have a pc here which is infected with something, have done some research online (that are similar cases), but those steps dont seem to resolve the issues i have here (unless im just really stupid, which i appologize in advance for :$).
symptoms: msconfig, regedit, hijack this all close after like ~1sec. homepage changes to a few things, is currently set to www.virushelpzone.com
renaming hijackthis etc. to something like crysis.bat doesnt help.. i cant post a hijackthis log (due to it auto-shutting ). might not be related, but pc is also just generally slow as a wet weekend.
what i have tried: scanned with avg, avgas, adware '07, housecall, poked around with autoruns - but quite frankly i need more exp. in that department..
i can run hijack this in safe mode, but one thing i have notice: there are 3 entries that are missing in safe mode (F3 entries maybe?? that are related to win.ini etc..), compared to normal-mode log, which i can see very breifly before it shuts down
EDIT: scanned with spybot - found "fakemsn8beta - taskkill.com and netstat.com" and a bunch of redirects, also scanned with cws shreddrer and found cws.svchost, and cws.smartsearch
specs: win xp home sp2, NIS 07? (slightly resembles vista, if that makes sense) and um yeah if you need any more info, please hassle me for it :D thanks guys...
Edited by 4ward_tristan, 10 January 2008 - 07:11 PM.