Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

New Virus


  • Please log in to reply
1 reply to this topic

#1 douche

douche

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:11:27 PM

Posted 17 March 2006 - 10:27 PM

:thumbsup: Hi i think i mightve found a new virus. What it does is it impersonates your programs, such as regsvr, rundll, and others. It makes them take up 95-100% of cpu usage. If you click end process it says nothing and doesnt go away. I have something called priciple antivirus that helps by blocking it (and any other programs that run games ect.) but the trial version is almost up. Ive used ewido mcafee 2006 adaware se adaware 6 and everything else. please help me. there are no unusual processes and me myself am actually really good at computers ive removed everything but this.

BC AdBot (Login to Remove)

 


#2 Albert Frankenstein

Albert Frankenstein

  • Members
  • 2,707 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan, USA
  • Local time:12:27 AM

Posted 17 March 2006 - 10:41 PM

A lot of malicious software uses processes with the same names as legitamite processes. The difference is the name of the folder in which they reside. It takes an expert in malware removal to be able to identify these for sure.

Depending on your level of expertise:

There is a forum here at Bleeping Computer for self help, you can find it HERE.

Or, for help with removing your infection I would like to refer you to the Highjack This (HJT) forum here at BleepingComputer.com:

First: Read the Preparation Guide found HERE. It is very important that you follow ALL of the instructions found within. (There are many important steps in this guide that may clean your computer.)

Second: Post your system information along with a brief description of the problems you are having, and your HJT log in the HJT forum found HERE.

NOTE: Please, after you post your HJT log DO NOT make another post in the HJT forum until it has been responded to by a member of the HJT Team. The first thing they look for, when looking for logs to reply to, is 0 replies. If you make another post there will be 1 reply. The team member glancing over the replies might think someone is already helping you out and will not respond. So, just make your post and let it sit there until a team member responds. The volunteers who work that forum are very busy, so please be patient and wait. It can sometimes take a few days for a response. If after 5 days you still have gotten no response, then post a link to your HJT log HERE.

Third: If, after finishing your work with the folks at the HJT forum you have issues with XP related to the removal of the infection, then come back in here and let us help you get your computer back to normal.

You are in good hands! Good luck!
ALBERT FRANKENSTEIN
I'M SO SMART IT'S SCARY!


Currently home chillin' with the fam and my two dogs!





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users