From: "gort" <
[email protected]>
| I've just installed ZoneAlarm onto my system and it keeps telling me that the
| following files are trying to gain access to the internet from my computer
| and do I wish to allow or deny them:
|
| C:\WINDOWS\System32\dpsnfo.exe
| C:\WINDOWS\System32\drmhz.exe
|
| Does anyone know what they are? The reason I'm asking is I got infected by
| that IST toolbar scumbag and it installed loads of spyware onto my system.
| I've spent the last 2 days trying to disinfect my computer and (touch wood)
| I've succeeded but I just want to make sure these files aren't connected to
| the spyware and if they aren't is it safe to allow them access.
|
| Cheers
Looks like you stuill are infected with malware !
Dump the contents of the IE Temporary Internet Folder cache (TIF)
Start --> Settings --> Control Panel --> Internet Options --> Delete Files
Dump the contents of the Mozilla FireFox Cache
Tools --> Options --> Privacy --> Cache --> Clear
1) Download TrendMicro Sysclean by one of the following 2 methods
Trend Sysclean Method 1
---------------------------------------
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp
Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp
Create a directory.
On drive "C:\"
(e.g., "c:\sysclean")
Download SYSCLEAN.COM and place it in that directory.
Download the signature files (pattern files) by obtaining the ZIP file.
For example; lpt584.zip
Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM.
Trend Sysclean Method 2
---------------------------------------
Download the utility SYSCLEAN_FE at the following URL --
http://www.ik-cs.com/got-a-virus.htm
SYSCLEAN_FE automates the download and execution process of the Trend Sysclean Package.
Direct URL --
http://www.ik-cs.com/programs/virtools/Sysclean_FE.exe
2) Download Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/
Update Ad-aware with the latest definitions.
3) Reboot your PC into Safe Mode and shutdown as many applications as possible.
4) Using both the Trend Sysclean utility and Ad-aware, perform a Full Scan of your
platform and clean/delete any infectors/parasites found.
(a few cycles may be needed)
5) Restart your PC and perform a "final" Full Scan of your platform using both the
Trend Sysclean utility and Adaware
* * * Please report back your results * * *