Hey about a month ago our homepage changed to http://www.syssecuritypage.com/, popups kept coming up, virus alerts wouldnt stop popping up down the bottom. I searched around and found out my computer had
ismon, ishost, isnotify, issearch, ixt0,1,2,3.dll, alg.dll, winclw32.dll
and heaps more. I deleted them from system32 and prefetch in windows in safe mode all went well until randomly theyd come back! Ive tried this heaps and everytime i do it i find more bad files. I also got hijackthis and deleted sum bad ones like winlogonnotify and cinomnonm (dont no the spelling) but it wont go away.. McAfee wont help adaware gets nothign.. i had to do it manually my dads cracking it and he wants to wipe the comp and start again. Im only 13 and i dont no if its me being dumb or just i got a nasty one here...CAN YOU PLEASE HELP ME??
Ps i think it could be a no-cd crack i download for my gta-sa game but 2 of my friends have the same crack and they dont have it. i think this becuase when it comes back i look at properties on ismon ect. and it says created at when i played it... HELP ME

Hello and welcome to Techspot.

Get rid of that no cd crack.

Download and run these three tools. Follow the instructions for each tool.

Tool1. Tool2. Tool3.

Then go and read this thread HERE.

Post a fresh HJT log into this thread, only after doing the above.

Regards Howard :wave: :wave:

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

& please use proper thread titles from now on.

Heres the HJT log and the SmitfraudFix is under just incase you need it.

You need to run those three tools again. This is because your nasty infection is still there. This is not normal, those tools should kill it.

Post a fresh HJT log after you`ve run the tools.

Regards Howard

Here it is i think i worked

Excellent. Your HJT log is now clean.

Have HJT fix the following inactive entry.

Run HJT with no other programmes open.Click the scan button. Have HJT fix the following, by placing a tick in the little box next to(if there).

O20 - Winlogon Notify: wintfj32 - wintfj32.dll (file missing)

Click on the fix checked button.

Close HJT.

If you have any further virus/spyware problems, please post in this thread.

Regards Howard

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Howard your an absolute ledgend
Thanks so much and keep up the good work

Hey im just checking up 2 see if i need 2 delete anything.:grinthumb

Clean as a whistle mate.

Regards Howard

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Cheers
Keep up the good work.

Hey again..recently ive been getting popups all of the same thing..theres about 6 of them and they come up all the time. Just Before one of them couldnt fine the url or something and said like google/creatives/CYBOOT or sumthing.
I ran those three programs but the popups havnt stopped. Heres the HT log.
Also the popups all are deluxecommunications which i tried deleting from HT but it came back..
Atm im running spybot also to get rid of the other stuff.
-Kyle

You`ve got one or two nasties on your system.

Go HERE and follow the instructions exactly.

Post fresh HJT and Ewido logs, only after doing the above.

Regards Howard

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Dw about it dude my dad did a system restore without telling me..:stickout:
Thanks anyway will use next time

Hey.
I need to be able to delete some files. When i right click on them it only comes up with play, add to playlist in media player, open with and send to.
It says they are Mpegs. When i click delete nothing happens.
The file names are also very long.

Not sure if its doing anything but i want them gone.
Heres a HJT log.

Your HJT log looks clean. However, there is new malware that can hide form HijackThis.exe. Go and follow these instructions for renaming HJT and post a fresh HJT log.

Regards Howard

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Ok done.
But i want to know how to delete these files. ASAP

The good news is your HJT log is still clean.

I suggest you use this utility HERE to try and get rid of those files. It usually works very well.

If you have any further virus/spyware problems, please post in this thread.

Regards Howard

This thread is for the use of kyleman only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Thankyou. I tried just deleting the folder before you suggested this program. Deleting the folder worked fine.
Thankyou and i will keep it for the future

Hey ive had a couple of party poker and "you have malicious software!" popups recently.
Is my HT log clean?