Virus, trogen, worm or all three
Closed
Tobi.puppy
-
Sep 1, 2010 at 08:05 AM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Sep 6, 2010 at 06:53 AM
Ambucias Posts 47310 Registration date Monday February 1, 2010 Status Moderator Last seen February 15, 2023 - Sep 6, 2010 at 06:53 AM
Related:
- Torgen worm
- Wall worm italy - Home - Apps & Sites
2 responses
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,164
Sep 1, 2010 at 08:09 AM
Sep 1, 2010 at 08:09 AM
Hello,
Let's begin with this:
Download, install and run Malwarebyte which you can find on this site:
https://ccm.net/downloads/security-and-maintenance/4621-malwarebytes-anti-malware/ es-anti-malware
Ensure you make an update.
Please request a FULL system scan, which may take from 20 minutes to hours. Do not interfere no matter how long in takes. The creators of Malwarebyte recommend that while the tool is running that you go do something else, such as watching a rerun of Gone with the Wind or read Tolstoy's War and Peace.
If Malwarebyte restarts your system, launch it again to finish the Full scan.
When the scan is completed, delete all items found.
Once your computer is clean and working normally just to be on the safe side
*Turn off system restore and wait 30 seconds,
*Turn it back on and create a new restore point.
This way it gets rid of anything bad that might have gotten saved in a restore point and you have a clean restore point to use in the near future if needed.
Do not turn it off until your computer is clean and working normally because you might need to use it if something goes wrong during the clean-up process.
It is better to go back to an infected restore point if something goes wrong then to not be able to undo changes that were damaging.
Let's begin with this:
Download, install and run Malwarebyte which you can find on this site:
https://ccm.net/downloads/security-and-maintenance/4621-malwarebytes-anti-malware/ es-anti-malware
Ensure you make an update.
Please request a FULL system scan, which may take from 20 minutes to hours. Do not interfere no matter how long in takes. The creators of Malwarebyte recommend that while the tool is running that you go do something else, such as watching a rerun of Gone with the Wind or read Tolstoy's War and Peace.
If Malwarebyte restarts your system, launch it again to finish the Full scan.
When the scan is completed, delete all items found.
Once your computer is clean and working normally just to be on the safe side
*Turn off system restore and wait 30 seconds,
*Turn it back on and create a new restore point.
This way it gets rid of anything bad that might have gotten saved in a restore point and you have a clean restore point to use in the near future if needed.
Do not turn it off until your computer is clean and working normally because you might need to use it if something goes wrong during the clean-up process.
It is better to go back to an infected restore point if something goes wrong then to not be able to undo changes that were damaging.
Ambucias
Posts
47310
Registration date
Monday February 1, 2010
Status
Moderator
Last seen
February 15, 2023
11,164
Sep 6, 2010 at 06:53 AM
Sep 6, 2010 at 06:53 AM
To fix the problem, I must have a Hyjacthis log.
http://free.antivirus.com/hijackthis/
Please download, install and request a scan and save a log. Copy the log and post it here.
Regards
http://free.antivirus.com/hijackthis/
Please download, install and request a scan and save a log. Copy the log and post it here.
Regards
Sep 6, 2010 at 06:44 AM
thank you for your response, but i have done this with Maleware byes, i am sure i did metion this. it did pick up two infected system files, but this does appear again so they might have been something completely different.
i would like to mention that this "what ever" latches onto the system files, i lose intenet history and restore points as well as admin rights to my whole computer. its catch twenty two. i did try using safe mode to look for help on the internet cause the "what ever" didnt seem able to get through but eventually it did, so safe mode is out as well.
the main thing im looking for, is what it is, and maybe a way to stop it or if i have to reformatte a way to prevent it from coming back.