Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

An abundance of problems


  • Please log in to reply
2 replies to this topic

#1 BennJacked

BennJacked

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 20 November 2010 - 12:48 PM

Hi, I think I have a lot of problems with my laptop. My subscription to McAfee recently expired, so I went online to renew it and after paying $20 or so it didn't renew.. After a couple weeks I noticed that when I would try to use google, it would redirect me to different sites from which I clicked on.

I looked that up on google, saw that it was a virus and I should download AVG, which I did. That did find some trojans, but also screwed up my browsers. I kept getting an error page saying something like "proxy is refusing connections" and also with AVG it wouldn't allow me to access my task manager. I couldn't figure out how to configure AVG properly so I did a system restore back to the point before I installed AVG.

Then I found STOPzilla, which also found probably those same trojans and removed them. Although I am still having problems with the google redirecting virus.

A couple days ago I went onto my facebook account and it had me verify all my information. After I did that it told me my account was accessed from somewhere in California and i live in Pennsylvania. This made me very wary of keyloggers now and scared to access my bank accounts.

I did a google search of best programs to detect and remove keyloggers and i came to this site, cuz of the hijackthis program. Before I was gonna run that I thought I would scour this site for useful information and I came across the tutorial for "Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help" ( http://www.bleepingcomputer.com/forums/topic34773.html ). I downloaded the "defogger", but after it was complete it did not ask me to reboot my computer as it says it would in Step 6. I did however restart my computer just in case.

then i downloaded "DDS" and its been nearly 20 minutes and there still hasn't been a log produced from it.

This is where I need some assistance, or maybe i should have seeked it earlier haha. Im not sure but STOPzilla may be prohibiting "DDS" from functioning, since after i downloaded it STOPzilla popped up a notification saying something about possible malware and asked me to remove or leave it. i chose to leave it alone since i thought it was related to "DDS".

On a side note, I also have programs malwarebytes and ad-aware, if that helps at all.

BC AdBot (Login to Remove)

 


#2 BennJacked

BennJacked
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 20 November 2010 - 12:59 PM

I just remembered something, I downloaded STOPzilla because of a rogue virus that downloaded a fake anti-virus program onto my computer called "thinkpoint". STOPzilla did remove that successfully, as far as i can see.

#3 BennJacked

BennJacked
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:45 AM

Posted 20 November 2010 - 04:45 PM

here is the log from malwarebytes that just finished running. 3 problems were found

Malwarebytes' Anti-Malware 1.36
Database version: 2003
Windows 6.0.6002 Service Pack 2

11/20/2010 4:43:27 PM
mbam-log-2010-11-20 (16-43-27).txt

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 282659
Time elapsed: 2 hour(s), 6 minute(s), 26 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
C:\Users\Joel\AppData\Roaming\Microsoft\svchost.exe (Heuristics.Reserved.Word.Exploit) -> Unloaded process successfully.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\svchost (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\Joel\AppData\Roaming\Microsoft\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users