Trojan Virus
Good [+1]Toggle ReplyLink» recoil replied on Wed Nov 25, 2009 @ 6:06pm |
ok last night I went to this site [ tvduck.com ] to find something to watch as I was going to bed. used it many times before without any problems
so I was trying to load up an episode of Sopranos... the usual host had been deleted so I went thru the other hosts trying to load with no success. got lots of pop up for Party Poker etc finally I got tired of searching, closed down the windows and went and got some food. when I come back I see this big warning screen from something called System Defender - telling me I have harmful viruses trying to attack me it also now had put itself as a desktop icon. basically it shut down internet explorer and when i use firefox it redirects google to google in dutch, or to some shitty search engine. i found the virus under Documents and Settings - i took a screenshot and tried to upload it here but it wouldnt let me. so I am at a net cafe using a computer usually now it gives me an error message when i try to use firefox. something about the connection being reset. nasty stuff basically the files I saw were; 1. reader_s.exe 2. photo_id.exe (that one bugs me out) 3. user_dat something or other 4. some super long file name like uagdishoadhishhjkdwkjekwjejwkjwkjwek dot something or other I need to get this removed immediately, as I`m sure what I see is just the tip of the iceberg. but i cam clueless about computers and dont know what to do is there any computer experts reading this that I could pay to have a look and remove it, or can you recommend any good places on the plateau that could remove it - and how much do people charge for that sort of thing. last place I took a computer to to be fixed - place on St Laurent at Pins - they didnt do what I asked and tried to overcharge me. so I am wary of getting ripped off help! thx in advance |
Good [+1]Toggle ReplyLink» Mutante replied on Wed Nov 25, 2009 @ 6:21pm |
i just get rid of some bullshit of that kind i got since couple of days today.
somebody else is gonna give you better input than i do but you need to install trojan remover to identify where all the bullshit are, deleting one by one and make sure your system restore is turning off before reboot. use your anti virus and anti malware to get rid of some of them too. if you are out of luck : format :( |
Good [+1]Toggle ReplyLink» MURDOCK_ROCK replied on Wed Nov 25, 2009 @ 6:31pm |
Good [+1]Toggle ReplyLink» recoil replied on Wed Nov 25, 2009 @ 7:21pm |
hehe. thx. ya I guess reformat is the best option. it doesnt have a burner installed, but luckily when I was back home I transferred all my important music files off of there... live and learn |
Good [+1]Toggle ReplyLink» A.Singleton replied on Wed Nov 25, 2009 @ 9:38pm |
don't pay someone to do this for you; install malwarebytes and run it like any program, it is made to remove that kind of trojan, you can find it here : [ www.2-spyware.com ]
Then flush everything malwarebyte founds (there might be other threats less visible) and you should be ok. Or you could pay me to install it and press scan. either way, it works. Source here : [ www.2-spyware.com ] gnight. | |
I'm feeling balance finding mood right now.. |
Good [+1]Toggle ReplyLink» recoil replied on Thu Nov 26, 2009 @ 12:38am |
thanks everyone! I got someone to send me some anti-malware.exe over MSN (tips hat to Host One) but it wouldnt let me run it at all, no matter what kind of safe mode I used.
I was at my wits end, but I did a system restore and the System Defender virus is gone!!! seemed almost toooooo easy but it really does seem to have vanished. I'm running that malwarebytes scan right now and seeing what they have to say.. but it definitely seems ok, because before I could look at this forum page but could not post a reply or click any links on it right now the only lingering problem is when I try to sign in to youtube, it says it is not a trusted certificate. oh well. I'll figure it out damn that was one of the nastiest viruses I've ever seen. very very very glad to be rid of it. gonna be more careful now thanks again people |
Good [+1]Toggle ReplyLink» cutterhead replied on Thu Nov 26, 2009 @ 4:15am |
killing process and narrowing files in use / new files & removing them like you did is the way to go.
repeat until satisfactory performance result | |
I'm feeling tarfu right now.. |
Good [+1]Toggle ReplyLink» v.2-1 replied on Thu Nov 26, 2009 @ 8:23am |
Yeah but many of those viruses blocks fucking Ctrl+Alt+Del. I've had one of those a few months back. Fucking retardedness. | |
I'm feeling jamaican right now.. |
Good [+1]Toggle ReplyLink» A.Singleton replied on Thu Nov 26, 2009 @ 10:43am |
Sometimes, the problem with certificates, when you do system restores, is that your time and date aren't set right anymore. If dates don't match, certificates won't work. Took a while to figure that out though. I hope it helps. | |
I'm feeling balance finding mood right now.. |
Good [+1]Toggle ReplyLink» cutterhead replied on Thu Nov 26, 2009 @ 4:20pm |
Originally Posted By KEVIN_FLYNN
Yeah but many of those viruses blocks fucking Ctrl+Alt+Del. I've had one of those a few months back. Fucking retardedness. remember when i used to tell eveybody to install spybot + no script(mozilla plugin) and nothing else. thats why, if you dont sort out your microsoft services in the MMC , remote management and set proper policies & adequate password and broswer add-on & plug-in , your basically doom to this end. unless you dont do shit but send email on the net. once you get a rootkit in your environment , its preferable to get the backup out than sorthing routines that can hid on disk structure and evade the superblock indexing etc.. Update » cutterhead wrote on Thu Nov 26, 2009 @ 4:29pm if your certificate dont work a. singleton , its that your clock is not set to proper date & time & year.
also , if you use the ACPI hack to " register " your version of seven , vista or what ever this could cause teh problem. the remote management console can also be abused in order to inject a dns fork in the dns translation . this is again a rootkit . Update » cutterhead wrote on Thu Nov 26, 2009 @ 4:31pm but i rather call it a "windows-feature-root-kit" already installed from the bat if you get my drift. | |
I'm feeling tarfu right now.. |
Good [+1]Toggle ReplyLink» GKiLLAZ replied on Thu Nov 26, 2009 @ 4:31pm |
Originally Posted By KEVIN_FLYNN
Yeah but many of those viruses blocks fucking Ctrl+Alt+Del. I've had one of those a few months back. Fucking retardedness. Use the command "taskmgr" if it block only the keys itself. | |
I'm feeling none right now.. |
Good [+1]Toggle ReplyLink» MelooDie replied on Thu Nov 26, 2009 @ 4:32pm |
I'm feeling on a boat right now.. |
Good [+1]Toggle ReplyLink» cutterhead replied on Thu Nov 26, 2009 @ 4:39pm |
Originally Posted By GKILLAZ
Use the command "taskmgr" if it block only the keys itself. i seen this happened where the taskmgr command only worked from safemode command prompt , run explorer & run taskmgr afterwards. this is a rootkit , better reinstall or have a really professionnal defragmenter (defrag registry) that can sort all thoses disk write & del in order to gain performance back once you get the garbage out. when you go mac , you never come back ? when you go sparc , you never come back ! when you go alpha , you never come back ! when you go blu-gene , you never come back ! | |
I'm feeling tarfu right now.. |
Good [+1]Toggle ReplyLink» Cloudeur replied on Thu Nov 26, 2009 @ 4:42pm |
Originally Posted By CUTTERHEAD
when you go mac , you never come back ? when you go sparc , you never come back ! when you go alpha , you never come back ! when you go blu-gene , you never come back ! I don't think the common user will ever go to sparc, alpha or blu-gene |
Good [+1]Toggle ReplyLink» cutterhead replied on Thu Nov 26, 2009 @ 4:47pm |
sparc64 are available to all
if hp/compaq didnt bought alpha to close them down , it would be the same as the current topline of civilian computer. blue-gene is overkill, i just wanted to make a statement that quad-core macs arent the second coming of christ and imo should pipe down from all that media propaganda-gap-style. i never seen ibm bash mac in their commercials, thou mac does it all the time, mac only mad ONE server line. | |
I'm feeling tarfu right now.. |
Good [+1]Toggle ReplyLink» GKiLLAZ replied on Thu Nov 26, 2009 @ 4:48pm |
Maybe we lost MeLOoDiE then... if she got a mac lol
------------------------------------------------------ Microsoft and Apple love to bashed most of their competitors... ------------------------------------------------------ About the taskmgr, that's right sometime it can be blocked in regular mode and need more commands to be used. | |
I'm feeling none right now.. |
Good [+1]Toggle ReplyLink» cutterhead replied on Thu Nov 26, 2009 @ 4:51pm |
... anyways they are here to make money
some just plant more trap in order to make more later ( ex. live messenger genuine vfy) | |
I'm feeling tarfu right now.. |
Good [+1]Toggle ReplyLink» GKiLLAZ replied on Thu Nov 26, 2009 @ 4:56pm |
lol
That's Apple... [ www.presence-pc.com ] They want to sell all around the apple; the apple, the seed, the cleaner for apple, the tools, etc... | |
I'm feeling none right now.. |
Good [+1]Toggle ReplyLink» MelooDie replied on Thu Nov 26, 2009 @ 5:06pm |
dudes.Since i'm with Mac i never got any virus .On my old PC i had problem every 2-3 months .
It's like life without std's . | |
I'm feeling on a boat right now.. |
Good [+1]Toggle ReplyLink» GKiLLAZ replied on Thu Nov 26, 2009 @ 5:14pm |
Originally Posted By MELOODIE
dudes.Since i'm with Mac i never got any virus .On my old PC i had problem every 2-3 months . It's like life without std's . I'm not saying anything bad againts their software at all. LOIN DE LÀ... Je sais pas comment dire cela mais s'ils seraient moins controlant un peu... Tant qu'à avoir été chez Intel coté CPU, ils auraient été aussi bien ouvir leur monde à plus de gens en vendant leur programmes sans le matériel OBLIGATOIRE... But, that's their choices... | |
I'm feeling none right now.. |
Trojan Virus
[ Top Of Page ] |
Post A Reply |
You must be logged in to post a reply.
[ Top Of Page ] |