Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Need help with a virus
New Posts  All Forums:Forum Nav:

Need help with a virus - Page 3

post #21 of 43
please post a screen shot of your task manager and if your unable to view task manager. Use Daphne a portable task manager that viruses cant block. Post a screen shot so we can see whats running and determine what process should be deleted so you can run a better anti virus.
    
CPUMotherboardGraphicsRAM
5960x @ 3.7ghz Asrock extreme4 x99  EVGA GTX 980 ti SC 128gb Corsair Dominator Platinum DDR4 at 2250mhz 
Hard DriveCoolingOSMonitor
(3) 3 tb Western Digital Black HDD's / Samsung ... Noctua NH-D15 Windows 8.1 Asus ROG Swift 
PowerCase
Corsair HX 650W NZXT H440 White 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
5960x @ 3.7ghz Asrock extreme4 x99  EVGA GTX 980 ti SC 128gb Corsair Dominator Platinum DDR4 at 2250mhz 
Hard DriveCoolingOSMonitor
(3) 3 tb Western Digital Black HDD's / Samsung ... Noctua NH-D15 Windows 8.1 Asus ROG Swift 
PowerCase
Corsair HX 650W NZXT H440 White 
  hide details  
Reply
post #22 of 43
registry might be corrupted try the following it help allot making registry back to par


http://www.avg.com/ca-en/avg-rescue-cd-download


AVG Rescue CD is a comprehensive toolkit that will repair system crashes and return systems to a state where they can operate at full capacity, thanks to deep-rooted infections having been removed and file systems repaired.
Edited by dmckoy - 12/18/11 at 6:28pm
Black 775
(6 items)
 
 
CPUMotherboardGraphicsRAM
Intel Pentium E6700 G41M-VS3. NVIDIA GeForce 9600 GSO 512 Corsair  
RAMHard Drive
Corsair  crucial M4 
  hide details  
Reply
Black 775
(6 items)
 
 
CPUMotherboardGraphicsRAM
Intel Pentium E6700 G41M-VS3. NVIDIA GeForce 9600 GSO 512 Corsair  
RAMHard Drive
Corsair  crucial M4 
  hide details  
Reply
post #23 of 43
hmm.. if all else fails.. re-install windows with a fresh install.

do you have your driver disc, windows disc.. wait, ..you have win7.. why not just use the recovery partition?

assuming your ethernet works out of the box, you should be able to install via the partition. and get the rest of the drivers from the internet,

I think you would still lose all data. but better that (perhaps depending on the data) than faffing around for days on end.

if that even fails and you have no discs install Ubuntu via usb drive. that last one is just a suggestion as Linux is not for the faint hearted.

Linux has very few viruses as nearly all the worlds servers run Linux*. if the servers all got virus'ed no more internet!
I imagine nobody who makes there money that way wants that.

if anything i said doesn't make sense, sorry i am very tired.



* last i heard 94%, it's really mostly Red Hat: Fedora.
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
post #24 of 43
Thread Starter 
I think you guys are right, this doesn't seem to be going away. After I thought I was clean a few weird things started happening like the command prompt flashing very quickly on the screen for no reason, and multiple browser tabs/ windows being opened with advertisements. Then earlier today the annoying fake security warnings came back and have been popping up every few minutes in one form or another.

So I gather the safe way to go would be to reformat? Is there anything to that other than just reinstalling Windows that I should know?

Thanks for your continued help everyone


Also, here are pics of what's happening (taken in safe mode)

5a3srd.png

25f0c3s.png

15yf11u.png

28h0dv5.png

And here's the task manager:

16745ys.png
Rokas' PC
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k asus p8p67 pro GTX 470 4GB DDR3 1600 g-skill 
Hard DriveOSMonitorKeyboard
1TB WD 6GB/s Windows 7 Home Premium x64 24" 2ms latency 1920x1080 Logitech G15 
PowerCaseMouseMouse Pad
650W Corsair HAF 932 Logitech G5 Qck+ 
  hide details  
Reply
Rokas' PC
(13 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k asus p8p67 pro GTX 470 4GB DDR3 1600 g-skill 
Hard DriveOSMonitorKeyboard
1TB WD 6GB/s Windows 7 Home Premium x64 24" 2ms latency 1920x1080 Logitech G15 
PowerCaseMouseMouse Pad
650W Corsair HAF 932 Logitech G5 Qck+ 
  hide details  
Reply
post #25 of 43
jii is your virus
csrss is the hijacker making your pc a zombie
the win 2012 security you see is fake ... its a rogue program taking over your pc
this CD boots like a win install before virus goes on can be installed on a CD or a usb stick

AVG Rescue CD

A powerful tool set for rescue & repair of infected machines


http://www.avg.com/ca-en/avg-rescue-cd-download

this fake av is an old trick "your system is not protected ! install free AV win xxxx" and BAM! you install a virus!
Edited by dmckoy - 12/19/11 at 7:27pm
Black 775
(6 items)
 
 
CPUMotherboardGraphicsRAM
Intel Pentium E6700 G41M-VS3. NVIDIA GeForce 9600 GSO 512 Corsair  
RAMHard Drive
Corsair  crucial M4 
  hide details  
Reply
Black 775
(6 items)
 
 
CPUMotherboardGraphicsRAM
Intel Pentium E6700 G41M-VS3. NVIDIA GeForce 9600 GSO 512 Corsair  
RAMHard Drive
Corsair  crucial M4 
  hide details  
Reply
post #26 of 43
hmm..i don't that one's that serious..i'd boot into safe mode..install ccleaner..look for startup programs with it..i bet your virus shows there..then delete it ...(and prevent it from starting up) i also recommend avg free..and..clear your temp folder
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
post #27 of 43
where'd you get that virus? i'll try it..lol
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
 
Thuban Powah!
(14 items)
 
 
CPUMotherboardGraphicsRAM
Xeon X5650 Asus P6X58D-E Sapphire HD 7950 G.Skill Trident-X 2600 CL10 
Hard DriveCoolingPowerCase
Samsung 840 pro Bong cooler / RASA waterblock Rosewill Capstone Gold 750 None 
MouseMouse PadAudio
cheap! Newegg box panel ibeats with onboard. 
CPUMotherboardGraphicsRAM
AMD Phenom II X6 1075T w/2 cores locked @ 4.2+ M4a89GTD-Pro XFX Radeon HD 5870 8gb Samsung ddr3 1600 11-11-11-28@ 8-8-8-24 
Hard DriveHard DriveOptical DriveCooling
OCZ Agility2 40gb WD Blue 500GB Lite-On RASA waterblock 
OSMonitorKeyboardPower
Windows & Linux Samsung 1080p 2 ms Dell Thermaltake TR2-800 
CaseMouse
Cooler Master Elite 330 (was) cheap 
  hide details  
Reply
post #28 of 43
Quote:
Originally Posted by Rokabud View Post

I think you guys are right, this doesn't seem to be going away. After I thought I was clean a few weird things started happening like the command prompt flashing very quickly on the screen for no reason, and multiple browser tabs/ windows being opened with advertisements. Then earlier today the annoying fake security warnings came back and have been popping up every few minutes in one form or another.
So I gather the safe way to go would be to reformat? Is there anything to that other than just reinstalling Windows that I should know?
Thanks for your continued help everyone
Also, here are pics of what's happening (taken in safe mode)
5a3srd.png
25f0c3s.png
15yf11u.png
28h0dv5.png
And here's the task manager:
16745ys.png

This was the one I had on my eBay Dell P4 budget buy, back in Autumn!! only difference was it didn't say 2012.

that thing is nasty. re-format.
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
post #29 of 43
Quote:
Originally Posted by Tman5293 View Post

What you need is some real anti virus. Microsoft Security Essentials doesn't really count. Go here and download AVG Free: http://download.cnet.com/AVG-Anti-Virus-Free-Edition-2012/3000-2239_4-10320142.html?part=dl-avg_free_us&subj=dl&tag=button. Install that and tell it to run a full system scan. After it's done report back with the results of the scan.

Funny, I've been using MSE ever since windows 7 came out (or at least shortly after), and I've never gotten a virus. It's stopped every one I might have gotten.
Sigma
(14 items)
 
NukeBox
(12 items)
 
 
CPUMotherboardGraphicsRAM
Core 2 Quad Q9550 GIGABYTE EP45T-USB3P HIS Radeon HD 4870 Turbo G.Skill Ripjaws 7-8-7-24 
Hard DriveHard DriveOptical DriveOS
Western Digital Caviar Green Seagate Baracuda Generic DVD Burner Windows 7 Home Premium 
MonitorKeyboardPowerCase
2 x Asus 23" Rosewill Black normal keyboard Antec TP 750 Antec Nine Hundred 
MouseMouse Pad
Razer DeathAdder Wooden Desk 
CPUMotherboardGraphicsRAM
Core 2 Duo e6750 Gigabyte GA-73VM-S2 Sparkle Geforce GT 440 1GB DDR3 OCZ Reapers DDR2 
Hard DriveCoolingOSMonitor
WD Caviar Green  Stock Win 7 Ultimutant 2 x ASUS VS238H 
KeyboardPowerCaseMouse
Rosewill cheapo "gaming keyboard" ULTRA 400W  None atm Razer Deathadder 
  hide details  
Reply
Sigma
(14 items)
 
NukeBox
(12 items)
 
 
CPUMotherboardGraphicsRAM
Core 2 Quad Q9550 GIGABYTE EP45T-USB3P HIS Radeon HD 4870 Turbo G.Skill Ripjaws 7-8-7-24 
Hard DriveHard DriveOptical DriveOS
Western Digital Caviar Green Seagate Baracuda Generic DVD Burner Windows 7 Home Premium 
MonitorKeyboardPowerCase
2 x Asus 23" Rosewill Black normal keyboard Antec TP 750 Antec Nine Hundred 
MouseMouse Pad
Razer DeathAdder Wooden Desk 
CPUMotherboardGraphicsRAM
Core 2 Duo e6750 Gigabyte GA-73VM-S2 Sparkle Geforce GT 440 1GB DDR3 OCZ Reapers DDR2 
Hard DriveCoolingOSMonitor
WD Caviar Green  Stock Win 7 Ultimutant 2 x ASUS VS238H 
KeyboardPowerCaseMouse
Rosewill cheapo "gaming keyboard" ULTRA 400W  None atm Razer Deathadder 
  hide details  
Reply
post #30 of 43
Quote:
Originally Posted by stalker7d7 View Post

Funny, I've been using MSE ever since windows 7 came out (or at least shortly after), and I've never gotten a virus. It's stopped every one I might have gotten.

the guy who had the Dell before me, had like three AV's on it trying to get rid of it. guess he gave up. I see why, this thing IS bad.

MSE is good stuff, really like it, using it now.
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
Black Box 3200
(13 items)
 
  
CPUMotherboardGraphicsRAM
Athlon 64 3200+ AsRock K8upgrade nf3 ATI Sapphire Radeon X1650 PRO 512mb Samsung pc3200 ddr400 fsb 2gb 
Hard DriveOptical DriveOSMonitor
Maxtor ide 40 gb + WD my book 500gb PHILIPS DVDR1660P1 CD/DVD R/W Win XP Pro SP2 +Ubuntu +Win XP SP2 x64 A IBM & A PACKARD BELL VGA 
KeyboardPowerCaseMouse
IBM SumVision 400w psu SumVision Trust optical 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Need help with a virus