Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Help With Trojan On Vista


  • Please log in to reply
14 replies to this topic

#1 david21

david21

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 10 March 2008 - 11:01 PM

ok lets start with this i have vista (sux) its a 2500 dallar computer and i screwed up so lets start here i was looking up porn all guys do it so spare the jokes please i got a message saying i didnt have the right codec 4 the movie well when i got the code i found out it was a trogan funny right when you think of porn think of trogan but ya i get a message on yahoo saying my browsers been hijacked so i run my spyware and virus software all up to date (avg) and neather detected anything and im stumped i tryed all i know i get this anoying ass pop up ever time i click some thing saying

---------------------------
System Error!
---------------------------
Your computer was infected by unknown trojan.
It's dangerous for your system (critical files can be lost)!

Click OK to download the antispyware program to clean your system! (Recommended)
---------------------------
OK Cancel
---------------------------

even when im not online i get this when i thought i was geting a codec i got problems it open comand promt and went from there i have a dell i have vista and i need help so please if you can help hit me up im online 24/7 at yahoo at miltondavid21


Mod Edit: Email address removed to protect against spam and modified topic Title ~TMacK

Edited by david21, 10 March 2008 - 11:13 PM.


BC AdBot (Login to Remove)

 


#2 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 10 March 2008 - 11:48 PM

man vista sucks nothing but problems i even done ccleaner and system restore bunch of bull

Edited by david21, 10 March 2008 - 11:49 PM.


#3 PropagandaPanda

PropagandaPanda


  • Malware Response Team
  • 10,433 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:26 PM

Posted 11 March 2008 - 10:54 AM

"Trojan" is malware hidden in a program, usually a .exe file. The pop up you are getting is malicious adware; your computer probably does not have a trojan (atleast not based on what we know).

Please list your antimalware programs you ran so we don't end up repeating anything.

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 11 March 2008 - 01:19 PM

Please download Malwarebytes Anti-Malware and save it to your desktop.
alternate download link
  • Double-click on Download_mbam-setup.exe to install the application. (If using Windows Vista, be sure to "Run As Administrator")
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
  • MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
  • On the Scanner tab:
    • Make sure the "Perform Quick Acan" option is selected.
    • Then click on the Scan button.
  • The next screen will ask you to select the drives to scan. Leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".

    Posted Image
  • Click OK to close the message box and continue with the removal process.
  • Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply and exit MBAM.
Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process and, if asked to restart the computer, please do so immediately.

Please download ATF Cleaner by Atribune & save it to your desktop. DO NOT use yet.
Please download and install SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here and unzip into the program's folder.)
  • Under the "Configuration and Preferences", click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen and exit the program.
  • Do not run a scan just yet.
Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Double-click ATF-Cleaner.exe to run the program.
  • Under Main "Select Files to Delete" choose: Select All.
  • Click the Empty Selected button.
  • If you use Firefox browser click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
    If you would like to keep your saved passwords, please click No at the prompt.
  • If you use Opera browser click Opera at the top and choose: Select All
  • Click the Empty Selected button.
    If you would like to keep your saved passwords, please click No at the prompt.
  • Click Exit on the Main menu to close the program.
Note: On Vista, "Windows Temp" is disabled. To empty "Windows Temp" ATF-Cleaner must be "Run as an Administrator".

Scan with SUPERAntiSpyware as follows:
  • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 11 March 2008 - 01:20 PM

the programs i have for virus and malware spyware are, windows defender, avg professional edition, i also used my registry cleaner, registry defrag and ccleaner but i can not seem to find whats making this popup and thanks for trying to help

#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 11 March 2008 - 01:32 PM

Ok. Just continue with the instructions I have provided.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#7 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 11 March 2008 - 05:33 PM

thank you there sir worked like a charm all fixed up

#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 12 March 2008 - 07:19 AM

If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state. Then use Disk Cleanup to remove all but newly created Restore Point.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#9 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 12 March 2008 - 03:35 PM

thanks but i did that soon as it got fixed the only thing it didnt fix is my speed im still running slow even thought its gone would you know how i can gain my speed back my internet is so slow now its not funny and i freeze up alot

Edited by david21, 12 March 2008 - 03:36 PM.


#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 12 March 2008 - 05:16 PM

If your computer seems to be slow, read Slow Computer/Browser? Check here first; it may not be malware. There are reasons for slowness besides malware - i.e. disk fragmentation, disk errors, corrupt system files, too many startup programs, unnecessary services running, not enough RAM, dirty hardware components, etc. As your system gets older it becomes filled with more files/programs and has a natural tendency to slow down so cleaning and regular maintenance is essential.
Note: If you are not on a local area network (LAN), disable the Workstation Service which creates and maintains client network connections to remote servers and that should also help to speed up your boot time.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#11 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 12 March 2008 - 10:56 PM

yes sir boss will do thanks again 4 the help

Edited by david21, 12 March 2008 - 10:57 PM.


#12 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 13 March 2008 - 02:37 AM

ok i done wat it said to do on there now my cpu is running about 4 to 7% but my physical memory is running between 82 to 94% how do i lower the physical memory alot of wat i was reading was 4 xp i got vista unlim

if this helps my system info is:

processor: intel® pentium® 4 CPU 1.90GHz 1.89GHz
memory (Ram): 511MB
system type: 32-bit Operating system

so wat im wondering should my physical memory be that high
the two things making me run that high are

explorer.exe running at 20,836k (physical memory)
iexplorer.exe running at 27,516k (physical memory)

i deleted all my cookies and browser history and other stuff to be4 i did that
explorer.exe was at 54,036k (physical memory) so wat im wondering is the anything else i can do to lower my (physical memory)

Edited by david21, 13 March 2008 - 02:55 AM.


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 13 March 2008 - 08:21 AM

ok i done wat it said to do on there now my cpu is running about 4 to 7% but my physical memory is running between 82 to 94% how do i lower the physical memory alot of wat i was reading was 4 xp i got vista unlim

Correct but a lot of the principles still apply like trimming your startup applications, checking your services, defrag, etc.

I don't use Vista so start a new topic in the Vista Forum titled something like "Memory Problems." Other members who use Vista will be able to assist you and probably offer additional tips to improve your performance.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 david21

david21
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 13 March 2008 - 06:07 PM

ok thanx 4 all the help man take care bye

#15 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,122 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:26 PM

Posted 13 March 2008 - 06:11 PM

Your welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users