Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PLEASE HELP QUICK IM INFECTED


  • This topic is locked This topic is locked
51 replies to this topic

#1 youngmomma

youngmomma

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 29 January 2010 - 12:48 AM

I have avg and mcafee and this ither windows alert popped up and i knew right away it was a virus it wont wuit popping up and gives me the message application cannot be executed the file (wjatever i click on does it with everything accept i got this working agian and also before comp fully booted i got avg working and it said no viruses and it is up to date) is infected do you want to activate your antivirus software now? i cant get it to go away please help i dont know what to do and porn pages keep popping up please please i just got this comp and u guys helped me out before

BC AdBot (Login to Remove)

 


#2 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 29 January 2010 - 01:14 AM

by the way i am using os xp pro and have downloaded malware bytes and have determined the virus to be antivirus live and have the steps to remove it so i will try this and post again after thanks

#3 Con10119

Con10119

  • Banned Spammer
  • 12 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:27 AM

Posted 29 January 2010 - 05:20 AM

If you can't get something to of, then Go to the task manager, then on processes look for a process that sounds strange like 48.exe or random letters.exe then the right click and end task. when you find the bad process search it on your computer and completly delete it and remove it from recycle bin.

Run the computer virus scan on malwarebites and just delete all your temporary files using CCleaner.. this will delete a file if it has been cached by your browser.

#4 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 30 January 2010 - 03:36 PM

ok well malware bytes in safe mode w rkill cleaned the virus but i think something may have been left behind? i cant acces control alt delete ! and i upgraded my internet connection and the comp is laggin now but my download speed is 18,000 and my up load is 1765 so that is not it. i think i am lost and dont know how to fix this.please help and could you give me instructions on how to use cc cleaner i dont want to mess anything up i bought this comp from a friend and have none of the install disc

#5 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 30 January 2010 - 03:56 PM

also can you direct me to the link for the start up checker thing and list of things that are bad i cant find it now and the guy i talked to said there sounds like something is running in the background

#6 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 31 January 2010 - 06:05 PM

please somebody help me fix these problems?

#7 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 01 February 2010 - 01:13 PM

but on another list it says it is a graphics card> please help me

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:27 AM

Posted 01 February 2010 - 04:49 PM

Hello, let's start here. If you installed MBAM in Safe mode Un and RE install it in Normal. If not then.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.


Next run ATF and SAS: If you cannot access Safe Mode,run in normal ,but let me know.

Note: On Vista, "Windows Temp" is disabled. To empty "Windows Temp" ATF-Cleaner must be "Run as an Administrator".

From your regular user account..
Download Attribune's ATF Cleaner and then SUPERAntiSpyware , Free Home Version. Save both to desktop ..
DO NOT run yet.
Open SUPER from icon and install and Update it
Under Scanner Options make sure the following are checked (leave all others unchecked):
Close browsers before scanning.
Scan for tracking cookies.
Terminate memory threats before quarantining
.
Click the "Close" button to leave the control center screen and exit the program. DO NOT run yet.

Now reboot into Safe Mode: How to enter safe mode(XP)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.

Double-click ATF-Cleaner.exe to run the program.
Under Main "Select Files to Delete" choose: Select All.
Click the Empty Selected button.

If you use Firefox or Opera browser click that browser at the top and choose: Select All
Click the Empty Selected button.
If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program
.

NOW Scan with SUPER
Open from the desktop icon or the program Files list
On the left, make sure you check C:\Fixed Drive.
Perform a Complete scan. After scan,Verify they are all checked.
Click OK on the summary screen to quarantine all found items.
If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the removal information after reboot, launch SUPERAntispyware again.
Click Preferences, then click the Statistics/Logs tab.
Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
If there are several logs, click the current dated log and press View log.
A text file will open in your default text editor.
Please copy and paste the Scan Log results in your next reply.
Click Close to exit the program.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 01 February 2010 - 07:33 PM

ok i will do this and post w/ results but i should tell u i already have atf cleaner and have used it recently but i will follow ur instructions as listed above. thanks for your help :thumbsup: also i have limewire from previouws owner i know it is p2p and am thinking of deleting it


also i am having a problem w/ my modem reseting in the middle of me online and then im offline then it comes back?? could this be a virus?

Edited by youngmomma, 01 February 2010 - 07:45 PM.


#10 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 01 February 2010 - 08:00 PM

i guess thats good news so far




Malwarebytes' Anti-Malware 1.44
Database version: 3675
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

2/1/2010 6:38:23 PM
mbam-log-2010-02-01 (18-38-23).txt

Scan type: Quick Scan
Objects scanned: 110543
Time elapsed: 3 minute(s), 18 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:27 AM

Posted 01 February 2010 - 09:42 PM

Hello, I would still like to rule out malwrae with the SAS scan. I think though you have an issue with the modem. If it is a supplied one call your ISP and have them test it. They can do it over the phone. I may also be a connection issue ( the cables or a splitter). Is there a router here also
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 01 February 2010 - 10:06 PM

sorry it took a lil while but here are the results. and i contacted the company about the modem and they said it was fine and working great> i still am unable to access my task manager for some reason. if you are able to access some of my older topics on here you will see i had a antivirus live virus on here and i think maybe it disabled my task manager and i have no idea how to enable it again? so from my scans do you think my computer is ok? thanks again for all your help. let me know if there is anything else i need to do :thumbsup:


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 02/01/2010 at 08:42 PM

Application Version : 4.33.1000

Core Rules Database Version : 4545
Trace Rules Database Version: 2357

Scan type : Complete Scan
Total Scan Time : 01:35:00

Memory items scanned : 235
Memory threats detected : 0
Registry items scanned : 4877
Registry threats detected : 0
File items scanned : 53379
File threats detected : 0

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:27 AM

Posted 01 February 2010 - 10:10 PM

Are you getting a message when you try Task mgr or what does happen?
Try...
Please go to
C:/Windows/System32 look for the taskmgr.exe file.

Copy the file to My Documents folder.
Rename it to explorer.exe
Now that you have Task Manager open. Look for suspicious processes.. (all numbers or something consuming most of the CPU).
Highlight such and click End Process

This should allow you to now run MBAm.

Also you can post them here if you are not sure ..

Edited by boopme, 02 February 2010 - 12:01 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 youngmomma

youngmomma
  • Topic Starter

  • Members
  • 169 posts
  • OFFLINE
  •  
  • Local time:09:27 AM

Posted 02 February 2010 - 04:10 PM

im not sure what you mean
go to run? typw C:/windows/system32 and look for the tskmgr.exe file and click it? or move it ? then where wil i find this my documents file ? then you want me to run mbam again? cause i have already done so i have no problem running that program im sorry i am a lil blonde and i just dont want to do something the wrong way. thanks : )

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:27 AM

Posted 02 February 2010 - 04:34 PM

Ok scrub that . I misunderstood
To fix the Task manager...

This step involves making changes in the registry. Always back up your registry before making any changes.

Go to Start Run and type: regedit
Click OK.
On the left side, click to highlight My Computer at the top.
Go up to File Export
Make sure in that window there is a tick next to "All" under Export Branch.
Leave the "Save As Type" as "Registration Files".
Under "Filename" put RegBackup.
Choose to save it to C:\
Click save and then go to File Exit.

Or you can download and use ERUNTwhich is an excellent free tool that allows you to to take a snapshot (backup) of your registry before making changes and restore it when needed.

Click on the link below:
http://www.kellys-korner-xp.com/xp_tweaks.htm
Scroll down to #275 and click "Lift Restrictions - TM, Regedit and CMD" in the left column. Go to File, choose "Save page as" All Files and save regtmcmdrestore.vbs to your desktop. Double-click on that file to allow the script to run and reboot when done. Since the script modifies certain registry settings your anti-virus package may warn you about it. Ignore the warning and allow it to run.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users