|
Posted by =?Utf-8?B?RW1pbHk=?= on October 11, 2006, 2:09 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi,
It sounds like the symptoms of Alcan/Alcra or P2PNetwork worm.
The bad entries should show up in the hijackthis log.
Post a hijackthis log for us to look at and we can then suggest the tool to
fix it.
Please download HijackThis 1.99.1
http://www.cyberanswers.org/forum/uploads/HijackThis1991.exe
Open Hijackthis, click "Do a system scan and save a logfile" don't fix
anything yet. Just post or upload the entire logfile.
"TomC" wrote:
> Joec148 wrote:
> > I am not going to give you a lecture, but try to help. If you can on boot up
> > tap the F8 key and load safe mode with networksupport. go to trendmicro.com
> > and run housecall. Housecall is an on line scanner that will remove or at
> > least deactivate the virus. if the virus will not let you run it and you
> > know the name look up how to manual remove the virus on the same site. every
> > virus can be deactivated if you know what to edit in the registry.
> >> I downloaded the free version of avg awhile ago and am looking to upgrade
> >> but
> >> i have a problem, while i was at work my son deleted avg completely and
> >> uninstalled it as well so he could download something on limewire.
> >> Whatever
> >> he downloaded had a virus in it and now i cant ctrl+alt+del and pull up my
> >> task manager (i use xp home w/ service pack 2) if i right click on the
> >> taskbar abd select taskmanager it never comes up, if i search for it it
> >> does
> >> not appear. if i go to grisoft.com , it pulls up the ie window for about 2
> >> seconds and closes itself. limewire also automatically restarted every
> >> single
> >> time i closed it so i have deleted it. i tried to go onto a virus forum
> >> from
> >> my computer and i have found that not only does grisoft get auto-closed
> >> but
> >> all virus support sites as well. I even went to a site that sells pepper
> >> spray and security supplies and the same results, but yahoo and myspace
> >> and
> >> the like work. I had my friend do a file transfer from her computer to
> >> mine
> >> on yahoo im for the installation program for avg and i can not open that
> >> either. also i am getting random popups in a forgien language. When i open
> >> "my computer" there are 2 html applications i do not recognize one called
> >> "estigma" and another called "onoes" (i think that is how the second one
> >> is
> >> spelled) i tried to format my hard drive but when i open cmd it says the
> >> following "c:\WINDOWS\system32\cmd.exe" (title bar) "Another program is
> >> currently using this file." (message field) even immediately after
> >> restarting
> >> my computer i ge this error message. I have tried to do a system restore
> >> and
> >> it says failed everytime i have tried. And now my firefox is not working
> >> like
> >> the task manager Please tell me my brand new (barely out of warranty)
> >> computer is not doomed.
> >>
> >
> I think you will find that the trojan removed AVG
> & it has control of the hosts file which prevents
> you from going to any anti-virus site. You must
> consider that you must have multiple infections,
> in either case formatting the hard drive & a clean
> install is the best solution.
> Set the bios... to boot from CD. Place your OS
> disk in the CD & go!
> Make sure the data you save is not carrying any
> infected files.
> Next time, if you must use a free AV, try AntiVir
> http://www.free-av.com/
>
> Cheers Tom
>
> --
> * Thankfully this message was not scanned by AVG
> Free *
>
| 
XML site map