Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Very strange virus(solved)
New Posts  All Forums:Forum Nav:

Very strange virus(solved)

post #1 of 22
Thread Starter 
Well, here goes. Hope you guys can help.
I have Norton 360 and Spyware Doctor on my Dell XPS, I've tried many others, but those seem to work for me, so please don't bombard me with helpful suggestions such as Norton is cr*p.
Anyway, I have got a very strange virus which turned auto protect off and disabled spyware doctor. I have tried installling other suites, but they either won't install or don't detect anything. Spyware doctor found a backdoor trojan, which I removed. Other than that, nothing comes up although my XPS runs slow, norton doesn't work, spyware doctor refuses to update and won't detect anything.
Any ideas?
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
post #2 of 22
Avast and its free,it does a scan during boot and takes a long time,but catches about everything.
    
CPUMotherboardGraphicsRAM
Core i7 920 C0 3.6 w/1.28 vcore ASUS P6X58D Premium 3 x GTX 275 12 gb Ballistix tracers 
Hard DriveOSMonitorKeyboard
750gb seagate Win7 pro 64bit 4 monitor(3 24 in., 1 17 in.) saitek eclipse II 
PowerCase
Corsair 850w Lian Li PC-G75B 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Core i7 920 C0 3.6 w/1.28 vcore ASUS P6X58D Premium 3 x GTX 275 12 gb Ballistix tracers 
Hard DriveOSMonitorKeyboard
750gb seagate Win7 pro 64bit 4 monitor(3 24 in., 1 17 in.) saitek eclipse II 
PowerCase
Corsair 850w Lian Li PC-G75B 
  hide details  
Reply
post #3 of 22
try running an online scan

norton online scan
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom 9600 BE Asus M3A32-MVP Deluxe Watercooled Saphire 1GB 3870 X2 4 GB DDR2 800 OCZ HTC Reaper 
Hard DriveOptical DriveOSMonitor
2 x WD 500GB SATA 2 2 x SATA DVD-RW Vista Ultimate 32" HD TFT on HDMI 
KeyboardPowerCaseMouse
Saitek Eclipse II Zalman 850 Watt Heatpipe cooled Gigabyte Mercury 3D Genius Navigator 525 
Mouse Pad
Desk 
  hide details  
Reply
My System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Phenom 9600 BE Asus M3A32-MVP Deluxe Watercooled Saphire 1GB 3870 X2 4 GB DDR2 800 OCZ HTC Reaper 
Hard DriveOptical DriveOSMonitor
2 x WD 500GB SATA 2 2 x SATA DVD-RW Vista Ultimate 32" HD TFT on HDMI 
KeyboardPowerCaseMouse
Saitek Eclipse II Zalman 850 Watt Heatpipe cooled Gigabyte Mercury 3D Genius Navigator 525 
Mouse Pad
Desk 
  hide details  
Reply
post #4 of 22
    
CPUMotherboardGraphicsRAM
Core i7 920 C0 3.6 w/1.28 vcore ASUS P6X58D Premium 3 x GTX 275 12 gb Ballistix tracers 
Hard DriveOSMonitorKeyboard
750gb seagate Win7 pro 64bit 4 monitor(3 24 in., 1 17 in.) saitek eclipse II 
PowerCase
Corsair 850w Lian Li PC-G75B 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Core i7 920 C0 3.6 w/1.28 vcore ASUS P6X58D Premium 3 x GTX 275 12 gb Ballistix tracers 
Hard DriveOSMonitorKeyboard
750gb seagate Win7 pro 64bit 4 monitor(3 24 in., 1 17 in.) saitek eclipse II 
PowerCase
Corsair 850w Lian Li PC-G75B 
  hide details  
Reply
post #5 of 22
Just pointing out that maybe they do not work for you as you wouldn't have this.

To fix your problem:
- Get SuperAntiSpyware, update it, do a full system scan.
- If problem persists, get a trial of NOD32, update that, and do a full system scan.
- If problem still persists, download HijackThis, run it, and post the results on the HijackThis site for help.

NOD32 and SuperAntiSpyware can both be uninstalled after you have fixed your problem, HijackThis never gets installed in the first place.

Ref: http://www.superantispyware.com/ & http://www.eset.com/
Edited by civilr - 6/23/08 at 3:09am
Second System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9450 @ 3.6GHz 24/7 EVGA 790i Ultra EVGA 9800 GTX+ 2x2GB G.Skill DDR3 @ 1.8GHz 
Hard DriveOSMonitorKeyboard
2x36GB WD Raptors RAID0 Vista Ultimate x64 SyncMaster 245BW G15 
PowerCaseMouseMouse Pad
PCP&P 750 Quad CoolerMaster CM 690 Razer Diamondback None 
  hide details  
Reply
Second System
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9450 @ 3.6GHz 24/7 EVGA 790i Ultra EVGA 9800 GTX+ 2x2GB G.Skill DDR3 @ 1.8GHz 
Hard DriveOSMonitorKeyboard
2x36GB WD Raptors RAID0 Vista Ultimate x64 SyncMaster 245BW G15 
PowerCaseMouseMouse Pad
PCP&P 750 Quad CoolerMaster CM 690 Razer Diamondback None 
  hide details  
Reply
post #6 of 22
i would recommend hijack this first, then worry about fixing your current av or getting something new
Bravo
(13 items)
 
  
CPUMotherboardGraphicsRAM
X4 955 @ 3.6 Asus M479T 4870 1GB 8 GB DDR3 
Hard DriveOSPowerCase
160 GB Win 7 Antec 750w Antec 300 
  hide details  
Reply
Bravo
(13 items)
 
  
CPUMotherboardGraphicsRAM
X4 955 @ 3.6 Asus M479T 4870 1GB 8 GB DDR3 
Hard DriveOSPowerCase
160 GB Win 7 Antec 750w Antec 300 
  hide details  
Reply
post #7 of 22
Thread Starter 
Thanks for your replies. This is the 2nd virus they have ever let in, so I'm happy with them, especially as the 1st one wasn't bad. It wont let me update avast and prevents it from launching. Same goes for NOD32. I'll take a look at your other suggestions.
Thanks
Edited by woodpigeon4 - 6/23/08 at 4:04am
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
post #8 of 22
Quote:
Originally Posted by woodpigeon4 View Post
Thanks for your replies. This is the 2nd virus they have ever let in, so I'm happy with them,
...I wouldn't be!

There are two ways to get rid of trojans, both difficult once it runs.

A little background (sorry, but I don't know what you don't know).
A trojan is a program tha install somthing else (a virus, addware, keylogger, etc. and in some cases, it also disables anti virus scanning/installing).

Anti virus programs have to catch the trojan before it runs and does it's install. AV programs may be able to find whatever the trojan has done, but may not be able to find the actual trojan program (since it "protects" itself from detection/deletion once it runs). It's of no use to detect/eleminate what the trojan has done, because the trojan will just run again on the next bootup and do it all over again.

Method 1:
As others are suggesting, keep searching for an AV solution. You may stumble onto a "fix" the the person who wrote the trojan did not include in his trojan protection scheme.

Method 2
Find out what programs are slowing down your computer (or causing whatever problems you are having. Use a "dependency walker" to identify what is launching those programs. delete the launcher or somehow (registry edit?) keep from launching.
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
FX6300 Black M5A99X EVO R2.0 Nvidia GTS450 Team Vulcan PC3 12800 
Hard DriveOptical DriveCoolingOS
Samsung 840 PRO Asus DRW-1608P (x2) Custom Water Cooling Win7 (Ult), Win 8.1 & Win Server 2012 R2 
MonitorKeyboardPowerCase
2 X Samsung 915N Ducky Shine III, Blue Cherry/Blue LEDs PCP&C 1kw Lian Li PC-71 (W/Window) 
MouseAudio
Logiteck G400s none 
  hide details  
Reply
My System
(15 items)
 
  
CPUMotherboardGraphicsRAM
FX6300 Black M5A99X EVO R2.0 Nvidia GTS450 Team Vulcan PC3 12800 
Hard DriveOptical DriveCoolingOS
Samsung 840 PRO Asus DRW-1608P (x2) Custom Water Cooling Win7 (Ult), Win 8.1 & Win Server 2012 R2 
MonitorKeyboardPowerCase
2 X Samsung 915N Ducky Shine III, Blue Cherry/Blue LEDs PCP&C 1kw Lian Li PC-71 (W/Window) 
MouseAudio
Logiteck G400s none 
  hide details  
Reply
post #9 of 22
Run Hijackthis and post your log file here so we can check it out for you
Gaming Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Q6600 G0 @ 3.5GHz Gigabyte GA-P35-DS3L EVGA GTX 260 Core 216 Superclocked Edition 4GB G.Skill DDR2 PC2-6400 HK 4-4-3-5 @ 940MHz 
Hard DriveOSMonitorKeyboard
WD6401AALS 640GB Black + Samsung F3 1TB Windows 7 Ultimate 64Bit Samsung SM2253BW 22" 1680x1050 Microsoft Digital Media 3000 
PowerCaseMouse
Corsair AX750 CoolerMaster 690 NVIDIA Edition Microsoft Laser Mouse 6000 
  hide details  
Reply
Gaming Rig
(13 items)
 
  
CPUMotherboardGraphicsRAM
Intel Q6600 G0 @ 3.5GHz Gigabyte GA-P35-DS3L EVGA GTX 260 Core 216 Superclocked Edition 4GB G.Skill DDR2 PC2-6400 HK 4-4-3-5 @ 940MHz 
Hard DriveOSMonitorKeyboard
WD6401AALS 640GB Black + Samsung F3 1TB Windows 7 Ultimate 64Bit Samsung SM2253BW 22" 1680x1050 Microsoft Digital Media 3000 
PowerCaseMouse
Corsair AX750 CoolerMaster 690 NVIDIA Edition Microsoft Laser Mouse 6000 
  hide details  
Reply
post #10 of 22
Thread Starter 
Just to update, none of the solutions you suggested worked, but thanks anyway. I'm just about to run Hijack this, will post again soon
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel Core i7 920 D0 @ 4.0Ghz Gigabyte GA-EX58-UD3R‏ HIS Radeon 5850 6GB OCZ Platinum 1600Mhz 
Hard DriveOptical DriveOSMonitor
500GB Samsung Spinpoint Pioneer DVD+/-R/RW Windows 7 Ultimate x64 24"Samsung SM2494HS+Sony Bravia 20" 
KeyboardPowerCaseMouse
Saitek Eclipse II OCZ ModXstreme Pro 700W Modded Antec 900 Logitech MX518 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Very strange virus(solved)