d2jsp
Log InRegister
d2jsp Forums > d2jsp > General Help > General Help Archive > Very Bad Problem > Help Is Needed Asap
Prev12
Add Reply New Topic New Poll
Member
Posts: 31,187
Joined: Aug 31 2008
Gold: 28,306.50
Trader: Trusted
Jun 13 2011 07:26am
reboot . click login type password.

control alt delete real fast SOON as you login dont wait for anything to load up.

open task manager.

in processes find a random named exe ahjdh65sj6e6e5e556asj.exe <-- example

end process.

now get to work on removing it 0.0

Malwyre bytes + Spybot + TFC by old timer

look for system tool 201 it is a virus but your first hit on google should be the removal guide. using the same stuff in it should help remove this.

This post was edited by Vegito on Jun 13 2011 07:28am
Member
Posts: 34,403
Joined: Dec 27 2010
Gold: 13,590.01
Jun 13 2011 08:40am
Most likely have tracking cookies. Nbd, d/w
Member
Posts: 6,192
Joined: Dec 13 2010
Gold: 6,669.99
Jun 13 2011 01:38pm
the rogue anti-virus probably placed all your files as hidden
to revert this, do the following

Windows xp:


Windows Vista/7:
Click on start - Control panel - Appearance and Personalization - Folder Options - Then do the same as in the picture

you'll be able to see all you're hidden file, then all you have to do is go in c:\ and rightclick program files and select properties
then uncheck where it says Hidden, it will say do you want to do this do all files/folder, say yes. i'm not 100% sure, but i think you'll had to do this for all your other files/folder



Since you've only been on trusted sites, you probably have a dialer / backdoor / DNS hijacker of some sort on you're comp. They simply wont stop downloading malware/viruses on your comp until you get rid of it.

like other said, run malwarebytes, spybot, ad-aware
superantispyware might also be useful.
do a full scan with your anti-virus.
download tdsskiller, if tdsskiller finds nothing, try Sophos Anti-Rootkit

check your DNS settings
start - control panel - network connections - local area connection - general tab (properties) - click once on Internet Protocol (TCP/IP) then Properties - Obtain DNS server address automatically

if you need more help, simply pm me
good luck
Member
Posts: 25,016
Joined: May 9 2008
Gold: 3,806.80
Jun 13 2011 07:16pm
It's back again. I'm running Malbytes and it's picking up more trojans etc. My computer started acting funny again. I can't seem to find this little butthole. Just last night I scanned and it was 0. Now it's at 16 found and only 2 mins in the scan.


/E I have a largo number of processes I have never seen run before.

This post was edited by IIBBQII on Jun 13 2011 07:17pm
Member
Posts: 25,016
Joined: May 9 2008
Gold: 3,806.80
Jun 13 2011 08:08pm






Malwarebytes is coming up with another 15 in just 3 minutes into scan.

Any other programs that can help me?

I have ran everything that people have said in this topic + housecall items.

/E I have no clue at all how I could have gotten a fake virus scanner installed on my comp...

This post was edited by IIBBQII on Jun 13 2011 08:15pm
Member
Posts: 11,523
Joined: Jan 13 2010
Gold: 75.01
Jun 13 2011 08:15pm
this is weird indeed,
ComboFix is the strongest program i can think of in combating almost everything
i suggest just going onto bleepingcomputer and registering
tell them your story and what you have used to combat this
tell them symptoms your computer feels and such and such
their malware response team will reply in some time since they themselves are bogged down by other people with viruses

Quote (IIBBQII @ Jun 13 2011 07:08pm)
http://i253.photobucket.com/albums/hh68/IIBBQII/virus2.jpg

http://i253.photobucket.com/albums/hh68/IIBBQII/virus3.jpg

http://i253.photobucket.com/albums/hh68/IIBBQII/virus1.jpg

Malwarebytes is coming up with another 15 in just 3 minutes into scan.

Any other programs that can help me?

I have ran everything that people have said in this topic + housecall items.

/E I have no clue at all how I could have gotten a fake virus scanner installed on my comp...


it is just spyware dont ever buy anything from them

This post was edited by Manevolent on Jun 13 2011 08:16pm
Member
Posts: 25,016
Joined: May 9 2008
Gold: 3,806.80
Jun 13 2011 08:19pm
Quote (Manevolent @ Jun 13 2011 06:15pm)
this is weird indeed,
ComboFix is the strongest program i can think of in combating almost everything
i suggest just going onto bleepingcomputer and registering
tell them your story and what you have used to combat this
tell them symptoms your computer feels and such and such
their malware response team will reply in some time since they themselves are bogged down by other people with viruses



it is just spyware dont ever buy anything from them







I am going to use combofix again and then restart my comp and re scan. I will post what happens. Thanks for the help everyone.
Member
Posts: 11,523
Joined: Jan 13 2010
Gold: 75.01
Jun 13 2011 08:23pm
Quote (IIBBQII @ Jun 13 2011 07:19pm)
http://i253.photobucket.com/albums/hh68/IIBBQII/malbyte2.jpg

http://i253.photobucket.com/albums/hh68/IIBBQII/malvirus.jpg


I am going to use combofix again and then restart my comp and re scan. I will post what happens. Thanks for the help everyone.


trojans are getting smarter, each time they get killed they create more :(
Member
Posts: 21,380
Joined: Dec 23 2007
Gold: 1.00
Jun 13 2011 09:04pm
If you are runnng XP you could try Startup Inspector which will tell you the exact programs that are running including their authors.

You need to find which process keep rebuilding the viruses and remove it.

To do this, find whichever process doesn't look valid, kill it in task manager and then manually remove it from your pc. It may take a few tries but, you'll eventually find it.
Go Back To General Help Archive Topic List
Prev12
Add Reply New Topic New Poll