:::RHMT::: Real Home Made Turbo

Please login or register.

Login with username, password and session length
Advanced search  

News:

Official RHMT TANK! that's right i said a TANK! (link)

Pages: [1]   Go Down

Author Topic: got a virus  (Read 5568 times)

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
got a virus
« on: August 05, 2010, 03:50:19 AM »

so i got a virus on my computer and cant find a way to get rid of it. really starting to get on my nerves.
i was using live one care for the last few years and never had a problem then it expired a month ao and i didnt renew it yet. keeps showing the virus called Virus:Win32/Alureon.H and that it cant remove it. anybody ever get this one? if i cant get it off im gonna buy a exernal HD next week since my work is giving us a 100 visa for no injurys for a year and then just reloading my computer.

 
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

MAJORAHOLE

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 326
  • fuckin C-unt
Re: got a virus
« Reply #1 on: August 05, 2010, 08:23:01 AM »

get avgfree, run updates, turn off system restore, run full scan, reboot, run full scan again. report back
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #2 on: August 05, 2010, 11:33:16 AM »

get avgfree, run updates, turn off system restore, run full scan, reboot, run full scan again. report back

DL'ed AVG the other day but it doesnt seem to be able to get it off either but ill try turning off system restore. ran the malwarebyte and it came up with a few and deleted them but its still messing up right now so i guess those are not the ones i knew about lol.

just tried to turn off system restore and it said it had an error and to reboot and try turning it off again.
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #3 on: August 05, 2010, 11:44:24 AM »

when i try and DL Avira it will download the setup file but when i run it it wont let it get any of the other needed files.
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #4 on: August 05, 2010, 11:51:08 AM »

when i try and DL Avira it will download the setup file but when i run it it wont let it get any of the other needed files.

If it'll allow you, install it from safe mode.
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #5 on: August 05, 2010, 11:57:10 AM »

just ran hijackthis and here is the log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:50:52 AM, on 8/5/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\hasplms.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Qwest\QuickCare\bin\sprtcmd.exe
C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe
C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe
C:\Program Files\AIM\aim.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe
C:\Program Files\Microsoft Windows OneCare Live\winss.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?fr=fp-yie8
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.realhomemadeturbo.com/forum/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Yahoo!
R3 - URLSearchHook: AIM Toolbar Search Class - {03402f96-3dc7-4285-bc50-9e81fefafe43} - C:\Program Files\AIM Toolbar\aimtb.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: AIM Toolbar Loader - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program Files\AIM Toolbar\aimtb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: AIM Toolbar - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program Files\AIM Toolbar\aimtb.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [QuickCare2.2] C:\Program Files\Qwest\QuickCare\bin\sprtcmd.exe /P QuickCare2.2
O4 - HKLM\..\Run: [OneCareUI] "C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe"
O4 - HKLM\..\Run: [BlackBerryAutoUpdate] C:\Program Files\Common Files\Research In Motion\Auto Update\RIMAutoUpdate.exe /background
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [MP10_EnsureFileVer] C:\WINDOWS\inf\unregmp2.exe /EnsureFileVersions
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\jeff\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [Aim] "C:\Program Files\AIM\aim.exe" /d locale=en-US
O4 - HKUS\S-1-5-18\..\Run: [cvnaakkx] C:\Documents and Settings\jeff\Local Settings\Application Data\jmnaaervm\xbnxbputssd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [cvnaakkx] C:\Documents and Settings\jeff\Local Settings\Application Data\jmnaaervm\xbnxbputssd.exe (User 'Default user')
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: TestPokerStars.com - {809132AF-89D2-4d52-AA03-AB4E35BBDC5B} - C:\Program Files\PokerStars.TEST\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Qwest Live - {1F02F2AC-A24B-43EC-AD65-618809178F96} - http://qwest.live.com (file missing) (HKCU)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {3DCEC959-378A-4922-AD7E-FD5C925D927F} (Disney Online Games ActiveX Control) - http://disney.go.com/pirates/online/testActiveX/built/signed/DisneyOnlineGames.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab?AuthParam=1231711380_1d326ae636adbe3ad9c3157c87417a97&GroupName=JSC&FilePath=/ESD5/JSCDL/jre/6u11-b90/jinstall-6u11-windows-i586-jc.cab&File=jinstall-6u11-windows-i586-jc.cab&BHost=javadl.sun.com
O16 - DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader2.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://aolsvc.aol.com/onlinegames/free-trial-yahtzee/zylomplayer.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://games.myspace.com/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HASP License Manager (hasplms) - Aladdin Knowledge Systems Ltd. - C:\WINDOWS\system32\hasplms.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: System Restore Service (srservice) - Zone Labs, LLC - (no file)
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--
End of file - 15403 bytes
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #6 on: August 05, 2010, 12:16:43 PM »

OK.

cliffs?

Quote
C:\Program Files\Internet Explorer\IEXPLORE.EXE

There is one of your problems.
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #7 on: August 05, 2010, 12:31:23 PM »

yeah i know i should use firefox. once this is fixed im gonna start.
really no cliffs, it started acting funny few weeks ago when i couldnt burn cd's or dvds anymore but didnt think anything of it til it started redirecting my browser and stupid stuff like that. every antivirus ive tried so far doesnt seem to help. if i cant get it off im just gonna reload after i get the files i need off of it.
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #8 on: August 05, 2010, 12:34:18 PM »

Starting Windows in safe mode (usually by repeatedly pressing F8 at bootup) and running a malwarebytes scan has never failed me.
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #9 on: August 05, 2010, 12:39:10 PM »

ill do that now, thanks
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

1slow91hf

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 283
Re: got a virus
« Reply #10 on: August 05, 2010, 01:32:59 PM »

and try google chrome instead of FF it seems faster and i havent had any "real" glitches  :noel:
though you lose toolbars without getting a plug in for them
Logged
boost-booze-boobies, what more to life is there?

MAJORAHOLE

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 326
  • fuckin C-unt
Re: got a virus
« Reply #11 on: August 05, 2010, 01:34:56 PM »

ya chrome is what i use.  if that shit doesnt work, then reformat may be in your future
Logged

jay

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 906
Re: got a virus
« Reply #12 on: August 05, 2010, 01:38:18 PM »

Logged

I want you to die

 
Stone cold killin sandnog from the motherfuckin low cash, fuck ya, getcha pee pee wet. ♥#9829#9829 ♥#9829#9829 ♥#9829#9829   http://img713.imageshack.us/img713/3871/detroit187.jpg

colt45

  • Mista Pimpsta
  • RHMT Moderator
  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8992
Re: got a virus
« Reply #13 on: August 05, 2010, 01:47:04 PM »

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #14 on: August 05, 2010, 02:07:50 PM »

I use Chrome but it seems to be a fucking memory hog, although I admit I haven't used FF lately to compare it to.

Often with my normal number of tabs open (around 10), all the Chrome processes account for 2-4GB of ram used :-\  Possibly it just has great resource management and uses as much ram as possible without slowing the PC down, but it's kind of odd to see a single Chrome process using over 1GB of ram...

Either way.  I like how minimalist the UI is and how fast it runs.  It's never slowed my PC down so will keep using it.  Chrome would be the "safer" bet over FF and IE.
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #15 on: August 05, 2010, 04:30:51 PM »

ok so that didnt work lol. oh well looks like i gotta get my driver disks together for the reload
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

MAJORAHOLE

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 326
  • fuckin C-unt
Re: got a virus
« Reply #16 on: August 05, 2010, 04:41:58 PM »

I use Chrome but it seems to be a fucking memory hog, although I admit I haven't used FF lately to compare it to.
ya, every tab has its own process. that kinda sucks up resources
Logged

HiProfile

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 4564
  • Injector Kingpin
Re: got a virus
« Reply #17 on: August 09, 2010, 12:32:20 AM »

C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe


Delete those 4 and you won't have to worry about the virus. Mainly because.......
Logged
they mspainted dildoes in my mom'#039#039s hand, in a picture of her in a hospital bed. -JD
dem gurls need some boobz! -Engloid

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #18 on: August 09, 2010, 04:02:57 PM »

arent those needed?
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #19 on: August 09, 2010, 04:07:31 PM »

arent those needed?

Yes, which is why he didn't finish the sentence...

Pretty obvious what winlogon is for :P
Logged

92CXyD

  • Twincharged Smeghead
  • Global Moderator
  • Certified OG
  • *****
  • Online Online
  • Posts: 6787
  • I look around and all I see is Smegheads
Re: got a virus
« Reply #20 on: August 10, 2010, 12:08:19 PM »

I use Chrome but it seems to be a fucking memory hog, although I admit I haven't used FF lately to compare it to.

Often with my normal number of tabs open (around 10), all the Chrome processes account for 2-4GB of ram used :-\  Possibly it just has great resource management and uses as much ram as possible without slowing the PC down, but it's kind of odd to see a single Chrome process using over 1GB of ram...

Either way.  I like how minimalist the UI is and how fast it runs.  It's never slowed my PC down so will keep using it.  Chrome would be the "safer" bet over FF and IE.


I prefer Opera 10.6 no memory issues. ;D

SDRAWKCAB

  • D series BALLA!
  • Certified OG
  • *****
  • Offline Offline
  • Posts: 2676
  • Rhino
Re: got a virus
« Reply #21 on: August 10, 2010, 12:15:25 PM »

Did you download something immborn posted up?
Logged
I have sex like a winning race car.
I always finish first and have left many disappointed.

Jorsher

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 8575
Re: got a virus
« Reply #22 on: August 10, 2010, 12:22:55 PM »

I have 8GB of ram, so don't really care how much it uses.  I know it uses a separate process for each tab.  It being webkit-based browser is one of its primary selling points.  Either way, there seems to be entirely too much overhead.  A single web-page shouldn't need 100+ MB of RAM along, even including the browser  :?:

Fuck Opera.
Logged

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #23 on: August 10, 2010, 03:01:06 PM »

i think i got rid of the virus somehow. pretty much all i did was what you said and ran my AVG in safe mode and it found 2 viruses and cleaned them, then i ran the one up top and it found two rootkit viruses and deleted them, comp has been runnign fine since saturday with no sign of it still haveing herpes as of yet.
thanks for the help.

Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

jeffsciv23

  • Certified OG
  • *****
  • Offline Offline
  • Posts: 6787
Re: got a virus
« Reply #24 on: August 10, 2010, 03:02:29 PM »

Did you download something immborn posted up?

you ever get your vapor cig stuff? ive been thinking about getting into that but was waiting on your write up. at least i thought it was you that was talking about it.
Logged
Quote

The OP just called me a nigger in the for sale section do the mods allow this kind of thing to happen around here?

92CXyD

  • Twincharged Smeghead
  • Global Moderator
  • Certified OG
  • *****
  • Online Online
  • Posts: 6787
  • I look around and all I see is Smegheads
Re: got a virus
« Reply #25 on: August 10, 2010, 03:10:39 PM »

i think i got rid of the virus somehow. pretty much all i did was what you said and ran my AVG in safe mode and it found 2 viruses and cleaned them, then i ran the one up top and it found two rootkit viruses and deleted them, comp has been runnign fine since saturday with no sign of it still haveing herpes as of yet.
thanks for the help.



Remember just like herpes if you do not see outbreaks you will still have to take your medicine.  ;D :?:

SDRAWKCAB

  • D series BALLA!
  • Certified OG
  • *****
  • Offline Offline
  • Posts: 2676
  • Rhino
Re: got a virus
« Reply #26 on: August 10, 2010, 07:13:58 PM »

Logged
I have sex like a winning race car.
I always finish first and have left many disappointed.

Aero

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 622
    • Turbotalk.org
Re: got a virus
« Reply #27 on: August 11, 2010, 10:43:43 PM »

http://www.ubcd4win.com/

Go there, get it and use it. If you can't burn cds you will need to use another computer to get it.

 It and the tools it has makes getting rid of some of this stuff MUCH easier.  Unless you are good with a wipe and reinstall.

It works completely off the CD and makes a RAM drive to work off of.  Since it runs completely separately from your windows install it gets by alot of the bullshit that the virus and spyware people fuck you with.
Pages: [1]   Go Up