After much, careful consideration (aka, panic attack) I immediately started Norton Antivirus and Ad-Aware SE Personal scans. Norton caught one virus, which I was prompted to manually delete, but future scans indicated nothing else. Ad-Aware also indicated nothing. However, my screen still had the the message/shortcuts on it. I'm not a computer genious, but I'm smart enough to know that when things pop up on your screen that you didn't choose to, it means bad things =/. So I did the next, carefully considered act (more panic attack). I went to My Computer, did a search for everything created today, and deleted what I could. After I'd done so, the shortcuts on the side disappeared, but the pop up message persisted. Not really knowing what else to do, I started my computer up in safemode. From there, I tried to delete things again, and I'm pretty sure I got some sort of media file that time. However, the message was still there. So I went to a different computer and did a google search of the message (which is how I ended up here btw ;) ) and got results for something called SpyDawn. I went through all the steps of first the automated, then the manual removal. However, once I rebooted in safemode, I couldn't access SmitFraudFix (error message says windows can't find what program created it, so it can't read it). Also, when I tried the manual fix, I couldn't find any of the 3 files mentioned.
Thinking I had the wrong virus, I checked out Spylocked. Again, I couldn't access SmitFraudFix in safemode so I again tried the manual removal. This time, I found only one file that matched, dxovx.dll. I renamed it to dxovx.dll.bad as instructed, and it seemed when I did that the icon on the menu bar for the message kind of blanked out, and later after I restarted, it disappeared altogether. So far so good, it seemed. Yet as I moved on, I couldn't find anything called Spylocked under the add/remove programs list. So here I am, unable to find anything to uninstall and unable to get SmitFraudFix to work in safemode.
What I did find under the add/remove programs list, is something called "eMedia Codex 4.0" which I've read to be malicious spyware as well. I tried to delete that too, just with the add/remove feature, but when I did, it said that there was an error, and it may have already been uninstalled. I'm thinking that this is what I originally downloaded, and perhaps it was the media file that I had deleted my first time in safe mode. I also only clicked "permit once" in the norton prompt so maybe it wasn't able to reconnect to download more or fix itself. I turned the computer off and left for a while, and now that I'm back everything seems normal. However, I can't shake the feeling that I've missed something, it's going to comeback, it's watching me changing clothes, etc.
Sorry for the wall of text, but I thought it would be best if you knew exactly what happened, since, after reading through these forums, what I did seemed fairly unorthodox. If anyone can make sense of any of this and offer some advice, it'd be much appreciated. I'm tempted to try and run SmitFraudFix out of safemode just in case, but I really don't want to hurt my computer beyond repair. In any event, thanks for taking the time to read this, and I hope you can help
Edit: I am using Windows XP and Internet Explorer if that helps at all.
Edited by Kjerty, 04 May 2007 - 10:46 PM.