Options
Need help removing this Trojan. "Qoologic", I think?
Why, hello there. :o
I seem to have boxed myself into a corner here and I could use some advice. Before anyone asks, I did try the BFU/qoofix.bat combo already to no avail -- but I think I may have screwed something up.
Before I attach the logs, lemme throw out a little backstory. I received an instant message from a friend, sending me something called "image19.zip" or something. Like a dope, I opened it, and in seconds it'd duplicated the IM I received and re-sent it to everyone on my contact list in addition to the Trojan'd file.
Again, like an idiot -- seeing a pattern? -- I panicked and deleted the file and its contents. >_>;; Which may be the reason why BFU didn't work. Is there an alternate method to removing the virus? I don't mind taking it to a specialist if I have to.
I seem to have boxed myself into a corner here and I could use some advice. Before anyone asks, I did try the BFU/qoofix.bat combo already to no avail -- but I think I may have screwed something up.
Before I attach the logs, lemme throw out a little backstory. I received an instant message from a friend, sending me something called "image19.zip" or something. Like a dope, I opened it, and in seconds it'd duplicated the IM I received and re-sent it to everyone on my contact list in addition to the Trojan'd file.
Again, like an idiot -- seeing a pattern? -- I panicked and deleted the file and its contents. >_>;; Which may be the reason why BFU didn't work. Is there an alternate method to removing the virus? I don't mind taking it to a specialist if I have to.
0
Comments
We probably can solve it here, no need to take it to anyone else who may even charge you a fee.
Please follow the removal instructions listed here.
Next, please go to Control Panel > Add/Remove Programs and uninstall the following:
ScanSpyware
(Find out more about ScanSpyware as a "Rogue Anti-Spyware Program" here)
Restart the computer again. Post a new Panda ActiveScan log in your next reply.
EDIT: Just realized that at the time this log was created, I hadn't removed ScanSpyware. It's since been uninstalled.
Navigate to, and delete the following files if they still exist:
C:\Downloads\BearShareV6.exe
C:\Downloads\bsplayer221.950_clip.exe
C:\Downloads\SetupInstRe.exe
C:\Downloads\ss_install.exe
C:\Program Files\MyPlayCity.com\My Free Mahjong\MeMediaSetupInst.exe
C:\WINDOWS\system32\actskn45.ocx
Then download ATF Cleaner
- Double-click ATF-Cleaner.exe to run the program.
- Click Select All found at the bottom of the list.
- Click the Empty Selected button.
If you use Firefox browser, do this also:- Click Firefox at the top and choose Select All from the list.
- Click the Empty Selected button.
- NOTE : If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser, do this also:- Click Opera at the top and choose Select All from the list.
- Click the Empty Selected button.
- NOTE : If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.Post a new Panda ActiveScan log in your next reply. Let's keep our fingers crossed this time.
Huh . . . the post format and smiley buttons here don't work on Firefox anymore. Oh well, I'm sure it's nothing.
Should I try MSN again and see if anything bad happens?
Try MSN now, and see if things are back to normal.
Glad we could be of assistance! The help you received here was free.
This topic is now closed. If you wish it reopened, please send a Private Message to Trogan with a link to your thread.
If you are not the user who started this thread, you must start your own Thread instead