Mod Edit: Moved to appropriate forum ~~ boopme
I picked up a virus from the news groups. The kids was getting games... A window appeared saying something about the registry and click ok to fix the issue. I never clicked on the messageBox and ran task manager to see what was wrong. AVG popped up and said that iexplore was consuming lots of memory (or something as it flashed up and didnt read it properly due to looking at task manager).
On the advance tab I watched iexplore.exe and was pointing at a server in germany. I entered the server address and it was just like a page for php, Linux, Nginx and different technologies.
What I did next. I was looking at this post http://www.bleepingcomputer.com/forums/t/450184/system-iexploreexe-virus/ and thought I would try what was suggested.
Downloaded TDssKiller and ran the program. Nothing showed up.
Downloaded Combofix . the C:\ Combofix.txt came up and after a few seconds went off. every time I try and access the file it says: Illegal operation on a registry key that has been marked for deletion.
So this is where I am at.
I would like so help please.
I did originally run all the spybot, malwarebytes, and the usual spy programs and nothing came up, but all the time watching it consume lots of memory still on the task manager.
The task manager after the combofix has ran doesn't show the iexplore.exe on the list of services but everything i click on in (C:) is marked for deletion.?
EDIT: After looking at the resource monitor, riaiccape.exe constantly making new threads and windows defender suspended the thread. AVG came up and knew there was a virus but couldnt remove it. Did a scan and it says nothing is there.
Uploaded a picture of resource monitor: webforms.eu
Edited by studentRik, 18 March 2013 - 04:38 PM.