Reinstall windows dude. Its the only way to be sure.
Just noticed that he has XP... Unfortunately, I must agree with this statement. 
Topic: Are you a worm/trojan/virus expert? - page 2. (Read 4964 times)
Reinstall windows dude. Its the only way to be sure.
No really help me!!!!
1. Find a Nerd
2. Have them backup your important documents.
3. Reinstall a fresh copy of XP Pro SP3
4. Have the nerd restore your important documents.
5. Install Something similar to Deep Freeze.
6.
7. PROFIT!!!
2. Have them backup your important documents.
3. Reinstall a fresh copy of XP Pro SP3
4. Have the nerd restore your important documents.
5. Install Something similar to Deep Freeze.
6.
7. PROFIT!!!
I'm certainly not coming here to say "I told you so", but why in the hell would anyone trust a system after it's had multiple malwares on it it? Can you ever have any confidence in the security and integrity of this system any more?
I am getting this error when I start up also:
Any ideas?
Any ideas?
LOL- yes, P4man, I know. Steep learning curve for someone who is not a "natural" with computers though.
Its actually the opposite. Anyone who is not a geek with 20 years experience in windows will find it much easier to adapt. For almost all common (non hardcore gaming) applications ubuntu is, if anything, easier and more natural to use than windows. Its only when you start poking under the hood that windows experts will face a learning curve. For "ordinary" users, the most difficult part is getting used to close/minize buttons being on the left, and forgetting about antivirus, drivers and drivers updates, malware, reinstalls, product activation etc and wrapping your head around the idea that you install most applications just by selecting them in the software center. Rather than going out buy, install, update, patch, activate etc. Its like an iphone; turn it on, use it. But without all the DRM crap.
LOL- yes, P4man, I know. Steep learning curve for someone who is not a "natural" with computers though. I'm running XP, and even though it is utter trash it is probably not as bad as 7 or Vista or whatever they are trying to sell now. Name any other product that gets consistently worse over time and still has the lead in market share.
All I can say is "Wow". You guys took care of me. Amencon hit the nail on the head- I ran Malwarebytes and it found and eradicated the Ares/Shareaza/eMule issue immediately. One scan and a reboot and it was dead and has not reappeared.
I forgot to mention another really big issue that was troubling me that started the same time as the P2P invasion. I get the BSOD and my machine reboots. It is totally random. It might run for hours, or just minutes before doing so. There is no way to read the screen since it is up for only a fraction of a second. Any ideas on how to remedy this?
Combofix scares me- I'm not an IT guy!
I forgot to mention another really big issue that was troubling me that started the same time as the P2P invasion. I get the BSOD and my machine reboots. It is totally random. It might run for hours, or just minutes before doing so. There is no way to read the screen since it is up for only a fraction of a second. Any ideas on how to remedy this?
Combofix scares me- I'm not an IT guy!
Combofix deleted everything related to bitcoin for me. I lost .01 BTC.
The *ONLY* way to be 100% sure you've eradicated malware is by wiping your drive and rebuilding the OS.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
False and overly paranoid, a little research turns up he's got a rather run of the mill trojan malwarebytes ought to take care of if based on the presented symptoms It'll take longer than doing it manually but is simpler to do.
Bonus point to magged for suggesting it first i usually forget that's available and do things the hard way
what if the virus was in control of the OS? your antivirus won't be able to do shit.
False and overly paranoid, a little research turns up he's got a rather run of the mill trojan malwarebytes ought to take care of if based on the presented symptoms It'll take longer than doing it manually but is simpler to do.
If something has escalated privs enough to install "run of the mill trojans", they've escalated privs enough to install root kits to hide anything else.
The *ONLY* way to be 100% sure you've eradicated malware is by wiping your drive and rebuilding the OS.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
False and overly paranoid, a little research turns up he's got a rather run of the mill trojan malwarebytes ought to take care of if based on the presented symptoms It'll take longer than doing it manually but is simpler to do.
Bonus point to magged for suggesting it first i usually forget that's available and do things the hard way
The *ONLY* way to be 100% sure you've eradicated malware is by wiping your drive and rebuilding the OS.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
IMO, If you've got money, i.e. Bitcoin, on that system, this is your only option.
If it'll let you I'd hit it with Malwarebytes and maybe ComboFix to start and re-assess after that.
I'm no expert but I've found through my experience that the hardest part of clearing most infections is getting around the blocks the infection itself throws up to prevent you from running your virus scanners. Usually once you get a scan from malwarebytes off the problem is gone or at least mostly gone allowing you to run more scans with other software.
In the past the only infections I've seen that weren't cleared by Malwarebytes/Combofix were usually rootkits and if thats the case you can try GMER.
As a warning I've had ComboFix remove critical system files after running so I then had to fix the boot issues, however after that the machine ran clean.
Good luck.
I'm no expert but I've found through my experience that the hardest part of clearing most infections is getting around the blocks the infection itself throws up to prevent you from running your virus scanners. Usually once you get a scan from malwarebytes off the problem is gone or at least mostly gone allowing you to run more scans with other software.
In the past the only infections I've seen that weren't cleared by Malwarebytes/Combofix were usually rootkits and if thats the case you can try GMER.
As a warning I've had ComboFix remove critical system files after running so I then had to fix the boot issues, however after that the machine ran clean.
Good luck.
one tip try running in "safe mode with network"
Hmm, a few red flags but little jumping out at me, you have two septate av suites running which can be a recipe for a mess
If it'll let you I'd hit it with Malwarebytes and maybe ComboFix to start and re-assess after that.
Absolutely this. The people on the malware removal forums will hate me for this, but post your ComboFix log when you're done.
Here's part of eMule that is running:
C:\Users\Public\AppData\eMuleMorphXT\conime.exe
I don't see anything else wrong. Ares and Shareaza aren't running.
C:\Users\Public\AppData\eMuleMorphXT\conime.exe
I don't see anything else wrong. Ares and Shareaza aren't running.
run this medicine http://www.surfright.nl/en/hitmanpro 
If it doesn't let you run it with the computer running just take the HDD out, plug it in to other computer and run it from there
If it doesn't let you run it with the computer running just take the HDD out, plug it in to other computer and run it from there
Jump to: