TheWildInside
Posts: 24 +0
In response to my free AVG Anti-Virus program finding, but not cleaning, the JS/Psyme malware on Friday, I bopped out to your site, copied/saved and printed your new n improved "preliminary removal instructions" and have followed same step by step. Results are:
Downloaded and/or updated software and followed instructions Step 1 thru Step 9
Step 10: Ran Tools 1, 2 and 3 ... all reported "clean with nothing found".
Step 11: Ran Anti-rootkit .. reported "clean".
Step 12: Ran Combofix.exe .. successful scan, 0 hidden files. Combofix.txt attached
Step 13: Booted into Safe Mode, AVG Free Anti-virus could/would not clean JS/Psyme
Step 14:
SS&D - "no immediate threats found"
Ad-Aware - Tracking cookies only, quarantined
AVG Antispyware - just a couple tracking cookies (and this program is severly distorted in Safe Mode .. many things outside the margins and cannot be accessed). No log attached, could not access the Save As button.
Step 15: Ran HijackThis, log attached
I'm going to try running the virus program in Safe Mode again while I await your advice on how to proceed .. and if you've got any ideas on how to deal with AVG's antispyware distortion in Safe Mode, I'm all eyes. I had this problem back in January when I had another nasty gain access to my laptop.
Oh, and this time I know the source of this piece of malware .. and I feel stupid for having fallen for it .. it was one of those "XYZ has sent you a greeting card". I have deleted 7 or 8 of these messages over the last several weeks, each in a slightly different guise; however, this one arrived at a time when it would have been appropriate to receive an e-card .. and the subject line wasn't as suspicious. Live n learn. I clicked the link to "view the card" and the lightbulb went on almost immediately - apparently not quite fast enough, because even though I stopped it quickly, here I am, with JS/Psyme crawlin' around inside my machine!
No overt symptoms, though it took multiple attempts to login to techspot .. I was continually thanked for logging in, and then returned to the login screen immediately following.
Will anxiously await your expert advice ... many thanks in advance!
Karan
Downloaded and/or updated software and followed instructions Step 1 thru Step 9
Step 10: Ran Tools 1, 2 and 3 ... all reported "clean with nothing found".
Step 11: Ran Anti-rootkit .. reported "clean".
Step 12: Ran Combofix.exe .. successful scan, 0 hidden files. Combofix.txt attached
Step 13: Booted into Safe Mode, AVG Free Anti-virus could/would not clean JS/Psyme
Step 14:
SS&D - "no immediate threats found"
Ad-Aware - Tracking cookies only, quarantined
AVG Antispyware - just a couple tracking cookies (and this program is severly distorted in Safe Mode .. many things outside the margins and cannot be accessed). No log attached, could not access the Save As button.
Step 15: Ran HijackThis, log attached
I'm going to try running the virus program in Safe Mode again while I await your advice on how to proceed .. and if you've got any ideas on how to deal with AVG's antispyware distortion in Safe Mode, I'm all eyes. I had this problem back in January when I had another nasty gain access to my laptop.
Oh, and this time I know the source of this piece of malware .. and I feel stupid for having fallen for it .. it was one of those "XYZ has sent you a greeting card". I have deleted 7 or 8 of these messages over the last several weeks, each in a slightly different guise; however, this one arrived at a time when it would have been appropriate to receive an e-card .. and the subject line wasn't as suspicious. Live n learn. I clicked the link to "view the card" and the lightbulb went on almost immediately - apparently not quite fast enough, because even though I stopped it quickly, here I am, with JS/Psyme crawlin' around inside my machine!
No overt symptoms, though it took multiple attempts to login to techspot .. I was continually thanked for logging in, and then returned to the login screen immediately following.
Will anxiously await your expert advice ... many thanks in advance!
Karan