PDA

View Full Version : Rant with a virus or have i?



Spinifex
03-04-2012, 08:43 PM
Ok i became infected with a virus and removed it using combofix and mal bytes.

however i have a weird problem its like my pc is on a proxy when it isnt ive checked everything i know.
things like protection software cannot see an internet connection, things like avg, nod32 and mal bytes.

i dont suppose anybody has an answer because google doesnt either, oh and i dont either lol

im stumped and i dont really want to reformat just for that, you can manually do updates for most things but trouble is i dont know if i really am or who i am proxying to!!!

ipconfig looks normal and so does netstat.

slap me if im being dumb or just leave a comment for me to read when i have a pc that works again lol

digdug
03-04-2012, 08:57 PM
Do you know what the virus was called?

Cleaners often can get rid of something but not leaving your system exactly how it should be

Following precise instructions to remove (If you know the name of it) is always the best way for some of the trickier virus'

fergalsworld
03-04-2012, 08:58 PM
So can you surf the net or do you just not get no connection at all?

Spinifex
03-04-2012, 08:58 PM
aint got a scooby m8... it was packed inside some porno screensaver so pass...

oh well :(

Spinifex
03-04-2012, 09:00 PM
So can you surf the net or do you just not get no connection at all?


can do all the rest it just seems to block anything security wise, like antiviruses and scanners and shed like that, msn is fine, surfing seems all ok!

just cannot update nod32 or anything.
i tried reinstalling those to no avail....

fergalsworld
03-04-2012, 09:08 PM
Does it let you update in safe mode with networking?

digdug
03-04-2012, 09:09 PM
Have you tried uninstalling and then re-installing?
installing again only can just overwrite whatever is there leaving settings, reg entries and services unchanged

Spinifex
03-04-2012, 09:43 PM
@ ferg in safe mode yes it updated fine using 2 accounts admin and administrator.
back in normal windows it wont update and i get error messages for malwarebytes and eset nod32 :(

fergalsworld
03-04-2012, 09:54 PM
Did you do a full scan with malwarebytes and nod in safe mode after they updated and did they find anything.

Spinifex
03-04-2012, 09:57 PM
Did you do a full scan with malwarebytes and nod in safe mode after it updated and did it find anything.

with mb i did a quick scan didnt fine much apart from tnod but thats false positive, ill do a virus scan tomoz.
however is it a virus? or a block setting changed i really dunno......

its a new1 on me

fergalsworld
03-04-2012, 10:00 PM
Just format the fooker you will be up and running in a couple of hours with a nice fast clean machine.

Magnu420
03-04-2012, 10:46 PM
wait til dx come on later he said be able to advise you,also have you look in the task manager
and see any suspicous activity processes,maybe you can identify the culprit and killin the process
and maybe doing a virus scan to see if that remove it

also stop d/loading dodgy pr0n films you end up blind lol

alanjg007
03-04-2012, 11:23 PM
Have you considered the possibility of hidden processes?

berley
03-04-2012, 11:32 PM
woohoo we've got rid of spini thanks to a virus ;)

dx100-uk
04-04-2012, 01:08 AM
someone call...........

you need to be very aware that certain trojans target certain programs
this is easily done if you persist in using a log in to windows that has admin rights...

activeX scripts pass right through, and if you have a .XXX.EXE [where XXX is anything you wish]
and you not got show extensions enabled in folder/files viewer
you'll never see you all ready have the horse , you just need the script to activate it..........


AVG, malwarebytes, nod32 , avast all can be disabled by trojans.....dump 'em!

uninstall anything anti virus you have and anything anti malware [inc spybot, spy doctor]

stop all system restore [right-click mycomputer/properties/system restore etc]
DELETE all restores - should do that by disc as you untick each drive

empty the recycles bin.

then go here:
To view links or images in this forum your post count must be 1 or greater. You currently have 0 posts. download the top one to a penstick

reboot the infected pc safemode with networking

run the tool.

once the first scan has done
deal with any issues
[deleted the files]

go into the settings and select to scan everything.
delete anything found

then re-download combofix [the 10 min countdown one from here:
To view links or images in this forum your post count must be 1 or greater. You currently have 0 posts. and run that too.

when done

boot windows as normal and install
microsoft security essentials.

launch IE9 [or 8]

untick the box under adavance etc etc to not keep temp internet files

then reset explorer

should wotk ok.

you MUST have windows update fully complete
go back several times to make sure [inc optional updates
]
that everything is done

dx

Spinifex
05-04-2012, 04:46 PM
nothing worked nothing was found so couldnt of been a virus or trojan or malware of what we know!

so reformatted and backed up via a paragon disk :)

nice n fast now.
ive been told by a friend to use a program called deep freeze and it will keep your system as the day u installed it and whatever else u have installed so going to do that when ive installed the last tid bits i need lol

cheers for help guys

Spin.

digdug
05-04-2012, 04:55 PM
I have used Deep Freeze and I recommended it to your friend if its the same person but be aware when it is in the frozen state anything and everything you do, download etc. will be lost on the next reboot. Just be careful to remember when it is "Frozen" and "Thawed" :)

Spinifex
05-04-2012, 04:58 PM
I have used Deep Freeze and I recommended it to your friend if its the same person but be aware when it is in the frozen state anything and everything you do, download etc. will be lost on the next reboot. Just be careful to remember when it is "Frozen" and "Thawed" :)

correct & correct i was pre warned.

what ill do tho is put me downloads on e: and only freeze c?

digdug
05-04-2012, 05:11 PM
Yer you can do that. I lost a few things when I was using it regularly because emails were downloaded to C, program, virus updates etc all goto C normally but the most annoying was when I was programming and lost all the work I done cos i forgot it was frozen lol

Spinifex
05-04-2012, 05:14 PM
Yer you can do that. I lost a few things when I was using it regularly because emails were downloaded to C, program, virus updates etc all goto C normally but the most annoying was when I was programming and lost all the work I done cos i forgot it was frozen lol

i knew you would of done that when my m8 told me u told him about it lol
and i remember u moaning about u losing some work i think once and put 2+2 close together!
either that or deja vu lol

moh
15-04-2012, 01:04 PM
I have had a few pcs in for repair recently with more or less the same issue that you are experiencing i would highly recomend RKILL it sorted similar issues out for me....
Rkill is a small, freeware and portable tool designed to terminate active malware processes allowing you to use other removal tools. Rkill is made by a Microsoft MVP (http://mvp.support.microsoft.com/) “Lawrence Abrams” and is available in 4 different extensions. An .EXE, .COM, .SCR and a .PIF file.
The reason why Rkill comes in 4 different versions is because some malware will block .EXE files in an attempt to prevent you from running other malware removal tools, so this gets around that problem.


To view links or images in this forum your post count must be 1 or greater. You currently have 0 posts. Hope this helps :1:

Diablo13
22-05-2012, 12:52 AM
"This :thumbup:"

That is not a proper post BlindInsult, please use the provided "Post Thanks" button, then try to make a proper post which adds to the thread!

Mods feel free to delete both the previous post as well as mine if you wish!

Magnu420
22-05-2012, 01:42 AM
sorted now ;)