Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 10 virus


  • Please log in to reply
14 replies to this topic

#1 Jeremoss

Jeremoss

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 10:58 AM

I have had this virus since yesterday in which a screen shows up on my computer with the title that has some random numbers.

My computer is also running very slow and I really need some help.

Edited by Al1000, 12 February 2017 - 11:53 AM.
moved from Windows 10 Support


BC AdBot (Login to Remove)

 


#2 britechguy

britechguy

    Been there, done that, got the T-shirt


  • Moderator
  • 9,007 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Staunton, VA
  • Local time:03:09 PM

Posted 12 February 2017 - 11:04 AM

This message will likely get moved to the, "Am I infected? What Should I Do?" forum - which is where it actually belongs.

 

In the meantime, it would be very helpful to have a screen shot of that weird screen as a starting point.   More information will be needed to go on.


Brian  AKA  Bri the Tech Guy (website in my user profile) - Windows 10 Home, 64-Bit, Version 1803, Build 17134 

     . . . the presumption of innocence, while essential in the legal realm, does not mean the elimination of common sense outside it.  The willing suspension of disbelief has its limits, or should.

    ~ Ruth Marcus,  November 10, 2017, in Washington Post article, Bannon is right: It’s no coincidence The Post broke the Moore story


 

 

 

              

 


#3 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 11:09 AM

What it does is that it pops a tab up for a split second and closes. It has a weird image with like a few boxes with different colors with some weird numbers. I will see if could get the numbers. Taking a screen shot is also extremely hard sinc it pops up for a silly second.
Split***

#4 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 11:12 AM

Sometimes also it says "Nikos.exe has stopped working" when I did not do anything.

#5 britechguy

britechguy

    Been there, done that, got the T-shirt


  • Moderator
  • 9,007 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Staunton, VA
  • Local time:03:09 PM

Posted 12 February 2017 - 11:19 AM

Well, a web search on nikos.exe turns up plenty of evidence of it being some sort of Malware.

 

If you have a malware scanner (not an antivirus, though there is a bit of overlap) on your system I'd run it.  If not I'd consider downloading Malwarebytes and running it to see what it can identify and purge from your computer.  I presume since this thread is not yet in the "Am I Infected?" forum I will not be "in trouble" for recommending this.


Brian  AKA  Bri the Tech Guy (website in my user profile) - Windows 10 Home, 64-Bit, Version 1803, Build 17134 

     . . . the presumption of innocence, while essential in the legal realm, does not mean the elimination of common sense outside it.  The willing suspension of disbelief has its limits, or should.

    ~ Ruth Marcus,  November 10, 2017, in Washington Post article, Bannon is right: It’s no coincidence The Post broke the Moore story


 

 

 

              

 


#6 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 11:22 AM

I have used malware bytes to remove a few things. Although it has not caught this one yet. I have done a C drive scan and a hyper scan. Not to sure what to do now.

#7 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 11:30 AM

Numbers are 68874048

#8 britechguy

britechguy

    Been there, done that, got the T-shirt


  • Moderator
  • 9,007 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Staunton, VA
  • Local time:03:09 PM

Posted 12 February 2017 - 11:31 AM

The details you are offering will probably prove very useful when this thread gets moved to the appropriate forum.   I cannot really advise you further but rest assured that once this lands where it needs to be plenty of help will be available and forthcoming.


Brian  AKA  Bri the Tech Guy (website in my user profile) - Windows 10 Home, 64-Bit, Version 1803, Build 17134 

     . . . the presumption of innocence, while essential in the legal realm, does not mean the elimination of common sense outside it.  The willing suspension of disbelief has its limits, or should.

    ~ Ruth Marcus,  November 10, 2017, in Washington Post article, Bannon is right: It’s no coincidence The Post broke the Moore story


 

 

 

              

 


#9 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 12:11 PM

I now cannot open up malwarebytes. Should going into safe mode work?

#10 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 12 February 2017 - 07:29 PM

Now this has gone very far. I went into a discord chat to discuss the situation with a few friends when I gone into the chat however, some ad was playing just the sound of the ad. I went into task manager to see that many instances of Nikos was running. I went to download a new antivirus called avira. After a while of installing everything started to not respond, even task manager. Any help on this situation? I can't even open malwarebytes.

#11 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:09 PM

Posted 13 February 2017 - 09:59 AM

Have you tried restarting the computer?

 

Before installing Avira did you have another antivirus installed?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#12 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 13 February 2017 - 03:02 PM

I have macafee, but it did no effort to get rid of the virus. I installed malwarebytes after noticing I have a virus. I also downloaded avira just to be safe
I have tried restarting my computer also

#13 Jeremoss

Jeremoss
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  

Posted 13 February 2017 - 05:55 PM

I got rid of nikos..but now came NEW viruses that run in the background. What shall I do?

#14 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:09 PM

Posted 14 February 2017 - 10:28 AM

You do not want to run two AVs a the same time, actually... you don't want to even have two AVs installed on the same computer.  The following will explain in great detail why this is true.

 

IMPORTANT NOTE: Using more than one anti-virus program is not advisable. Why? The primary concern with doing so is due to Windows resource management and significant conflicts that can arise especially when they are running in real-time protection mode simultaneously. Even if one of them is disabled for use as a stand-alone on demand scanner, it can affect the other and cause conflicts. Anti-virus software components insert themselves deep into the operating systems core where they install kernel mode drivers that load at boot-up regardless of whether real-time protection is enabled or not. Thus, using multiple anti-virus solutions can result in kernel mode conflicts causing system instability, catastrophic crashes, slow performance and waste vital system resources. When actively running in the background while connected to the Internet, each anti-virus may try to update their definition databases at the same time. As the programs compete for resources required to download the necessary files this often can result in sluggish system performance or unresponsive behavior.

Credit for this information goes to quietman7.

 

If you have both of these AVs installed uninstall one of them.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#15 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:09 PM

Posted 14 February 2017 - 10:33 AM

You posted that you had run Malwarebytes, I would like to see the log for this scan.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the entire log in your topic.
 
 
The scan I'm going to request will produce logs which I will need to see.  Post the entire log in your topic.  Do not use BBCode quotations, code, or spoiler.
 
 
Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.

The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!

Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.

Note:  The log may be very long.  You may need to break it into parts to post the whole log.

Post this in your topic.
 
 
emsisoft%201_zpsoqojjiws.png

  • Please download Emsisoft Emergency Kit and save it to your desktop.

    Double click on Emsisoft Emergency Kit file on your desktop.  emsisoft%203_zpsoox6uxmj.png

    When the installation starts you see a image like the one below, click on Install.

    Emsisoft%207_zpsmbuolk9r.png

    The first time you launch it, Emsisoft Emergency Kit will recommend that you allow it to download updates. Please click Yes so that it downloads the latest database updates.

    When the update is complete, click on MALWARE SCAN under Scan.  When asked if you want the scanner to scan for Potentially Unwanted Programs, click Yes.

    Emsisoft%20scan_zpsifqyozhf.png

    Emsisoft Emergency Kit will start scanning.

    When the scan is completed click on Quarantine.

    When the threats have been quarantined, click the View report button in the lower-right corner, and the scan log will be opened in Notepad.  Copy the log and paste it in your topic.

    Please save the log in Notepad on your desktop, and post the contents in your next reply.
  • When you close Emsisoft Emergency Kit, it will give you an option to sign up for a newsletter. This is optional, and is not necessary for the malware removal process.

 

 

Please run AdwCleaner

Please download AdwCleaner and install it.

When AdwCleaner opens you will see an image like the one below.

adwcleaner11_zps48314883.png

Click on Scan to start the scan.

Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.

If there are no malicious programs are found you will receive the following message.

adwcleaner%20111_zpsiduqrrrp.png  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.  The computer will be restarted to complete the cleaning process.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.


Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run
till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need
to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that
    here
    .
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats ([color=redonly available if ESET Online Scanner found something
  • ).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

Edited by dc3, 14 February 2017 - 10:35 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users