my pc got slammed with alot of adware spyware and viruses. how do i get rid of them because my mcafee doesnt detect anything is wrong. waste of $50.

Hi there Makospawn , welcome to PCHF.

If you follow the instructions in the "Prework" link (below in my sig) and post the two resulting log files then i'll have a look what needs to be done to get youre pc running smooth again.

attached are the logs

In this case don't blame Mcafee , i dont think any normal AV can remove these buggers you have on there. But we'll get it clean.


First please download and run this tool:

http://securityresponse.symantec.com...r/FxDtcmtb.exe


Then boot in safemode (hit f8 when booting up) and fix these with hijackthis:
(if still present)

Then delete the files above in bold , and do a manuall search for these files:

caeihwb.exe
sdrbd.exe

Delete all you find , and after that run Ccleaner again.

Reboot to regular mode and please do a Panda active scan here:

http://www.pandasoftware.com/products/activescan

and save the log from it.


Please Download RKFiles.zip

Create a new folder C:\Antispyware\RKFiles
Extract the contents of RKFiles.zip into the new folder you just created.

Next, Create a new Folder on Desktop. Name that Folder QOOLOGIC
Please download Findqoologic into the new Folder, and then unzip it into the new Folder.

Now restart to safe mode again.

Open the C:\Antispyware\RKFiles folder
Double click on RKFILES.BAT
Give it time to run. this may take a while.
Save the text file it creates.
It should save by default to C:\Log.txt

Next, open the QOOLOGIC Folder and Locate and double-click the Find-Qoologic.bat file to run it.
Wait until a text file opens, post it in a reply to your thread after doing the rest of what follows here.
It'll take a while to run a full scan so please be patient.

When done please post a new hjt log , the Panda log , the Findqoologic log and the RKfiles log.

more logs attached.

Download Pocket Killbox:
http://www.atribune.org/downloads/KillBox.exe

Boot in safemode , start Killbox and place a tick next to [x]delete on reboot.
And press the "all files" button. (just above the yellow triangle)

Copy this list into the windows clipboard:


C:\WINDOWS\SYSTEM32\BVGAWR.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\sdrbd.exe
C:\WINDOWS\keyboard41.dat
C:\WINDOWS\R3JlZ29yeSBELiBHdWVudGhlcg
C:\WINDOWS\system32\gsudj.dat
C:\WINDOWS\system32\qfwew.exe
C:\WINDOWS\BQCLVV.DAT


Back in Killbox go > file > paste from clipboard,
Click the red highlighted X button and say yes to the prompt, then click OK.
Exit Killbox and restart your PC.
BE SURE TO HIT F8 AGAIN WHILE BOOTING UP TO BOOT IN SAFEMODE AGAIN!


copy the text in the quote below, and paste it into a blank notepad window.
Save it as Qoologic.reg and in the "save as" type box choose "all files".

Double click on the regfile you just made and allow it to merge with the registry.
After that fix these 2 entry's with hjt:

Manually search for and delete this file:

caeihwb.exe , and run ccleaner again.

Then reboot to regular mode and post a new hjt log made in regular mode , and a new Findqoologic log.

sorry about the PM, here's the logs