WORMS & TROJANS ???

[Guest]

Problem #1
A few weeks ago my computer started misbehaving. I did a thorough cleaning
including virus scan, malware scan, etc. Recently I downloaded a software
called Startup Mechanic by Opensoft Corporation which is a security startup
program. After running a scan of my computer the program categorizes each
startup item into one of these categories: 1-Necessary 2-Helpful 3-Useless
4-Unknown and 5-Harmful. The files below are listed under "Harmful" and,even
though I disable them they restart each time I restart my computer:

File: Logitech Setpoint.ink contains the W32/RBOT-BW WORM
File: Logitech Hardware Abstraction
Khalmnpr.exe = Rbot.BJH WORM!

File: Kernal and Hardware Abstraction=MUMU.B VIRUS
Command: Khalmnpr.exe
File: Smart Defrag=01FEB.A TROJAN

**********************************************************
Problem #2:

A file named "swg" googletoolbarnotifier
1.2.1128.5462.googletoolbarnotifier.exe which is on my C drive under program
files/google is listed by Startup Mechanic as "Unknown" and it too keeps
restarting after disabling it then restarting my computer.

I've contacted Google and Logitec and Startup Mechanic about these issues
and not received any response ( Google wrote and said they were sorry I was
having problems but offered no help). None of these files show on my AV scan
(Avast) or in my spyware scans (AdAware and SpyBlaster).

Obviously I have disabled them but I don't know what to do from here as I
certainly don't like having them hangin on my computer! Any help will be
appreciated.

Chico Chick

CyberGrafs
Logo & Banner Design
www.CyberGrafs.com

 

[Guest]

Problem #1
Go to Start>Run,type msconfig and click OK.A new window named System
Configuration Utility will open.In the window click on the tab named startup
and uncheck the entries you don't want to startup with windows and click
OK.Then reboot.If the file is not there under Startup you may look under the
services tab.

Problem #2
I don't think this is a problem.You have installed google toolbar and hence
this file "swg" starts up with windows.You can either uninstall google
toolbar to remove it or if you don't want to do so again go to the System
Configuration Utility and under the services tab uncheck the corresponding
entry and reboot.

 

[Guest]

Problem #1
A few weeks ago my computer started misbehaving. I did a thorough cleaning
including virus scan, malware scan, etc. Recently I downloaded a software
called Startup Mechanic by Opensoft Corporation which is a security startup
program. After running a scan of my computer the program categorizes each
startup item into one of these categories: 1-Necessary 2-Helpful 3-Useless
4-Unknown and 5-Harmful. The files below are listed under "Harmful" and,even
though I disable them they restart each time I restart my computer:

File: Logitech Setpoint.ink contains the W32/RBOT-BW WORM
File: Logitech Hardware Abstraction
Khalmnpr.exe = Rbot.BJH WORM!

File: Kernal and Hardware Abstraction=MUMU.B VIRUS
Command: Khalmnpr.exe
File: Smart Defrag=01FEB.A TROJAN

**********************************************************
Problem #2:

A file named "swg" googletoolbarnotifier
1.2.1128.5462.googletoolbarnotifier.exe which is on my C drive under program
files/google is listed by Startup Mechanic as "Unknown" and it too keeps
restarting after disabling it then restarting my computer.

I've contacted Google and Logitec and Startup Mechanic about these issues
and not received any response ( Google wrote and said they were sorry I was
having problems but offered no help). None of these files show on my AV scan
(Avast) or in my spyware scans (AdAware and SpyBlaster).

Obviously I have disabled them but I don't know what to do from here as I
certainly don't like having them hangin on my computer! Any help will be
appreciated.

Chico Chick

CyberGrafs
Logo & Banner Design
www.CyberGrafs.com

=> Try these steps:
1... First, try to clean up your caches, Internet files and delete cookies
by doing this:
Click Start >> Control Panel >> Double click Network and Internet
Connections >> Double click Internet Options.
On the IE properties windows you will see these Taps:
General | Security | Privacy | Content | Connections | Programs |
Advanced.
Under General Tab clear your History, Internet Files and Cookies.
Then click on Advanced tab and scroll down to under the Browsing Option:
[&] Browsing
[ ] Enable Third-Party browser extensions (Req Rest) uncheck this box.
Then click on Programs Tab and click Manage Add-Ons and Disable all non
Verified Add-Ons (You should Renable them later one-by-one and see the
culprit and update it or remove it.

2... And also for malwares from here:
http://www.lavasoft.com/products/ad-aware_se_personal.php
http://www.safer-networking.org ; for Spybot S&D

Run a scan from here on-line:
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Download and install AVG and run scan on Boot:
http://free.grisoft.com/doc/5390/lng/us/tpl/v5
Download Avast Cleaner from here:
http://www.avast.com/eng/avast-virus-cleaner.html
Lots of tools to download and disinfect your machine:
http://www.bitdefender.co.uk/site/Downloads/browseFreeRemovalTool/

3= Download the Hijackthis and send the report to one of many
forums for analysis and troubleshooting:
When all else fails, HijackThis v1.99.1
(http://aumha.org/downloads/hijackthis.zip) is the preferred tool to use.
It will help you to both identify and remove any hijackware/spyware. Post
your log to http://aumha.net/viewforum.php?f=30,
http://castlecops.com/forum67.html,
http://forums.subratam.org/index.php?showforum=7, or other appropriate
forums for expert analysis, not here.
Run disk cleanup and Defrag in safe mode then Run this Command:
sfc /scannow click [OK] and let it run, you may be asked by the windows to
insert the XP CD to repair any corrupt files/folders found.
Good luck.
Regards,
nass
===
www.nasstec.co.uk

 

[Elmo]

Problem #1
A few weeks ago my computer started misbehaving. I did a thorough cleaning
including virus scan, malware scan, etc. Recently I downloaded a software
called Startup Mechanic by Opensoft Corporation which is a security startup
program. After running a scan of my computer the program categorizes each
startup item into one of these categories: 1-Necessary 2-Helpful 3-Useless
4-Unknown and 5-Harmful. The files below are listed under "Harmful" and,even
though I disable them they restart each time I restart my computer:

File: Logitech Setpoint.ink contains the W32/RBOT-BW WORM
File: Logitech Hardware Abstraction
Khalmnpr.exe = Rbot.BJH WORM!

File: Kernal and Hardware Abstraction=MUMU.B VIRUS
Command: Khalmnpr.exe
File: Smart Defrag=01FEB.A TROJAN

**********************************************************
Problem #2:

A file named "swg" googletoolbarnotifier
1.2.1128.5462.googletoolbarnotifier.exe which is on my C drive under program
files/google is listed by Startup Mechanic as "Unknown" and it too keeps
restarting after disabling it then restarting my computer.

I've contacted Google and Logitec and Startup Mechanic about these issues
and not received any response ( Google wrote and said they were sorry I was
having problems but offered no help). None of these files show on my AV scan
(Avast) or in my spyware scans (AdAware and SpyBlaster).

Obviously I have disabled them but I don't know what to do from here as I
certainly don't like having them hangin on my computer! Any help will be
appreciated.

Chico Chick

CyberGrafs
Logo & Banner Design
www.CyberGrafs.com

Run your AV software in Safe Mode and it may be able to prevent the
reentry of the malware in the registry. If the AV software has a
bootscan option, use that to find and remove malware before the malware
can get control of the system.