Well, I gave up waiting for McAfee or Malwarebytes to actually clean Generic.dx!hkz, so I reformated the harddrive - that did the trick!
Just incase someone at McAfee would like to know, I tried cleaning out this thing manually:
- Removed every line from the Registry where \Run\, \Runonce\, \BTCORun, \BTCORunOnce occurred
- Removed every line from Startup from all user profiles within \Documents and Settings
- About every 5 minutes a new empty directory would be created in Windows\temp with a name of xxxx.xxx
- An instance of iexplorer would launch, I'm assuming in the background because no browser would display, with the following in the command line:
- C:[Bslash]Program Files[Bslash]Internet Explorer[Bslash]iexplorer.exe http:[slash][slash]top-name.cn[slash]in.cgi?5
- I kept finding references and directories to "WebShots" when I'd search for "top-name".
- I thought I cleaned all of them out, but I'd eventually find them again
- If I left the network connection open I'd get a new window with a random start page, like DirectTV or a sports network
Add one more cent: Webroot Spy Sweeper with Antivirus won't help this issue neither. Don't waste money on that.