Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with something that Bitdefender can't seem to find.


  • Please log in to reply
3 replies to this topic

#1 Arma

Arma

  • Members
  • 76 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 23 December 2008 - 09:00 AM

Since the 21th December I started to be unable to use my computer properly. Each time I would type something on yahoo, it would take more time than usual and when I want to click on some result, instead of taking me to the page that is displayed I would be taken to some random spam site such as porntube.

Also aside from BitDefender and AVG Anti-Spyware, I am unable to use now Spybot, Malewarebytes and SUPERAntispyware, they just would either crash (SUPERAntispyware) or not boot at all (Spybot and Malewarebytes).

Since BitDefender still worked, I ran a scan and found the following viruses:

C:\WINDOWS\system32\ActiveScan\pskavs.dll Trojan.Generic.1020738 Deleted

C:\Documents and Settings\XXX\Local Settings\Temp\wJQs.exe Trojan.Retapu.D Deleted

C:\Documents and Settings\XXX\Local Settings\Temp\Acr85D2.tmp=](JAVASCRIPT) JS.Obfuscated.Gen Deleted manually in safe mode

AVG Anti-Spyware, hasn't been updated since June 2008 and I can't seem to be able to update it since it says "can't connect to server, same goes for the BitDefender. I think the reason for that is, when I tried to run Panda Active Scan Pro, BitDefender asked me if I would allow or block regsrv32, I used the option block whitout knowing it was not a virus. Now I am seem tp be unable to update any of my anti-virus...

Still, I ran 2 scans with BitDefender, the full system scan found 3 viruses listed earlier which I have gotten rid of as I said before and then I ran a Deep System scan and it only found 1 cookie called "Overture" or "Ouverture" and it deleted it.

After that, I ran a scan with AVG Anti-Spyware, it said it found 5 sources which showed that 3 cookies where dangerous, so I deleted them. After that I ran a scan for the registry and it found Adware.SearchIT, so I put it in quarantine.

But it still didn't fix the problem as it should be noted also it should be not that now I can't access:

bleepingcomputer, microsoft websiteand bitdefender website.

I also have some trouble downloading stuff such as ComboFix, though I found a link in another topic that worked. But even though i put ComboFix on my desktop, exited internet explorer pages and Bitdefender, it didn't work.

Also, as I said I can not connect to bleepingcomputer, microsoft and bitdefender website whitout using a web proxy, as a matter of fact I am using one right now. Which seems the only way I can actually access the page, otherwise I get a blank page. Also, when I don't use a proxy search engines, such as yahoo, google are completly messed up as I said earlier.

What should I do?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:02 PM

Posted 23 December 2008 - 12:55 PM

Hello and welcome. Please perform all the steps you can to post an HJT log from this guide,thanks. Avoid running ComboFix until the HJT team member asks for it.

Preparation Guide For Use Before Posting A Hijackthis Log
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Arma

Arma
  • Topic Starter

  • Members
  • 76 posts
  • OFFLINE
  •  
  • Local time:03:02 PM

Posted 11 February 2009 - 12:33 PM

This virus really left a dent on my computer, plus it looks like it manages to meedle with my internet cnnection as well. If I do a reformat of my computer, will it fix the problem? And is there a way for me to get a new IP adress? Right now I lost my internet connection for a second time in less than a month and it seems the only way to get it back up is to call my ISP and ask them to reset my line...

Edited by Arma, 11 February 2009 - 12:38 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,489 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:02 PM

Posted 11 February 2009 - 03:16 PM

Perhaps you just need to renew it.
Renew Your IP Address
Go to START>RUN and type cmd. At the command line type ipconfig /release (or winipcfg /release in earlier versions of Windows). Then hit ENTER. Next, type ipconfig /renew and you should get a new IP address from the router.

If you have a cable modem, you may want to also renew its IP address. First, go ahead and release the IP address on the PC, then shut the computer down. Next, unplug the cable modem for a couple of minutes, then plug it back in again. Once all of the modem lights are green, power up the PC again. It should automatically renew its IP at boot.

Note: If you have a router, you'll want to unplug it, as well, then plug it back in AFTER you plug in the modem, but before you power up the PC. The router will need to supply the PC with a new IP address.
--PCTechBytes

Wiping your drive, reformatting, and performing a clean install of the OS or doing a factory restore removes everything and is the safest action.
Reformatting a hard disk deletes all data. If you decide to reformat, you can back up all your important documents, data files and photos. The safest practice is not to backup any autorun.ini or .exe files because they may be infected. Some types of malware may disguise itself by adding and hiding its extension to the existing extension of files so be sure you take a close look at the full name. After reformatting, as a precaution, make sure you scan these files with your anti-virus prior to copying them back to your hard drive.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users