Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Heur


  • Please log in to reply
1 reply to this topic

#1 lexia

lexia

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:08:39 AM

Posted 03 June 2009 - 01:18 AM

To whom it may concern,

I have a custom made computer
The system it runs on is:
Microsoft Windows XP
Professional
Version 2002
Service Pack 3

It has:
Intel® Core™2 Due CPU
E8200@ 2.66GHz
2.67 GHz, 2.00 GB of RAM
NVIDIA GeForce 9600 GT

(Not sure if you need to know anymore in the computer department)

So basically my problem started a couple of days ago when my friend stupidly infected my computer with some virus/malware whatever it is.
I ran AVG version 8.5 and it detected it and said it was going to remove it on a reboot but it didn't.
I ran Avast! but that didn't help either so I just got rid of that.
I ran AVG in safe mode that didn't work either. I did this with system restore turned off.
Then I realised my computer was getting slower and popups in Chinese started showing up with the URL address "hxxp://dywt.com.cn". I also would get Internet Explorer popping up randomly and directing me to Chinese websites.
So I had a look at the process that was making these popups appear and it was a program called "F5AA40.exe" apparently it's in system32.
I also noticed in the past couple of days the amount of virus/malware thingos that were appearing in relation to this Heur virus kept increasing in AVG scan.

I recently did a Dr Web Cure it scan in safe mode. Still not sure if the virus is gone. Running AVG just to check and it hasn't come up with anything.

So please to anyone who can help direct me what to do next I would be most appreciative.

Thanks in advance,
Lexia

Edited by quietman7, 03 June 2009 - 01:02 PM.


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,399 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:06:39 PM

Posted 03 June 2009 - 01:03 PM

Please do not post active links to possible malware sites. I have disabled the one(s) you posted so others do not accidentally become infected.

I ran AVG version 8.5 and ...I ran Avast!

Using more than one anti-virus program is not advisable. The primary concern with doing so is due to conflicts that can arise when they are running in real-time mode simultaneously and issues with Windows resource management. Even when one of them is disabled for use as a stand-alone scanner, it can affect the other. Anti-virus software components insert themselves into the operating systems core and using more than one can cause instability, crash your computer, slow performance and waste system resources. When actively running in the background while connected to the Internet, they both may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.

Each anti-virus may interpret the activity of the other as malicious behavior and there is a greater chance of them alerting you to a "False Positive". If one finds a virus or a suspicious file and then the other also finds the same, both programs will be competing over exclusive rights on dealing with that virus or suspicious file. Each anti-virus may attempt to remove the offending file and quarantine it at the same time resulting in a resource management issue as to which program gets permission to act first. If one anit-virus finds and quarantines the file before the other one does, then you encounter the problem of both wanting to scan each other's zipped or archived files and each reporting the other's quarantined contents. This can lead to a repetitive cycle of endless alerts that continually warn you that a virus has been found when that is not the case.

Anti-virus scanners use virus definitions to check for malware and these can include a fragment of the virus code which may be recognized by other anti-virus programs as the virus itself. Because of this, most anti-virus programs encrypt their definitions so that they do not trigger a false alarm when scanned by other security programs. Other vendors do not encrypt their definitions and they can trigger false alarms when detected by the resident anti-virus.

Further, keep in mind that dual installation is not always possible because most of the newer anti-virus programs will detect the presence of others and may insist they be removed prior to download and installation of another. Nonetheless, to avoid these problems, use only one anti-virus solution. Deciding which one to remove is your choice. Be aware that you may lose your subscription to that anti-virus program's virus definitions once you uninstall that software.

Anti-virus vendors recommend that you install and run only one anti-virus program at a timeIf AVG is no longer detecting the threat, then Dr.Web probably removed it.

You can always get another opinion by performing an Online Virus Scan.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users