Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

O_o My Computers Sick!


  • Please log in to reply
13 replies to this topic

#1 ComputerNoobHead

ComputerNoobHead

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 29 December 2005 - 07:39 PM

[size=4] ok there is something WRONG with my computer, when i would get on my user (or my fathers user) McAfee would pop up and say "trojan detected and cleaned" and then i click on Find out More. and it says FURootkit or something like that, and then theres something called Lock1.exe. i heard of that virus before but i dont know how to get rid of it and my computer is slowly dying. i knew of one way, but when i went to task manager.... THE PROCESS, CPU, AND TASKS TABS WERE GONE!!! [b] O_O all that was showing is the tasks that were runing. (such as the firefox i have now.) WTF IS GOING ON?!??! email me or reply ASAP!!!! perty please! .-_-.

BC AdBot (Login to Remove)

 


#2 Rimmer

Rimmer

  • Members
  • 2,159 posts
  • OFFLINE
  •  
  • Location:near Sydney, Australia
  • Local time:09:42 AM

Posted 29 December 2005 - 09:32 PM

:thumbsup: to BC ComputerNoobHead,

Can you still go online and download programs with that PC? If so do this:

Run this online trojan scanner: http://www.windowsecurity.com/trojanscan/

then follow this basic security procedure:
Do you have a range of anti-spyware installed? If not download and update all of the following:Reboot your computer in Safe Mode and run the anti-virus scan and all the anti-spyware scans there.
If you are not sure how to boot in Safe Mode there is a tutorial here: Safe Mode

See if that helps :flowers:

Soltek QBIC, Pentium 4 3.0GHz, 512MB RAM, 200GB SATA HDD, ATI Radeon 9600XT 256MB, Netgear 54Mb/s WAP, ridiculously expensive Satellite Broadband
Windows XP Home SP2, Trend Micro Internet Security, Firefox, Thunderbird, AdAwareSE, Spybot S&D, SpywareBlaster, A-squared Free, Ewido Security Suite.

#3 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 29 December 2005 - 09:55 PM

yes, i have all of those that are updated, my father did what you said but that didnt work. is there any other way besides rebuilding the damned thing from scratch o0 0o my dad said something about it re-creating itself or something like that... i dont remember how he said it.

Edited by ComputerNoobHead, 29 December 2005 - 09:58 PM.


#4 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:07:42 PM

Posted 29 December 2005 - 10:01 PM

I dunno if this will help, but go to Task Manager and double click on the blank grey area around the outside of the box. This may restore the tabs for you.

Now, if you've run all the scans that Rimmer has suggested, your system should be squeaky clean.

So, please describe exactly how your computer is dying. What is going wrong or not happening that should be happening?
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#5 Rimmer

Rimmer

  • Members
  • 2,159 posts
  • OFFLINE
  •  
  • Location:near Sydney, Australia
  • Local time:09:42 AM

Posted 29 December 2005 - 10:07 PM

Sorry, you're saying you have already downloaded, updated and run in Safe Mode all of the programs I suggested? (I'll just point out that you can't do that in the 20 minutes between our posts.)

Would you like to tell us what else has been done so people don't waste their time typing out things you or some other family member have covered? :thumbsup:

Soltek QBIC, Pentium 4 3.0GHz, 512MB RAM, 200GB SATA HDD, ATI Radeon 9600XT 256MB, Netgear 54Mb/s WAP, ridiculously expensive Satellite Broadband
Windows XP Home SP2, Trend Micro Internet Security, Firefox, Thunderbird, AdAwareSE, Spybot S&D, SpywareBlaster, A-squared Free, Ewido Security Suite.

#6 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 29 December 2005 - 10:31 PM

no, im saying that i already HAVE the ones you suggested and they are already updated, my dad knew what to do before you said that, we tried that before i registered and it didnt work, and the tabs are restored, thank you for that (didnt think of that) and i shut down that lock1.exe program, but i rebooted and it still popped up in McAfee and its still there somehow @_@ wtf is going on? alot of my icons are disappearing, my games are screwed up, and it locks up and alot of files are missing and it does that memory dump thing.

Edited by ComputerNoobHead, 29 December 2005 - 10:43 PM.


#7 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 29 December 2005 - 10:33 PM

i registered and it didnt work*, and the tabs are restored, thank you for that (didnt think of that) and i shut down that lock1.exe program, but i rebooted and it still popped up in McAfee and its still there somehow @_@ wtf is going on? it says that its deleted and all that bleep but its still there according to the task manager

#8 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:07:42 PM

Posted 29 December 2005 - 10:46 PM

Crud! Just deleted my post - gotta start over. I'll be back soon!
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#9 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:07:42 PM

Posted 29 December 2005 - 10:52 PM

First, try reading this: http://www.bleepingcomputer.com/startups/l....exe-12634.html

It appears that you're still infected - and it appears to be a rootkit.

Here's a good, free RootKit Revealer: http://www.sysinternals.com/Utilities/RootkitRevealer.html

Reading on rootkits: http://blogs.zdnet.com/Spyware/?p=717

And here's a bunch of reading on the worm that's causing this:
http://www.justtext.com/processes-tasks/lock1-exe.html
http://www.daniweb.com/techtalkforums/thread33398.html
http://www.sophos.com/virusinfo/analyses/w32sdbotadq.html
http://www.sysinfo.org/startuplist.php?let...t=50&offset=250
http://forums.spywareinfo.com/lofiversion/...php/t58358.html

The last link recommends these 2 tools:
http://us.mcafee.com/virusInfo/default.asp?id=stinger
http://www.jayloden.com/aimfix.htm

It goes on to suggest that most security experts recommend a format and reinstall of the OS as being the definitive fix for this problem. Link for more info: http://www.dslreports.com/forum/remark,14493487
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#10 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 29 December 2005 - 10:58 PM

thank you. :thumbsup: i think i know what caused it now, my friend sent me this email it looked kinda weird and she had said that she has a virus and i said "oh i'll just open it with nortans what the hell" and i guess i didnt do it right or something cuz it started acting weird not long after that. it started happening just 2 days ago @_@

Edited by ComputerNoobHead, 29 December 2005 - 11:04 PM.


#11 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:07:42 PM

Posted 29 December 2005 - 11:00 PM

No problem! Please let us know if the fix has worked for you (I'll give you your money back if it doesn't work! :thumbsup:

Seriously, this may turn out to be too advanced for us here in the Windows forums and we may need to refer you to the HiJackThis forums for a complete treatment of this problem.

Good luck!
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#12 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 30 December 2005 - 12:29 AM

i got alot of errors when i was scanning with Trend Micro Sysclean, i cant copy and paste for some reason it says (im using this one as an example)

"C:\WINDOWS\system32\config\system.LOG Access is Denied

#13 usasma

usasma

    Still visually handicapped (avatar is memory developed by my Dad


  • BSOD Kernel Dump Expert
  • 25,090 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Southeastern CT, USA
  • Local time:07:42 PM

Posted 30 December 2005 - 03:38 PM

Run the RootKit Revealer and see what it tells you.

Then, try the 2 tools that I mentioned in my last post.

If you're up and running - then try the scans with Trend Micro.

Let us know how it works out!
My browser caused a flood of traffic, sio my IP address was banned. Hope to fix it soon. Will get back to posting as soon as Im able.

- John  (my website: http://www.carrona.org/ )**If you need a more detailed explanation, please ask for it. I have the Knack. **  If I haven't replied in 48 hours, please send me a message. My eye problems have recently increased and I'm having difficult reading posts. (23 Nov 2017)FYI - I am completely blind in the right eye and ~30% blind in the left eye.<p>If the eye problems get worse suddenly, I may not be able to respond.If that's the case and help is needed, please PM a staff member for assistance.

#14 ComputerNoobHead

ComputerNoobHead
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:05:42 PM

Posted 31 December 2005 - 11:59 AM

ah everything is working and all is well :thumbsup: thanks for your help XD :flowers: :trumpet: :inlove: :cool: :) :P




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users