Need your help I'm fcuked

i have picked up a worm of some sort i dont know a fookin thing when it comes to this but this is screwing up my email it6 keeps on sending the same message over and over the worst one was i have now had 11 emails about the same thing

people keep on sending me the netski worm(that what it says when up virus email thingy keeps poping up

i have 4 virus prograhms and 2 pop up prograhms none of the virus things work not stinger or nothing

i need help badly my computer is fooked

thanks

dan

any help please people

??? ??? ??? ??? ???

Please

You did not give much infos on that, you may post an Hijackthis log to the forum, if you want:
http://tomcoyote.org/hjt/

that’s because i dont know much ???

all it says when my virus scanner message pops up thats it’s a netski wrm

help

Give us a Filename or try to start your PC in safe mode and let Avast scan your pc. Or post the Hijackthis log.

Thank you i have now downloaded that i had a message pop up say if i delite it all my browser wont work

i’m a novice at this this

i have that avast this that’s what keeps on telling me thats its a netski wrm

i have about 10 different things of these everyday

thanks for your help

how do i do that i carnt copy and paste this

carnt you just come over and fix this ::slight_smile: ::slight_smile: ??? ???

If you life in the northwest of Germany, maybe, :slight_smile: otherwise press save log and copy and paste the content of the edtorwindows, which will pop up.:slight_smile:

Or look here: http://hjt.klaffke.de/en/

it just so happens i do and i live around the corner lol
carnt you tell my english is spot on

sorry for being thick but i’m a newbie :o ??? ::slight_smile: 8)

but here you are and thank you for your help

Logfile of HijackThis v1.97.7
Scan saved at 6:38:13 PM, on 5/18/2004
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\Grisoft\AVG6\avgserv.exe
C:\Program Files\McAfee\McAfee VirusScan\Avsynmgr.exe
C:\Program Files\Norton Personal Firewall\NISUM.EXE
C:\Program Files\NMapWin\bin\nmapserv.exe
C:\Program Files\McAfee\McAfee VirusScan\VsStat.exe
C:\Program Files\Norton Personal Firewall\NISSERV.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\McAfee\McAfee VirusScan\Avconsol.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Norton Personal Firewall\IAMAPP.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe
C:\Program Files\Norton Personal Firewall\ATRACK.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\MRDILE~1\LOCALS~1\Temp~AceTemp\hijackthis\HijackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Outlook Express\msimn.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rtoc.org/classifieds/latest.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rtoc.org/classifieds/latest.asp
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - C:\Program Files\Popup XP\BHOPXP.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: McAfee VirusScan - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - C:\Program Files\McAfee\McAfee VirusScan\VSCShellExtension.dll
O4 - HKLM..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM..\Run: [iamapp] C:\Program Files\Norton Personal Firewall\IAMAPP.EXE
O4 - HKLM..\Run: [FHC] C:\Program Files\Free History Cleaner\FreeHistoryCleaner.exe
O4 - HKLM..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM..\Run: [SpyStopper] C:\Program Files\SpyStopper\spystopper.exe
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
O4 - HKLM..\Run: [Zone Labs Client] C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe
O4 - HKLM..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP
O4 - HKCU..\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
O4 - HKCU..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU..\Run: [McAfee.InstantUpdate.Monitor] “C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe” /STARTMONITOR
O4 - Startup: Check For Dope Wars Updates.lnk = C:\Program Files\Dopewars\WiseUpdt.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Free History Cleaner (HKLM)
O9 - Extra ‘Tools’ menuitem: Free History Cleaner (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra ‘Tools’ menuitem: Messenger (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - C:\Program Files\Popup XP\BHOPXP.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: McAfee VirusScan - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - C:\Program Files\McAfee\McAfee VirusScan\VSCShellExtension.dll
O4 - HKLM..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM..\Run: [iamapp] C:\Program Files\Norton Personal Firewall\IAMAPP.EXE
O4 - HKLM..\Run: [FHC] C:\Program Files\Free History Cleaner\FreeHistoryCleaner.exe
O4 - HKLM..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM..\Run: [SpyStopper] C:\Program Files\SpyStopper\spystopper.exe
O4 - HKLM..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
O4 - HKLM..\Run: [Zone Labs Client] C:\PROGRA~1\ZONELA~1\ZONEAL~1\zlclient.exe
O4 - HKLM..\Run: [AVG_CC] C:\PROGRA~1\Grisoft\AVG6\avgcc32.exe /STARTUP
O4 - HKCU..\Run: [MSMSGS] “C:\Program Files\Messenger\msmsgs.exe” /background
O4 - HKCU..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU..\Run: [McAfee.InstantUpdate.Monitor] “C:\Program Files\McAfee\McAfee Shared Components\Instant Updater\RuLaunch.exe” /STARTMONITOR
O4 - Startup: Check For Dope Wars Updates.lnk = C:\Program Files\Dopewars\WiseUpdt.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Si&milar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Free History Cleaner (HKLM)
O9 - Extra ‘Tools’ menuitem: Free History Cleaner (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra ‘Tools’ menuitem: Messenger (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

Hm, i only see two problems.

Your Windows is not up to date, so visit www.windowsupdate.com .
You do have to much AV-Software and firewalls activ.
You should deinsall Mcafee, AVG, Norton, so only Avast and Zonealarm are left over. Doing that maybe solve your Problem.

Hi,

Plus inform yourself about emailworms and “spoofing”

Receiving an email alert stating that the virus came from your email address is NOT an indication that you are infected
as the virus often forges the from address:

  • somewhere in the infinite reaches of the universe/internet, a PC is infected with netsky AND has your Email-adress saved somewhere.
    The Worm then sends out itself with fake sender-adress; a Mailserver-Scanner then wrongly interprets this virus-mail as coming from you, and sends you the above (inappropriate and useless) reply.

what does a full scan with updated AV-Scanner say ?
if it says your PC is clean, it most probably is
:wink:

Read the virusinfos (see below or on avast HP) on netsky
For the future:
apply all Windowsupdates, and configure your Mail-Program and Web-Browser more securely (see board-search above)
:slight_smile:

my computer kept on stuting it self down by itself so i dont know whats going on i had a weird box pop up saying dont send or send i just put dont send

like i said i’m all new to this

You do have to much AV-Software and firewalls activ.
You should deinsall Mcafee, AVG, Norton, so only Avast and Zonealarm are left over. Doing that maybe solve your Problem.

i have took avg and mcafee off carnt find norton

i do hope this helps

configure your Mail-Program and Web-Browser more securely (see board-search above)
:slight_smile:

how ??? ??? ???

a) http://forum.avast.com/index.php?board=4;action=search
b) Just by entering the above phrase into google you’ll find e.g. ThisLink

Remove Symatec/Norton:

a)
www.symantec.com
b) via start-programs-Norton/symantec or control panel → Norton/Symantec → Uninstall

c) Link1
Link2

d) Brain 1.x
e) Windows-Help
:wink:

You could just search your computer for Norton, or use this: here

-Sorry about posting the entire link earlier, I didn’t have enough time.