log and download VX2 killer for Ad-aware but nothing... it wasnt Look2Me, it wasn't VX2... I apparently, according to SF, got the newest, brightest and nastiest VX2 version. It has no cure yet and it doesn't show up on any of the scans... none of them. We aren't completely finished as IG came wandering in on messenger and wouldn't stop with the questions... nah, truth is my wife was pissed it was 1:40 in the morning and I was still up "playing on the computer".

Tomorrow we will finish disinfecting the machine but at least the heart of the beast has been removed as I am no longer being hijacked and the dll compare logs are clean. I don't understand what we did, any technical questions have got to go to the man, the one the only Swordfish 13.

All hail the mighty Fish!!!

Hail to the man!!!
Doesn't he kick ass?

Just one question:
Did you run the spy/adware cleaners in windows safe-mode??
That usually takes care of the problems.

Tried that and it did NADA... that was one of the things we tried in the middle of this mess.

Ive found one that works quite well..... www.stopsign.com It took me all night(when I started it to when I woke up) to do a complete scan so its quite thorough.

AVG has a new free anti-spyware/adware software and so far so good...

Check it out:

http://free.grisoft.com/doc/avg-anti.../lng/us/tpl/v5

I'm not sure if this has been posted, only read the first page, but a good set of anti-virus & firewalls (all free)

AVG antivirus: picked up over 100 things on my pc, the stuff norton didn't recieve
and
ZoneAlarm: free firewall, blocks viruses & programs you don't know of (so you can choose what accesses the internet off your machine)

To find these, simply google the name.

Quote:

Originally Posted by Insomniac

I'm not sure if this has been posted, only read the first page, but a good set of anti-virus & firewalls (all free)

AVG antivirus: picked up over 100 things on my pc, the stuff norton didn't recieve
and
ZoneAlarm: free firewall, blocks viruses & programs you don't know of (so you can choose what accesses the internet off your machine)

To find these, simply google the name.

One of the things I do routinely is swap out my anti-virus software to get around the issue of some virus's being immune to some software.

Hi,

Malwarebytes' Anti-Malware ... beats them all Give it a try

Peace
SF_13

Best cleaners I have ever seen are free ones
http://www.malwarebytes.org/
http://www.superantispyware.com/?tag...PERANTISPYWARE
http://www.scanwith.com/download/ATF_Cleaner.htm
http://www.defraggler.com
http://www.ccleaner.com/

So far, so clean
Of course I have NOD32 for the A/V