New Posts  All Forums:Forum Nav:

annoying malware

post #1 of 11
Thread Starter 
so i got some virus and it did a number of things to the computer

it put some new desktop that had some big warning box in the center of the screen saying 'WARNING YOUR COMPUTER IS INFECTED DOWNLOAD LATEST Something or other to get rid of it"

then theres some animation with bugs crawling on the screen if you point your mouse on it.

My firewall had been disabled.

My system restore points had been deleted.

at that point it seemed that was all it did. but i was concerned because i got it by clicking on a link to dowload when i was getting mp3s which allowed a virusto get in uncontested.

I had a disk with Spybot search and destroy on it. I ran spybot and did a scan withMcAffee. Spybot found a number of things. McAffee found nothing of course. so i got rid of the discovered items...

for one thing my internet browser still seems to load up slower than usual and web page browsing does seem slower.

then i noticed when playing games i would see a flucuating drop in framerate, so i leave the game and check out the performance graph and i see these cpu usage spikes from 20-50% i shut off the game and with no processes running the cpu graph was spiking up and down all over the place 20-50% over and over.

then now when i am on the internet these funny web pages will pop up out of nowhere once in a while

also ie been noticing keystroke errors for some odd reason like when i am typing sometimes a button will not register being pressed.



what exactly is this crap?
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
post #2 of 11
Sounds like a bad case of malware. Sometimes those virus + ad-ware scanners don't find em. I had that problem before...

Best thing to do is to back everything up and make sure nothing else but your files (wouldn't wanna take the virus/malware with you) and then reformat windows. That way you start fresh and clean (you will get better performance). There is also no chance of the virus carrying over (only place is through your back up).
    
CPUMotherboardGraphicsRAM
Q8300 @ 3.0Ghz EP45-DS3L Saphirre 5770 Vapor-X 6 gig A-Data 800mhz (2x2 + 2x1) 
Hard DriveOptical DriveOSMonitor
OCZ Vertex 2 60Gig + 4.5TB worth of drives Samsung Windows 7 Ultimate 64-bit 2xAsus VW266H 25.5" 
KeyboardPowerCaseMouse
G110 650W Cooler Master Antec 300 G500 
Mouse Pad
Razer pad 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Q8300 @ 3.0Ghz EP45-DS3L Saphirre 5770 Vapor-X 6 gig A-Data 800mhz (2x2 + 2x1) 
Hard DriveOptical DriveOSMonitor
OCZ Vertex 2 60Gig + 4.5TB worth of drives Samsung Windows 7 Ultimate 64-bit 2xAsus VW266H 25.5" 
KeyboardPowerCaseMouse
G110 650W Cooler Master Antec 300 G500 
Mouse Pad
Razer pad 
  hide details  
Reply
post #3 of 11
Please run HijackThis (http://www.hijackthis.de/) and give us the output.....
post #4 of 11
Thread Starter 
ok ill try the link below first off but then ill probly just try to reinstall windows if that doesnt work. thanks
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
post #5 of 11
Thread Starter 
oh it also says i have some process called virtumonde.dll which apparently it sees as spyware. hmm
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
Good Times
(13 items)
 
  
CPUMotherboardGraphicsRAM
i7 920 3.6Ghz P6T6 X58 HIS 5870 6GB Corsair DDR3 
Hard DriveOptical DriveOSMonitor
Velociraptor 300GB + Caviar Black 1TB Sony Optiarc Windows 7 Acer GD235hz 
KeyboardPowerCaseMouse
Dell Keyboard Corsair 750W CoolMaster HAF932 Razor DeathAdder 
Mouse Pad
SteelSeries 19x17 
  hide details  
Reply
post #6 of 11
There you go
post #7 of 11
Ouch. That's a horrible one to try to get rid of. I was able to get rid of it using the boot-time scan in Avast antivirus on my friend's PC.
 
Server
(3 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core i7-3540M Intel HD Graphics 4000 8GB G.SKILL Ripjaws DDR3 1600 Samsung 840 EVO 250GB SSD 
OSMonitorMouseAudio
Windows 10 Pro x64 14" at 1600x900 Logitech Anywhere Mouse MX FiiO E17 USB DAC amp 
CPUOSCase
i3-540 Debian 8 (Jessie) Cooler Master Elite 341 
  hide details  
Reply
 
Server
(3 items)
 
 
CPUGraphicsRAMHard Drive
Intel Core i7-3540M Intel HD Graphics 4000 8GB G.SKILL Ripjaws DDR3 1600 Samsung 840 EVO 250GB SSD 
OSMonitorMouseAudio
Windows 10 Pro x64 14" at 1600x900 Logitech Anywhere Mouse MX FiiO E17 USB DAC amp 
CPUOSCase
i3-540 Debian 8 (Jessie) Cooler Master Elite 341 
  hide details  
Reply
post #8 of 11
If you do reformat, here's what you should ALWAYS do FIRST. Nothing else!

1. Windows updates. DO NOT VISIT ANY OTHER WEBPAGE OR INSTALL ANY SOFTWARE. Software often has compatibility issues with un-updated Microsoft OS.

2. Antivirus software install. AVG free edition has never failed me yet in conjunction with Spybot. Careful installing more than one antivirus program, as often they read each other as threats and gum up your system. I've had no problems with Spybot/AVG though, since Spybot isn't a constantly-running program in the tray like most Antiviruses.

3. Firefox. Stops 50% of the viruses out there which are usually designed for IE.

4. Ad Block Plus and Adblock Filterset. Useful for even more than protecting your system! (you can block any ad or image that you deem annoying )

5. Do anything you want EXCEPT PRON. (Most likely driver installation)
Current
(12 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z68 Extreme4 Gen3 EVGA GTX 570 Classified 4x4GB Corsair XMS3 
Hard DriveCoolingPowerCase
Samsung 830 Thermaltake Frio OCZ ZS 850W Lian Li Lancool First Knight K9 
MouseAudioOtherOther
Logitech G500 Audinst HUD-MX1 Sennheiser HD598 Swan D1080MkII 
  hide details  
Reply
Current
(12 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z68 Extreme4 Gen3 EVGA GTX 570 Classified 4x4GB Corsair XMS3 
Hard DriveCoolingPowerCase
Samsung 830 Thermaltake Frio OCZ ZS 850W Lian Li Lancool First Knight K9 
MouseAudioOtherOther
Logitech G500 Audinst HUD-MX1 Sennheiser HD598 Swan D1080MkII 
  hide details  
Reply
post #9 of 11
Quote:
Originally Posted by flushentitypacket View Post
If you do reformat, here's what you should ALWAYS do FIRST. Nothing else!

1. Windows updates. DO NOT VISIT ANY OTHER WEBPAGE OR INSTALL ANY SOFTWARE. Software often has compatibility issues with un-updated Microsoft OS.

2. Antivirus software install. AVG free edition has never failed me yet in conjunction with Spybot. Careful installing more than one antivirus program, as often they read each other as threats and gum up your system. I've had no problems with Spybot/AVG though, since Spybot isn't a constantly-running program in the tray like most Antiviruses.

3. Firefox. Stops 50% of the viruses out there which are usually designed for IE.

4. Ad Block Plus and Adblock Filterset. Useful for even more than protecting your system! (you can block any ad or image that you deem annoying )

5. Do anything you want EXCEPT PRON. (Most likely driver installation)
A virus can only affect your pc the way that the current user can. Best posible solution to never get a virus...

With a clean, virus free, install of {insert M$ OS}, intall all Virus software and main programs that you want to use, i.e. M$ Office, Firefox, etc...

Then, name the ONLY admin account something weird like ButterflyPenutButter, or TapDancingJellyFish. Give it a cryptic password.

Create user accounts. One can be a test account, another can be the main account. Make sure that these accounts are only Users. You don't want them to have any permissions at all.

Remember, a virus only has the permissions of the user that dl it. So, if you are the Admin, you dl a virus, it can do ANYTHING. Mess up your registry, etc.

It can be annoying for a while, because you'll have to type in the password for everything, active x installs and stuff, but well worth it.

Let me know how it works out.

Good Luck.
Austiclees - PC
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Atholn 64 X2 6400+ ASUS M3A32-MVP Deluxe WiFi-AP Edition ATI Radeon HD 3870 4x 1GB Corsair XMS2 Dual Channel DDR2 PC 6400 DHX 
Hard DriveOptical DriveOSMonitor
2 Maxtor 500GB sata II in RAID0 LG Dual Layer Dual; Vista Ultimate 64bit & XP Pro 32 bit Westinghouse 17" 1280x768 
KeyboardPowerCaseMouse
Logitech wireless Ultra XPro 750 Watt 80% eff Custom Logitech wireless 
Mouse Pad
none 
  hide details  
Reply
Austiclees - PC
(13 items)
 
  
CPUMotherboardGraphicsRAM
AMD Atholn 64 X2 6400+ ASUS M3A32-MVP Deluxe WiFi-AP Edition ATI Radeon HD 3870 4x 1GB Corsair XMS2 Dual Channel DDR2 PC 6400 DHX 
Hard DriveOptical DriveOSMonitor
2 Maxtor 500GB sata II in RAID0 LG Dual Layer Dual; Vista Ultimate 64bit & XP Pro 32 bit Westinghouse 17" 1280x768 
KeyboardPowerCaseMouse
Logitech wireless Ultra XPro 750 Watt 80% eff Custom Logitech wireless 
Mouse Pad
none 
  hide details  
Reply
post #10 of 11
Quote:
Originally Posted by Austiclees View Post
A virus can only affect your pc the way that the current user can. Best posible solution to never get a virus...

With a clean, virus free, install of {insert M$ OS}, intall all Virus software and main programs that you want to use, i.e. M$ Office, Firefox, etc...

Then, name the ONLY admin account something weird like ButterflyPenutButter, or TapDancingJellyFish. Give it a cryptic password.

Create user accounts. One can be a test account, another can be the main account. Make sure that these accounts are only Users. You don't want them to have any permissions at all.

Remember, a virus only has the permissions of the user that dl it. So, if you are the Admin, you dl a virus, it can do ANYTHING. Mess up your registry, etc.

It can be annoying for a while, because you'll have to type in the password for everything, active x installs and stuff, but well worth it.

Let me know how it works out.

Good Luck.
Never heard of this method before. Sounds great. However, that would be too much of a hassle for my taste. But yeah, this sounds like a really foolproof way to keep away hijacking programs.
Current
(12 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z68 Extreme4 Gen3 EVGA GTX 570 Classified 4x4GB Corsair XMS3 
Hard DriveCoolingPowerCase
Samsung 830 Thermaltake Frio OCZ ZS 850W Lian Li Lancool First Knight K9 
MouseAudioOtherOther
Logitech G500 Audinst HUD-MX1 Sennheiser HD598 Swan D1080MkII 
  hide details  
Reply
Current
(12 items)
 
  
CPUMotherboardGraphicsRAM
i5 2500k ASRock Z68 Extreme4 Gen3 EVGA GTX 570 Classified 4x4GB Corsair XMS3 
Hard DriveCoolingPowerCase
Samsung 830 Thermaltake Frio OCZ ZS 850W Lian Li Lancool First Knight K9 
MouseAudioOtherOther
Logitech G500 Audinst HUD-MX1 Sennheiser HD598 Swan D1080MkII 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security