Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

Nusexplorer, Krepper, Email-Worm, Zlob, + more

  • Please log in to reply



    New Member

  • Member
  • Pip
  • 1 posts
Today I was watching TV and I look down at my computer screen and an antivirus software was saying that it had detected viruses and asked me to DL the software. I clicked on the X box to close it, then everything went downhill from there.

Now, whenever I boot up the computer, all of my desktop icons disappear and my startup menu is gone. Occaisonally a security center popup tells me that "spyware infection detected". TrojanDownloader.xs.

I googled the name of this on my wifes computer and it is a rogue antivirus software doing this. The link in the detection links to MS explorer and to websites wanting me to DL or buy antivirus software. I try to go to google.com and it lets me get there, but when I try any searches it brings up not what I want. I tried typing links to "hijackthis log" to do the log so I could post it here and it just leads me to another website.

When I boot my computer up, my current antispyware software that is legit comes up and I ran a scan of my computer. The following is a list of items that it has found. There are 133 items found so far but I will list only some of them.

1. Krepper (Krepper is a trojan that modifies website surfing to display advertising, and downloads additional threats.)
2. Nusexplorer (is a Downloader, specifically one utalized by several pornographic websites to help promote their online services.)
3. Zlob (is a back door Trojan that allows the remote attacker to perform various malicious actions on the compromised computer.)
4. Email-Worm.Win32.Warezov.dq (is a mass mailing worm that carries an infected attachment and spreads by sending a copy of itself to every email address in the ...)
5. trojan-downloader.win32.winshow.gen
6. cws_therealsearch
7. cws_smartsearch
8. cws_qttasks
9. cws_payfortraffic_net
10. GonnaSearch (is a program that redirects your Internet Explorer ... )
11. Browseraid_rundll16 (is a Browser Helper Object. It is a small parasite that opens pop-up advertisements - it does not include a toolbar component. ...)
12. ZenoSearch (is an adware that displays pop-up ads based on searches the user performs on ... )
13. Vundo (is a component of an adware program that downloads and displays pop-up advertisements. It is known to be installed by visiting a Web site link ...)
14. ToonComics (can secretly get into the system from several malicious web sites or come along with free ad-supported software. Its main task is to serve.)
15. etc....

How can I get these off of my computer? I complete the scan and quarantine the 133 or so items, and reboot, and everything stays the same, and if I run the scan again, all the items show up again. Am I doing something wrong?

  • 0




    GeekU Teacher

  • Retired Staff
  • 15,822 posts
Hello Krepper+more

Welcome to G2Go. :)

Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

  • 0

Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP