Phantom Audio, Ad-Clicker worm, need help

[Simply Amazing]

Well, I'm at work currently and don't have access to my PC, so I wasn't able to do all of the steps in the sticky yet.

Basically, I'm just inquiring about some basic advice, before I go home and go threw all the steps and upload my logs.

Maybe, someone can offer me some general advice before I get home and do this the correct way.

Well, last night, I visited FPSBanana.com which has been hijacked and currently has a virus.

There's a hidden iFrame which takes you to this http://www.tossads567.com/f/index.php site, which gives you the virus/worm whatever.

I visited the site on google chrome, with adblock, and I was running McAfee, I also tested this on a virtual machine with the same setup, but MSE(microsoft security essentials) instead of McAfee, both got the bug.

As a side note, is MSE any good? people have said it's great, and according to an article i read in PC magazine, it was ranked as one of the best free av. But with my experience, i've found that it sucks?

anyway back to the topic,

it run's an iexplore.exe process. which uses anywhere 30,000-150,000k memory.

It sometimes will popup ad's in internet explorer, which I have never used once on this machine.

It loads random commercials, for like Sham-WoW and shampoo, and orangejuice and a washing machine.

It makes clicking noises, like when you click links in internet explorer, which makes me guess, this is an Ad-Clicking worm to make someone money with google ads or something.

And, randomly usually 1-5 mins after the process starts back up, after I kill it in task manager, it will turn down my 'Wave' volume, in my master volume control for windows. I assume, so I don't hear all these crazy ads and commercials.

I've scanned with McAfee, MSE, MalwareBytes, and SuperAntiSpyware, nothing has found an infection, scanned in safe mode, and regular mode.

usually, your guys tool, mwb anti-malware, does the trick and removes anything from my pcs, vm's, and friends computers that I work on.

This time, it cannot find the culprit,

has anyone had any experience with this, and can give me some help?

Or am I boned, until I get home and run through all the steps. Sorry, not trying to be impatient, just kinda worried and I cant find any reliable information about this situation on google. Found others having the same problem, but nobody with a solution.

I'm running Windows XP home, 32bit, SP3, legit, genuine.

on both the virtual machine and my main machine.

Thanks in advance for any help or information.

and a long overdue THANK YOU, for the Malware removal tool, this is the first time it's never picked up the bug. I've used it millions of times with great success, and I honestly thank you very much for your time and work into that great FREE tool.

also: I ran a scan on fpsbanana with novirusthanks.org/com whichever, and it picked up the iframe, and http://www.tossads567.com/f/index.php that link, but said it was clean, when I scanned both URL's, obviously thats a lie.

And I'm positive for a fact, that this is where I received the nasty bug.

[Simply Amazing]

Sorry to double post so soon, I cannot find an edit button to edit my post.

But, I left my PC on in safe mode, because I was letting McAfee run a "Full Scan" with the hope it might find something, and because this takes forever, I just left it running while I went to work.

Should I call my girlfriend and have her turn my PC off, or will it not be a big deal until i get home.

[Maniac]

Hello Simply Amazing! Welcome to Malwarebytes' Anti-Malware Forums!

My name is Borislav and I will be glad to help you solve your problems with malware. Before we begin, please note the following:

• The process of cleaning your system may take some time, so please be patient.
  
• Follow my instructions step by step if there is a problem somewhere, stop and tell me.
  
• Stay with the thread until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  
• Instructions that I give are for your system only!
  
• If you don't know or can't understand something please ask.
  
• Do not install or uninstall any software or hardware, while work on.
  
• Keep me informed about any changes.
  

Follow these instructions and post all logs if you can:

http://forums.malwarebytes.org/index.php?showtopic=9573

[AdvancedSetup]

Due to the lack of feedback this Topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

The fixes and advice in this thread are for this machine only. Do not apply the instructions from this thread to your own machine. Please start a new thread describing your issue and someone will be along to assist you.