Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware/virus Infection


  • Please log in to reply
1 reply to this topic

#1 awolff

awolff

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:08 PM

Posted 13 July 2006 - 12:11 PM

I don't know what to do. About a week ago while web surfing I started to experience annoying pop-ups that directed me to ads and bogus antivirus software. The pop-ups were usually named Winantivirus. I ran various anti-spyware software and the problem seemed to disappear. Now, the pop-ups have returned and Norton Anti-virus has detected 2 viruses called lfbfat.dll or downloader and Generic2.BCW. These viruses refuse to be deleted or quarantined. I have so far taken the following actions:

Ran in normal AND safe mode anti-spyware software programs with no results
1. Spybot
2. Adware SE
4. Advanced anti-spyware
5. Norton Antivirus
6. AVG Antivius

I have also tried to manually delete in Windows/system32 the lfbfat.dll but it says the file is in use and blocks attempts to remove it. I've also downloaded KillBox and it failed to delete this file.

What to do? I've never used hijack this and would like some suggestions for programs that will find and remove these problems. I use a Windows xp and IE explorer. I use anti-virus, 4 anti-spyware programs, firewall, and google pop-up blocker. What else am I supposed to do?

BC AdBot (Login to Remove)

 


m

#2 Albert Frankenstein

Albert Frankenstein

  • Members
  • 2,707 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Michigan, USA
  • Local time:04:08 PM

Posted 13 July 2006 - 12:17 PM

The best way to get your system clean is to run a little program called HiJackThis. This program creates a log. Then you paste the log into the HiJackThis forum here at Bleeping Computer. An expert will help you get rid of the malware on your computer. It takes a little time, and it takes a little patience and you must be good at following instructions, as there will be some to follow. The following instructions will walk you through the process of creating a log:

FIRST
Read the Preparation Guide found HERE. It is very important that you follow ALL of the instructions found within. (There are many important steps in this guide that may clean your computer.)

NEXT
Post your system information along with a brief description of the problems you are having, and your HJT log in the HJT forum found HERE.

NOTE: Please, after you post your HJT log DO NOT make another post in the HJT forum until it has been responded to by a member of the HJT Team. The first thing they look for, when looking for logs to reply to, is 0 replies. If you make another post there will be 1 reply. The team member glancing over the replies might think someone is already helping you out and will not respond. So, just make your post and let it sit there until a team member responds. The volunteers who work that forum are very busy, so please be patient and wait. It can sometimes take a few days for a response. If after 5 days you still have gotten no response, then post a link to your HJT log HERE.

FINALLY
If, after finishing your work with the folks at the HJT forum you have issues with Windows related to the removal of the infection, then come to the other forums and let us help you get your computer back to normal.

You are in good hands! Good luck!
ALBERT FRANKENSTEIN
I'M SO SMART IT'S SCARY!


Currently home chillin' with the fam and my two dogs!





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users