Dangnabbit!

Seems I have some spyware or the likes. It started by changing my background to some warning about spyware and to accept their update exe winxp spyware fix. Seemed fake to me. Now it messes with all my search results , and stops me from downloading any files ie: AVG . They start for a short term then say complete. Upon running the application it says 'file is corrupt'

I cannot change wallpapers because all the options have disappeared. Ironically apparently system restore has 0 prior restore points :S

Maybe someone knows the answer to my woes?

I just unpacked the Dell 30" installed it fine.... now this lol I just want to play TF2!!

Super Format.

btw: I never accepted the virus scan fix thingo...

haha owned

maybe you should run the so-called spyware fix

doesn't seem likely that spyware would change your background or alert you to its presence in any way. they already owned u

there has been a case recently of 'the good guys' (security consultants working with police) taking over a botnet and sending out warnings to infected hosts to the effect of, hay your infected heres how to fix it

i'd find the link but i cbf

Nah it's malware. Windows have a malicious software removal tool, try that. If that fails buy a PC mag from the news agent and install Spybot or adaware off of the cover CD.

just curious, it might actually be scanning the name of exe files you run (i.e. well known virus scanners).

tried renaming the file?
also try anti-vir, i've found it better than avg, and a lighter memory footprint.

http://www.spyware-techie.com/warning-win32privacyremoverm64-removal-guide/


I googled and found a few sites. But i'm not sure who to trust. That site seems to have the solution

get vista.

Yeah this has happened on a computer at work, it keeps trying to send out massive amount of email through outlook too

get vista

nice

superman that hooooooooooooooooeeee

Use task manager (or a similar program such as pslist) to look at active processes. Google any that look suspicious (or all of them if you can't tell). There should be a fix floating around.

Also, tried safe mode yet? Give it a shot, see if any of your functionality is fixed. You might have to download your AV files to a USB key or such (from another machine), and install from there, if it's borked your networking.

Another option, rip out your harddisk, throw it in someone elses machine, and scan it. Make sure that user has autorun functionality disabled before you start.

Depending on the spyware, you may also be able to get a bootable CD (ie ultimate boot CD, or avast! bart trial version) to fix it for ya.

Carton of beer, bring it round to my place an I'll sort it out for you

Recommended method is, backup all your s***, format, re-install.

yep this virus is going around at the moment, pain in the ass to get rid of and seems to come back, even with virus software installed. Watch you internet usage cause it sends out massive amounts of spam.

Download combofix.exe
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

1. Open Notepad.
2. Now copy/paste the text between the lines below into the Notepad window:
------------------------------------------------------------------------
File::
C:\WINDOWS\system32\wsnpoem\audio.dll
C:\WINDOWS\system32\wsnpoem\video.dll
C:\WINDOWS\buritos.exe
C:\WINDOWS\system32\karina.dat
C:\WINDOWS\karina.dat

Folder::
C:\WINDOWS\system32\wsnpoem

Driver::
Ppu54

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ppu54.sys]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\buritos]
------------------------------------------------------------------------

3. Save the above as CFScript.txt on your desktop.
4. Then drag the CFScript.txt into ComboFix.exe. This will start ComboFix and should clean up the spyware.
5. Install anti-virus or run an online full scan of your machine.

Use task manager (or a similar program such as pslist) to look at active processes

If the PC is compromised properly, you won't be able to see the task using task manager or pslist or whatever.