Possible Virus...PLease Help!!!!!

Status
Not open for further replies.

24giovanni

Banned
Messages
878
A few weeks ago, I was surfing the web and a clicked on a site which caused my PC to act really funny. It opened up a bunch of web pages which wouldn't stop until I alt,cntl,deleted them to force them to shut. I noticed my desktop had new Icons on it that I didn't place there. I accidently clicked on one which was a batch job whiched messed up my PC. I couldn't open applications, ones I had open wouldn't close, I couldn't even clcik on start, shutdown. I had to restore my hard drive from scratch.

The question I have for you know is those very same icons are back after doing a simple search on red cars. What the heck should I do.


The 5 icons on my desk top are one with an "o" under it, another icon with an "o" nder it that is a batch job, another with 0021- bdl94126, another called SILENT, and the last one is CS4P08.

PLEASE HELP ME!!!!!!!!!
 
Download AdAware 6 181 from here: http://www.lavasoftusa.com/
Before you scan with AdAware, check for updates of the reference file by using the "webupdate".
Then ........

Make sure the following settings are made and on -------"ON=GREEN"
From main window :Click "Start" then " Activate in-depth scan"

Then......

Click "Use custom scanning options>Customize" and have these options on: "Scan within archives" ,"Scan active processes","Scan registry", "Deep scan registry" ,"Scan my IE Favorites for banned URL" and "Scan my host-files"

Then.........

Go to settings(the gear on top of AdAware)>Tweak>Scanning engine and tick "Unload recognized processes during scanning" and "Let windows remove files in use at next reboot"

Then...... click "proceed" to save your settings.

Now to scan it´s just to click the "Scan" button.

When scan is finished mark everything for removal and get rid of it.(Right-click the window and choose"select all" from the drop down menu)


Then
Download Spybot - Search & Destroy from http://security.kolla.de

After installing, first press Online, and search for, put a check mark at, and install all updates.
Next, close all Internet Explorer and OE windows, hit 'Check for Problems', and have SpyBot remove all it finds that is marked in RED


Please do this. Click here: http://www.sherrylynn.us/HijackThis.exe to download Hijack This. Save it to itÂ’s own folder (not temporary files or the desktop).
Close all open windows and open HIJACK THIS. Click “Scan”. When the scan is finished (it only takes a second), the scan button will change to “Save Log”. Click on “Save Log” and save it to NotePad. Copy the entire log and paste it here.

DO NOT FIX ANYTHING YET, most items that appear in the log are harmless or even needed. Wait for someone to analyze the scan and advise.
 
Yeah 24giovanni,
Those free porn sites are a real b1tch. It's amazing what
outsourcing of jobs does to the virus world. This is a memory
resident virus http://vx.netlux.org/lib/static/vdat/tumisc51.htm

The best thing to do when surfing the hacker/porn sites is
to harden the computer against such exploits.

Set up an account just for surfing the shady sites.
Turn off all the services like Remote Registry Service,
and configure the policies on the machine to deny access
to the registry and the system and system32 folders,
this may take some work to configure correctly ie without
receiving errors when accessing programs in this folder.
Of course turn of the Messenger Service for that user.
Make sure that you keep the security updates from Microsoft
current and the antivirus and spyware definitions updated.
Also make sure you disable the Runas service and have a strong
password for the admin account.


You can scan the PC with TrendMicro's free online antivirus
since it seems to pick up the oddball ones the top named
Antivirus programs miss. http://housecall.trendmicro.com/
 
Spybot along with your virus scanner should pick up what is causing the icons to be there. And then remove them!

One other thing to add, when in Spybot S&D, make sure you check for any new updates before you scan, that way you have the latest spyware definitions.
 
Status
Not open for further replies.
Back
Top Bottom