Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

"Your System is Infected" & green background as wallpaper...


  • Please log in to reply
3 replies to this topic

#1 cooperbiker74

cooperbiker74

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:52 PM

Posted 01 March 2010 - 12:54 PM

...plus lots of popups asking to install anti-virus that is obviously a trojan or something otherwise not what it seems.


Black box in the center of a green wallpaper, orange type saying "YOUR SYSTEM IS INFECTED!" and then white type saying
"System has been stopped due to a serious malfunction.
Spyware activity has been detected."

System is a laptop, 4 years old, windows XP. I have run adaware and malware bytes, and have Hijackthis installed but am not sure what boxes I need to click to remove to fix the problem.

Edited by cooperbiker74, 01 March 2010 - 12:56 PM.


BC AdBot (Login to Remove)

 


#2 whiteac2k4

whiteac2k4

  • Members
  • 69 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:52 PM

Posted 01 March 2010 - 01:01 PM

Malwarebytes= Start program, update, run full system scan. At the end of the scan it will say show results in the bottom left side of the program window. Then on the right side it will say remove selected. Make sure all the checks are checked in the boxes. You may have to reboot after the scan to comlpete removal.

#3 cooperbiker74

cooperbiker74
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:03:52 PM

Posted 01 March 2010 - 01:27 PM

Malwarebytes= Start program, update, run full system scan. At the end of the scan it will say show results in the bottom left side of the program window. Then on the right side it will say remove selected. Make sure all the checks are checked in the boxes. You may have to reboot after the scan to comlpete removal.



Already did this, twice.

#4 tinyfighters

tinyfighters

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:04:52 PM

Posted 05 March 2010 - 08:49 PM

You did it twice and it came up with nothing? Or your Trojan won't let you run MBAM?

If the Trojan won't let you open MBAM:
  • Go to MBAM folder
  • Rename mbam.exe to muhaha.exe
  • Try opening now
If you scan and nothing show up:
  • Go to safe mode
  • Restart computer when you see the Dell, IBM, Compaq or whatever thing press F8
  • Choose Safe Mode
  • Try full scan
  • If full scan kill virus then.....
  • Victory :thumbsup:
or
  • Download Process Explorer in Safe Mode With Networking
  • Reboot Computer normally
  • Make sure process explorer is on desktop
  • Open up procexp.exe
  • Search for suspicious process (usually with weird name and/or company/author)
  • Right-click processes and click suspend
  • **IF YOU END PROCESSES THEY WILL COME BACK**
  • Now scan with Malwarebytes Anti Malware
  • Reboot
  • Delete ALL system restore files
  • Victory :flowers:
After you clean Trojan check computer for rootkit using anti-rootkit program.
[*]




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users