Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think my VISTA 64 bit desktop is infected


  • Please log in to reply
3 replies to this topic

#1 FloridaMark

FloridaMark

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 21 September 2009 - 09:31 PM

Hi-

I am suspecting that I have some virus or malware infections affecting my Windows Vista 64 bit desktop system. One to two weeks ago I noticed that my Internet connection seemed to be dramatically slower than usual. At about the same time my AVG Resident Shield detected I:\BOOTEX\thumbcache_131.exe (Trojan Horse downloader.Generic8.BPUE detected on open, Process name C:\Windows\explorer.exe) when I plugged in my thumb drive. I selected the option to move the threat to the Virus Vault but every time I eject the thumbdrive and reconnect it I get the same threat detection and have to remove the offending file again. This leads me to believe that I have a virus or malware on my system that AVG is not detecting and that every time I plug my thumb drive in the malware re-infects it again.

I wanted to post the problem to the Hijack this logs and Virus/Trojan/Spyware/Malware removal forum but apparently neither DDS.scr nor RootRepeal will run in a 64 bit OS. Since AVG is not detecting anything I am afraid that I have a RootKit infection and I don’t have any idea how to detect or clean the problem.

When I attempt to run DDS.scr I get an error message “This tool does not support your Operating System”.

When I attempt to run RootRepeal I get a similar message, “Error-RootRepeal does not support 64-bit OSs”.

I am running Windows Vista Home Premium 64 bit OS with SP1, 4 GB Ram, Intel Core 2 Duo E8400 CPU at 3 Ghz

Any assistance is really appreciated.

Thanks,

Mark :thumbsup:

BC AdBot (Login to Remove)

 


#2 garmanma

garmanma

    Computer Masochist


  • Members
  • 27,809 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cleveland, Ohio
  • Local time:05:30 AM

Posted 23 September 2009 - 07:38 PM

So I assume this isn't the same machine the you already have posted in HJT?

Try one of these 2 scans instead of DDS

  • Close all applications and windows so that you have nothing open and are at your Desktop.
  • Double-click on RSIT.exe to start the program.
  • If using Windows Vista, be sure to Run As Administrator.
  • Click Continue after reading the disclaimer screen.
  • Leave the drop down box set to default: "List/folders created or modified in the last 1 month (30 days).
  • When the scan is complete, a text file named log.txt will automatically open in Notepad.
  • Save the log file to your desktop and copy/paste the contents into a new topic in the HijackThis Logs and Malware Removal forum, NOT here.
Important: Be sure to mention that you tried to follow the Prep Guide but were unable to get DDS to run.
If RSIT did not work, then reply back here.

---------------------------------

If you cannot get DDS to work, please try this instead.

Please download runscanner.zip and save to your desktop.
  • Create a new folder on your hard drive called Runscanner (C:\Runscanner) and extract (unzip) the file there.
    (click here if you're not sure how to do this.)
  • Double-click Runscanner.exe to launch.
  • Select Beginner mode and click Ok.
  • Select Do a full scan and save a log file (default is Full Scan) to start.
  • Please be patient and do not use your computer during the scan.
  • When the scan is complete, a window will open asking you to save runscanner.run. Click Cancel.
  • Another window will open asking you to save runscanner.log.
  • Save it to your desktop and "Save as type: Runscanner log file [*.log].
  • The log file will automatically open in Notepad.
  • Go to the top menu, click on "Format" and uncheck "Word Wrap" if checked.
  • Copy and paste the contents of the log file into a new topic in the HijackThis Logs and Malware Removal forum, NOT here.
  • Exit Runscanner when done.
Important: Be sure to mention that you tried to follow the Prep Guide but were unable to get DDS to run. If Runscanner did not work, then reply back here.

Edited by garmanma, 23 September 2009 - 07:39 PM.

Mark
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter

#3 FloridaMark

FloridaMark
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:05:30 AM

Posted 23 September 2009 - 10:49 PM

Thanks Garmanma!

I followed your instructions and posted in the other forum using RSIT. It ran great in the 64 bit Vista environment. Hope I did everything right and didn't step on any fingers or toes... :thumbsup:

-Mark

#4 garmanma

garmanma

    Computer Masochist


  • Members
  • 27,809 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Cleveland, Ohio
  • Local time:05:30 AM

Posted 24 September 2009 - 06:00 PM

You did good
Good luck
Mark
Posted Image
why won't my laptop work?

Having grandkids is God's way of giving you a 2nd chance because you were too busy working your butt off the 1st time around
Do not send me PMs with problems that should be posted in the forums. Keep it in the forums, so everyone benefits
Become a BleepingComputer fan: Facebook and Twitter




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users