mojomonkey
Posts: 6 +0
My girlfriend's computer is infected with something I can't seem to get rid of. There were numerous infections when I first got it, including one that had changed the internet connection settings to run through a local proxy at 127.0.0.1:5555.
I had cleaned a bunch from a linux disk and eventually from running Trend Micro's Housecall. Some of the names of virus/spyware that has been removed (names vary, used various programs):
- Trojan_BHO
- Win32:BHO-YE
- Win32:FakeAlert-Ex
- Win32NSChanger-v
- HTML:RedirMe-inf
- Troj PDFJS.AH
- TR/FakeXPA.A.48
- HTML/Silly.gen
- Rootkt.TDSSERV-Trace
The only symptom left is that search results are redirected to other sites, and random pages are popped up in new tabs (on Firefox 3.5.5, though she used IE and had similar symptoms). For example, when I came to this forum, http://serw.clicksor.com/newServing/go.php?nid=1&cpx=cpv&uid=3156197415&pid=93033&sid=174611&kw=channel%3AGeneral&af=3&rf=0&curl=http%3A%2F%2Fbadware-exterminator.net%2Ffeatures.php&gw=1&cid=70138&anid=1 popped up) I've run the 8 steps from this forum, which cleaned a lot of the items listed above. She also had spybot installed and that had been run too.
Logs attached. Thanks for any help!
I had cleaned a bunch from a linux disk and eventually from running Trend Micro's Housecall. Some of the names of virus/spyware that has been removed (names vary, used various programs):
- Trojan_BHO
- Win32:BHO-YE
- Win32:FakeAlert-Ex
- Win32NSChanger-v
- HTML:RedirMe-inf
- Troj PDFJS.AH
- TR/FakeXPA.A.48
- HTML/Silly.gen
- Rootkt.TDSSERV-Trace
The only symptom left is that search results are redirected to other sites, and random pages are popped up in new tabs (on Firefox 3.5.5, though she used IE and had similar symptoms). For example, when I came to this forum, http://serw.clicksor.com/newServing/go.php?nid=1&cpx=cpv&uid=3156197415&pid=93033&sid=174611&kw=channel%3AGeneral&af=3&rf=0&curl=http%3A%2F%2Fbadware-exterminator.net%2Ffeatures.php&gw=1&cid=70138&anid=1 popped up) I've run the 8 steps from this forum, which cleaned a lot of the items listed above. She also had spybot installed and that had been run too.
Logs attached. Thanks for any help!