Need help with infected computer

I am new to this forum and I need help.

My computer says it is infected with the NewPolyWin32, the w3.myzor.fk@yf, and the Networm-i.virus@fp viruses. I used Trojan Remover to stop the pop-ups from the these viruses. My homepage was also hijacked.

My computer info is:
Microsoft Windows XP
Media Center Edition
Version 2002
Service Pack 2
I'm not sure if you need more info about the computer.

I've read your READ & RUN ME FIRST post and completed all the steps. Windows Malicious and Windows Defender came up clean. Spybot found Windows Security Center Antivirus and Firewall Disabled. I ran Bitdefender and the first time it found viruses but locked up and I couldn't save the log. The second time I ran it it came up clean. Panda found viruses. I ran HijackThis and saved the log as requested.

I will attach Bitdefender, Panda, and GetRunKey log to this post and follow with a second post with the remaining attachments.

Thanks.

 

Here are the ShowNew and HijackThis attachments.

Thanks

 

Anyone??? Please help!

 

Do you mean you antivirus is saying your are infected with those ? Or are these internet explorer popups.

You have a HUGE amount of processes running, you should consider removing any software you don't use.

Your BD log is clean so I can only assume it deleted what it found first time round.

Your active scan log only contains a couple of cookies, these arn't really of any consequence,

Are you having any of the popups after going through the read and run me ?

Using add/remove programs which can be accessed from the control panel, uninstall the following:

DO you know what TrueAssistant is ? It sounds to me like a search bar / hijacker. If you didn't knowingly install it then remove it.

Run HijackThis. Click the 'Do a system scan only' button.

Place a checkmark in the box next to the following lines:

Click on the 'Fix checked' button. Wait for HijackThis to finish; close HijackThis.

Now boot into SAFE MODE

If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

REBOOT to Normal Mode.

Let me know how things are running now



Post a fresh HijackThis log, a fresh newfiles log

 

I did everything you said to do and I also deleted any programs I do not use
as you suggested. A friend told me to try running SmitfraudFix and it seemed
to take out all the infections but I still had some spyware. He also said to try Ad-aware and AVG Anti-Spyware, so I ran those as well. Everything seems to be running okay now. The only thing that comes up on scans now is Tribalfusion and KillApp.B. I have attached the two logs you requested just so you can take a look and make sure everything looks okay. If you see anything else you suggest getting rid of please let me know. I really appreciate your help.

 

You didn't answer my questions!

Do you mean you antivirus is saying your are infected with those ? Or are these internet explorer popups?


Are you still experincing popups etc?

 

Sorry.

The Myzor and Networm viruses showed a critical system error balloon above

the taskbar. The critical system error balloon eventually showed me those

two virus names and if you clicked on the balloon, an Internet Explorer page

came up with a phoney antivirus download to purchase to get rid of the

viruses. I solved that by using Trojan Remover and am no longer having any

popups from those viruses. Then by following the steps on this forum I ran

Bitdefender and my antivirus said I had the NewPolyWin32 virus. After the

first message I posted, I restarted my computer after a scan and Trojan

Remover said I had Downloader.Zlob and Downloader.Fakealert. I ran all of

the programs listed in my last message and now I am no longer having any

popups and Trojan Remover no longer says I have Downloader.Zlob or

Downloader.Fakealert. Does this answer your questions. If not, please have

patience with me. I am new to this. Thanks!

 

Your logs are clean.

If you are not having any other malware problems, it is time to do our final steps:

1. If we used Pocket Killbox during your cleanup, do the below
   • Run Pocket Killbox and select File, Cleanup, Delete All Backups
2. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
3. If you are running Windows XP or Windows ME, do the below:
   • go back to step 8 of the READ & RUN ME to Disable System Restore which will flush your Restore Points.
   • Then reboot and enable System Restore to create a new clean Restore Point.
4. After doing the above, you should work thru the below link:
   • How to Protect yourself from malware!