Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think my PC's been hijacked!


  • Please log in to reply
1 reply to this topic

#1 Rini&Kousagi

Rini&Kousagi

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:48 PM

Posted 11 August 2005 - 04:34 PM

I really hope someone can help!

I am using Windows98.

A few weeks ago, I started reciving wierd spam in my e-mail boxes(despite my "spam blocking software"), and then all of a sudden KABOOM!

I am now reciving pop ups while I am offline. Yep, that's right, I said OFFLINE.

Most of them come from OnlinePoker/Partypoker.com or Smallstep.gov, and I can't get rid of them.

I recently deleted something labled "PopOops.dll" and that took care of some of them, but the others still plaque me even AFTER I unplug my modem.

My machine's been downloading weird software even AFTER I click "no", and it's mostly from "Bullzeye","Netblue","Veiwpoint" "partypoker" and "Cash Back/Buddy"

I don't kow what's going on, but whatever it is, it also won't let me re-install anything(Including Windows) and everytime I try to open up anything other than AOL or UNINSTALLER it'll freeze. So installing new software of any kind is out of the question.

My RAM is being eaten alive by whatever this is as well.

And just last week, I had to re-install my keyboard after whatever this is froze some of my keys for 3 days.(Ever try to finish a paragraph without the letters e,f,d,m,n,s,t or r?)

I've also found some weird program titled "Iexplore" and another called "pokapoka62" and they won't go away either.

And some weird file labled "cfgmgr52" keeps coming back as well.

I can't reformat the hard drive,or edit pictures and it's driving me bonkers! And I can't afford to by a new machine or any new software, since all my money went to paying for school.

I hope someone can help soon!
Thanks so much.
:thumbsup:

BC AdBot (Login to Remove)

 


m

#2 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:06:48 PM

Posted 14 August 2005 - 04:15 PM

Hello Rini&Kousagi and welcome to the BC HijackThis forum. We need a complete HijackThis (HJT) log file to be able to analyze what is happening on your computer. If you do not have a copy of HijackThis or do not have the latest version (1.99.1) then download it from here: HijackThis_sfx.exe
Double-click on the file you just downloaded and click on the UnZip button to install the program. It will be installed to the C:\Program Files\HijackThis\ folder by default.

Boot normally, start HijackThis and click the Do a system scan and save a log button to perform a scan and create a log file. When the scan is complete, Notepad will open up with the log file in it. While in Notepad, press Ctrl-A to select all text and then Ctrl-C to copy the text to the clipboard.

POST the log in this thread using the Add Reply button. Click in the data-entry window and press Ctrl-V to paste the log into the window. Add any other comments which you believe might be helpful in our analysis. and click the Add Reply button.

I will review your log when it comes in.


DO NOT MAKE ANY CHANGES OR CLICK "FIX CHECKED" UNTIL I CHECK THE LOG, AS SOME OF THE FILES ARE LEGIT AND VITAL TO THE FUNCTION OF YOUR COMPUTER

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users