Jump to content


Photo
* * * * * 1 votes

Got a virus, need urgent help!


  • Please log in to reply
103 replies to this topic

#21 CommonSense

CommonSense

    Super WinMatrixian

  • Member
  • 2,620 posts

Posted 23 September 2009 - 09:26 PM

Yeah it's there, how do I disable it?

Uncheck the box and click apply. I'm hoping this helps.

#22 hab

hab

    Active WinMatrixian

  • Member
  • 996 posts

Posted 23 September 2009 - 09:35 PM

I had the same virus - just do a full boot time scan with avast and it'll be gone - really it's that simple

#23 poolsharkzz

poolsharkzz

    XP - 'till the world blows up!

  • Member
  • 403 posts

Posted 23 September 2009 - 09:39 PM

I'm sorry poolsharkzz but how does that help The Alpha Gamer? He has a virus, not a dust bunny.



CommonSense:

Yes, you are correct, he still has a problem - a nasty virus by the looks of it - which is the exactly why I stated that after he was completely positive that he was over and done dealing with that virus, he could go on to the other issues he may or may not (or that you may or may not) recognise as additional problems.

Please review his first post:

"and did a quick scan with Spybot S&D, I didn't let it do a full search because it overheats my laptop"

Hmmm... get's ya thinkin', don't it?

Either he has the worst made and most underpowered laptop in the world or there might be a underlying problem, no?

Step 1.) Dust Bunnies
Step 2.) Hardware Issues
Step 3.) Reformat
Step 4.) Buy a new laptop

If he would have downloaded, installed, updated, and than ran a few scans with the security programs I listed, he should now be in a good position to tackle the other problems his laptop has.

I'm sorry to "burst the bubble" here but if his computer is overheating and crashing cause of running Spybot S&D...

If he cannot get rid of his nasty - reformat!

Oh, and by the way, I'd bet good money his system would run much better afterwards!

poolsharkzz


Attached File  Virus.gif   22.34K   0 downloads

#24 CommonSense

CommonSense

    Super WinMatrixian

  • Member
  • 2,620 posts

Posted 23 September 2009 - 09:42 PM

It's a possibility that it's underpowered. :lol:

Programs are becoming more and more resource heavy, and by adding more programs that run simultaneously, it could cause Windows to crash. But it could just be a dusty notebook inside.

Edited by CommonSense, 23 September 2009 - 09:45 PM.


#25 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 23 September 2009 - 10:10 PM

Just got rid of it from the start up, how will I know if it worked?

I had the same virus - just do a full boot time scan with avast and it'll be gone - really it's that simple


I did, it found nothing and then found the same virus again after Windows had loaded

Edited by The Alpha Gamer, 23 September 2009 - 10:12 PM.


#26 poolsharkzz

poolsharkzz

    XP - 'till the world blows up!

  • Member
  • 403 posts

Posted 23 September 2009 - 10:23 PM

I mean, take a hard look at his Hijack This! log...

1.) How many Tool Bars does he have installed - and don't need a one of them?

2.) How many BHOs does he have listed and don't need?

3.) How many unneccessary or unneeded services are running in the background?

4.) XP SP2, qttask.exe, ctfmon.exe, realsched.exe, msnmsgr.exe, gnotify.exe, GoogleUpdaterService.exe, etc. - ???

Do ya feel me?

All I was saying is that sometimes it is best to invest $35.00 on a RAM upgrade, some elbow grease, a day or two of his time to sit down and start over from the very beginning. I know, it sucks...

I just spent 3 weeks fully reformatting, customizing, tweaking, and tuning up my rig.

The way I see it, there is much more going on here than a nasty virus problem.

How old is this laptop? You should reformat XP at least once per year or every year and a half anyways - for performance reasons.

poolsharkzz


* The Alpha Gamer -

I would run a few more scans using some of the other security programs I mentioned.

You can find them and a whole lot more here: http://www.majorgeeks.com

Top Freeware Picks: http://www.majorgeek.../page.php?id=20


Attached File  Clapping.gif   11.73K   0 downloads Attached File  Gum.gif   25.78K   0 downloads Attached File  Remote Control.gif   15.37K   0 downloads

Edited by poolsharkzz, 23 September 2009 - 10:29 PM.


#27 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 23 September 2009 - 10:35 PM

First of all, reformating is out of the question, it's not my laptop, it's my dad's. we'll got too much stuff on here to save and we didn't get the discs with it to reinstall XP.

And now my internet is being used even when I have no pages loading, and seeing as I don't get much internet per much, that's a very bad thing.

Which program would be best to get for this virus then?

#28 CommonSense

CommonSense

    Super WinMatrixian

  • Member
  • 2,620 posts

Posted 23 September 2009 - 11:06 PM

First of all, reformating is out of the question, it's not my laptop, it's my dad's. we'll got too much stuff on here to save and we didn't get the discs with it to reinstall XP.

And now my internet is being used even when I have no pages loading, and seeing as I don't get much internet per much, that's a very bad thing.

Which program would be best to get for this virus then?

What do you mean it's being used? Once your connected to your network, packets are being sent out and being returned, Windows Update is probably looking for updates... I don't know, but something is uploading or downloading obviously.

For removal, Malwarebytes normally gets rid of them. Avast! Home, AVG, Avira Free are other free AV's. Kaspersky and NOD32 are the best AV's but they are payware, but trial keys can always be used. Spyware protection is normaly incorportaed into AV's now, but Ad-Aware is good, but also look at CNET's Download.com's top Editor's picks.

#29 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 23 September 2009 - 11:15 PM

Well Avast found one thing and that was in start up. Malwarebytes found atleast 9 things and then froze my laptop twice after restart. And Spybot found 3 things that were all Registry entries. I've just checked the registry entries I was told to look for on the last page for AV Care and none of them are there, so I'm guessing it must just be the win32.agent.pz thing

And I mean when I check how much kb is being used on my broadband, when i'm not loading anything it normally stays at 0. Earlier it stayed over 100. And when on dial-up and I'm not loading anything, the little icon of two computers in the system tray doesn't light up and the one that looks like a traffic light stays red. atm they're constantly lit up and the traffic light one is green.

#30 poolsharkzz

poolsharkzz

    XP - 'till the world blows up!

  • Member
  • 403 posts

Posted 23 September 2009 - 11:18 PM

I wouldn't count out reformatting - you just might have to if you cannot solve this or more damage comes to this system cause of this virus.

Since you do not have any of the disks (which you really don't need) I would call HP and order them ASAP.

I would google: "need to reformat an HP laptop"...

http://www.ehow.com/...-hp-laptop.html

http://www.ehow.com/...ion-laptop.html

http://www.windowsbb...-hp-laptop.html

Check out HP's website or you can call HP Technical Service: http://www.hp.com/#Support

That is, after you have saved all your Dad's stuff.

As for programs, I already gave you a list:

AVG Free 8.5
Spyware Terminator
SUPERAntiSpyware

and here is a few others...

Comodo Antivirus
Comodo BOClean Anti-Malware
Norman Malware Cleaner

You can get them from the Major Geeks website.

Try running the top 3 programs first - let's see what the outcome is, okay?

If the nasty is still there afterwards, we will take it to the next level.

poolsharkzz



Attached File  Cannon.gif   2.21K   0 downloads Attached File  Worm.gif   3.66K   0 downloads Attached File  Machine Gun.gif   659bytes   0 downloads

Edited by poolsharkzz, 23 September 2009 - 11:28 PM.


#31 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 23 September 2009 - 11:48 PM

I wouldn't count out reformatting - you just might have to if you cannot solve this or more damage comes to this system cause of this virus.

Since you do not have any of the disks (which you really don't need) I would call HP and order them ASAP.

I would google: "need to reformat an HP laptop"...

http://www.ehow.com/...-hp-laptop.html

http://www.ehow.com/...ion-laptop.html

http://www.windowsbb...-hp-laptop.html

Check out HP's website or you can call HP Technical Service: http://www.hp.com/#Support

That is, after you have saved all your Dad's stuff.

As for programs, I already gave you a list:

AVG Free 8.5
Spyware Terminator
SUPERAntiSpyware

and here is a few others...

Comodo Antivirus
Comodo BOClean Anti-Malware
Norman Malware Cleaner

You can get them from the Major Geeks website.

Try running the top 3 programs first - let's see what the outcome is, okay?

If the nasty is still there afterwards, we will take it to the next level.

poolsharkzz



Attached File  Cannon.gif   2.21K   0 downloads Attached File  Worm.gif   3.66K   0 downloads Attached File  Machine Gun.gif   659bytes   0 downloads


1. I have no way of backing everything up
2. It's not an HP Laptop, it's a Packard Bell
3. I can't change the Antivirus we use
4. How will spyware programs help when it's malware?

#32 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 24 September 2009 - 02:13 AM

Ok I just downloaded Superantispyware and did a found 338 items. 320 were only tracking cookies though. It said it needed to restart and it did so hopefully it's better now, I'll do full scan tomorrow and see what I find. What do you recomend I scan with? Avast, Spybot, Malwarebytes or Superantispyware?

#33 ohnoitsroman

ohnoitsroman

    New WinMatrixian

  • Members
  • 6 posts

Posted 24 September 2009 - 03:24 AM

Ok I just downloaded Superantispyware and did a found 338 items. 320 were only tracking cookies though. It said it needed to restart and it did so hopefully it's better now, I'll do full scan tomorrow and see what I find. What do you recomend I scan with? Avast, Spybot, Malwarebytes or Superantispyware?




superantispyware ftw. hasn't let me down yet.

eset nod32 v.4 with superantispyware has given me a clean computer for a long time now.

#34 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 24 September 2009 - 12:17 PM

Just done a new scan with Spybot

Posted Image

What do I do now? Click repair or go edit the registry or something?

#35 Syzygy

Syzygy

    Zing.

  • Member
  • 3,470 posts

Posted 24 September 2009 - 01:09 PM

Just done a new scan with Spybot

Posted Image

What do I do now? Click repair or go edit the registry or something?

SpyBot S&D Don't fix those problems. Deleting the registry entries will do nothing, as the program can just as easily re-write the registry entries.

You should follow this person's problem: http://forums.techgu...ving-win32.html

Use ComboFix + SDFix.

Should do the job

Goodluck :D

#36 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 24 September 2009 - 01:27 PM

Isn't there another way? I'm really not comfortable using Safe Mode

#37 Syzygy

Syzygy

    Zing.

  • Member
  • 3,470 posts

Posted 24 September 2009 - 01:41 PM

Isn't there another way? I'm really not comfortable using Safe Mode

Ugh, what's wrong with safemode?...

If you're going to be removing viruses in Normal Mode, then good luck - because the virus would partially be running still.

Lemme rephrase that.

DO IT OR YOU'RE GOING TO BE STUCK WITH THE VIRUS.

Edited by Syzygy, 24 September 2009 - 01:43 PM.


#38 The Alpha Gamer

The Alpha Gamer

    Active WinMatrixian

  • Member
  • 996 posts

Posted 24 September 2009 - 03:34 PM


Isn't there another way? I'm really not comfortable using Safe Mode

Ugh, what's wrong with safemode?...


The fact that I don't know how to use it, never used it before and don't know how to get it back to normal afterwards

Besides, how can you be sure that solution would work for me? Aren't all cases different?

#39 poolsharkzz

poolsharkzz

    XP - 'till the world blows up!

  • Member
  • 403 posts

Posted 24 September 2009 - 07:14 PM

Yes - Agree - you should be doing all your scans in Safe Mode.

Yes - Click on Repair - It won't hurt nothing and then you could always Restore if needed.

I would then follow the advise that gave Syzygy gave you: Use ComboFix + SDFix

Take some time and look over the link he provided - it's the solution to your virus problem:

http://forums.techgu...ving-win32.html

A couple of things:

1.) "Malware" is a generalized, generic term used to describe all forms of evil nastys:

http://en.wikipedia.org/wiki/Malware

2.) I thought you had an HP laptop because acording to your Hijack This Log you are running HP Software - possibily an HP Printer?

Let's do this: Provide me with the general basics of your system. You can find this info by using the System Control Panel Applet

3.) Why can't you change the anti-virus software you currently using? What's the boggle? Did you pay for a subscription? You may have to, especially since what you have now isn't doing it's job as well as it should - i know I would be looking at others! There are many free kick-ass antivirus programs that are top-tier in rated performance.

AVG Free is one of them, so is Comodo. I'd bet there are at least 10 to choose from.

4.) There many ways to backup and save what you need to have backed up and saved:

Windows Sky Drive - 25 GB of Free Storage http://skydrive.live.com

Create a free Yahoo or Gmail Account - This way all you need to do is create a new e-mail and then attach what you need to have saved to that e-mail and then send it to yourself. Rinse and repeat as necessary until you have all saved.

Purchase an Exterior Hard Drive - My 250 Gig was $70.00 from Dell.

Purchase a USB Pen Flash Drive - These will run you anywhere from $8.00 to $25.00 - depending on it's size. I would suggest going to either Walmart or Kmart this weekend and pick yourself up one - depending on the amount you need to have backed up and saved, I would suggest buying either a 4 Gig or an 8 Gig - SanDisk makes a good product.

A USB Pen Flash Drive might be the easiest way - all you will need to do is simply right-click on a file or folder and then choose "Send to..." A Context menu option will appear and then you pick "Flash Drve" - piece of cake!

Can that system burn CDs? If so, a stack of 100 CD-Rs wil cost you between $8.00 and $15.00 - that's a steal!

It is good to see that you ran both SUPERAntiSpyware and Spybot S&D again - how many nastys? Some were Tracking Cookies - What were the others? Can you provide me with some kind of report or log?

I knew there was more to this than a virus - Please leave both installed for the moment - After we get done with this virus, we can work on hardening your system so that all them Tracking Cookies and such don't reinfect your rig.

Okay - You have your marching orders - follow the advise that gave Syzygy gave you.

Go kick some virus ass!

poolsharkzz


PS. Getting into Safe Mode:

Windows XP

Using the F8 Method:

Step 1.) Restart your computer.
Step 2.) When the machine first starts again it will generally have your computer's OEM Logo.
Step 3.) At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Step 4.) Select the option for Safe Mode using the arrow keys.
Step 5.) Then press enter on your keyboard to boot into Safe Mode.
Step 6.) Do whatever tasks you require and when you are done reboot to boot back into normal mode.

Google is also your best friend!


Attached File  Dance_lessons.gif   4.52K   0 downloads

Edited by poolsharkzz, 24 September 2009 - 07:40 PM.


#40 poolsharkzz

poolsharkzz

    XP - 'till the world blows up!

  • Member
  • 403 posts

Posted 24 September 2009 - 07:50 PM

Here is some more help:

http://www.scanforfr...pz-removal.html

http://forums.spybot...ead.php?t=42527

http://forums.majorg...ad.php?t=145328

http://www.geekpolic...help-t14421.htm

When you have everything cleaned out of your system, post another Hijack This! Log.

Good Luck!

poolsharkzz

Attached File  Ultimate_combo.gif   70.41K   0 downloads

Edited by poolsharkzz, 24 September 2009 - 07:54 PM.


Want to comment?

Register or Sign In to go completely ad-free!