Britney Spears Trojan - Norton Cannot Find IT!!!

Welcome to Majorgeeks!

Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.

• Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
• Make sure you check version numbers and get all updates.
• Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

• After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:

Downloading, Installing, and Running HijackThis

Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.

​

• When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
  • CounterSpy
  • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy
  • Bitdefender - from step 6
  • Panda Scan - from step 6
  • runkeys.txt - the log from GetRunKey.bat
  • newfiles.txt - the log from ShowNew.bat
  • HijackThis

NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!

 

Hi

Do please follow the guide I posted above as it has other logs that do need attaching, just posting ones we dont need ( Norton ) and the otehr two do not give the whole picture to our malware experts on what things are infecting your PC, WE also did not tell you to disable System Restore! This is the very last thing you do once your malware free as if at any point you hit a snag an infected restore point is better than having to re-install yoru PC from scratch.

Please run through the guide step by step collecting the logs required and attach in your next posts.

 

You should manually delete the email file that BitDefender pointed out. Also your Google Toolbar (and maybe other utils from Google) may be infected. You need to uninstall at a minimum Google Toolbar. Do not reinstall from the file you may have downloaded. And do not download or reinstall yet while we are working on your PC.

You did no perform step 2 of the READ & RUN ME properly. Please do it now and make sure do all of what it says.


Also uninstall the Sunbelt CounterSpy trial since we are finished with it now and also since it will conflict with Windows Defender! Then delete the below two folders which may be left behind by the uninstall:
C:\Documents and Settings\All Users\Application Data\Sunbelt Software
C:\Program Files\Sunbelt Software

I recommend that you update your FireFox version. You are way out of date.

Did you put the below entries in your hosts file? Are they needed?


Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

After clicking Fix, exit HJT.

Boot into safe mode and use Windows Explorer to delete
C:\Program Files\Google\GoogleToolbarNotifier <-- the whole folder

Now run Ccleaner

Now reboot in normal mode

Now attach the below new logs and tell me how the above steps went.

1. GetRunKey
2. HJT

Are you having any current malware problems! There really was not too much showing in your logs.