Author |
Topic: DAMN IT!!!!! (not CH) (Read 2630 times) |
|
Redd
CH.com Alumnus
New Board Hall of Famer
Gender: 
Posts: 6661
|
 |
DAMN IT!!!!! (not CH)
« on: Dec 26th, 2005, 11:43pm » |
 Quote  Modify
|
I have a virus/(something) that has rendered both my DSL ISP anti-virus and my secondary anti-virus dead in the water. I've found only one online scan system that this bastage has yet to prevent downloading but it will detect only and not clean. My desktop will go haywire with everything bouncing around and my mouse will jump all over etc. Help? I've run the sober cleaner in safe mode and 3 times it came up clean, but I'm convinced I have something here. Please help....desperate here.
|
|
 IP Logged |
I saw an act of faith today. A man was on his knees, not in a pew in a Church, but in a garden planting seeds. ~~Unknown
|
|
|
Cerberus
New Board Hall of Famer
Whomever said that two heads are better than one?
Gender: 
Posts: 2117
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #1 on: Dec 26th, 2005, 11:55pm » |
Quote Modify
|
hrmmm.... could be a multitude of tings... I find myself at a loss as to even where to begin.
Software I've found usefull: Including but not limited to,
Avast Anti-virus (Thanks Svenn) 
Ad Aware SE Pro
Spybot search and destroy
Beyond that...I got windows firewall and the firmware firewall for the router... have experienced fewer problems with those than I EVER did with Norton and/or Zonealarm (Avast doesn't play nice with zonealarm or vice-versa?) Norton blows balls...ifn ya get this figgrd out make the switch.
'Bus
Modified to add: Oh yeah, Netscape is waaaay better thatn IE 
|
| « Last Edit: Dec 26th, 2005, 11:56pm by Cerberus » |
IP Logged |
I would rather face the end with terror than terror without end. - (Deitrich Sawatsky 194?)
|
|
|
Redd
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 6661
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #2 on: Dec 26th, 2005, 11:59pm » |
Quote Modify
|
Spy Bot and Ad Aware are dead as well...refuses to update and refuses to load and run. Whatever this bastage is, it's killing all my tools. Only thing that is still running but detects nothing is Corp edition of Pest patrol.
edit to add...
Total number of scanned files: 110482
Number of viruses found: 9
Number of infected objects: 77
Number of suspicious objects: 2
Duration of the scan process: 8231 sec
|
| « Last Edit: Dec 27th, 2005, 12:01am by Redd » |
IP Logged |
I saw an act of faith today. A man was on his knees, not in a pew in a Church, but in a garden planting seeds. ~~Unknown
|
|
|
chewy
Guest
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #3 on: Dec 27th, 2005, 12:14am » |
Quote Modify
 Remove
|
Try Yahoo anti spy.
|
|
IP Logged |
|
|
|
burnt-toast
New Board Hall of Famer
Gender:
Posts: 1686
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #4 on: Dec 27th, 2005, 7:53am » |
Quote Modify
|
A name of the virus(s) would be helpful - do you have anything that lists them? Is your virus scan software kept up to date, this is important if these are new or mutated virus'.
It appears that at least one is allowing remote access and control of your system. Try disabling your DSL/network connection - pull the cable from the DSL modem if you have to and run your virus scanning tools offline. This may help.
I don't believe Spybot/AdAware are going to be very helpful. You may try running a virus scan/clean via the CD if you continue to have your installed virus software blocked.
If you can recover - look into a hardware firewall to compliment any software firewall that you are running, keep your virus scan software updated and be extremely cautious with downloads and E-mail. But you have more pressing matters to address.
Tom
|
|
IP Logged |
Would the owner of the propane torch, egg beater, pipe expander and vise grips please claim these items. They're lodged in my head and I need the space.
|
|
|
Azrael
New Board Hall of Famer
Sometimes... Being good just ain't worth it.
   
Gender:
Posts: 1786
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #5 on: Dec 27th, 2005, 9:13am » |
Quote Modify
|
Slash and burn... Format and reinstall... Ya should be more careful about the porn stuff you download. 
PFDAN..................................... Drk^Angel
|
|
IP Logged |
"Hello police? I would like to report a robbery. Someone stole all my beer while I was drunk."
|
|
|
Lobster
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 2016
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #6 on: Dec 27th, 2005, 9:18am » |
Quote Modify
|
Post a screen shot of your process list in here.
Somewhere recently I told someone of a utility they could download to get a cutable/pasteable task list.. www.iarsn.com... download TASKINFO.
/OH NOES!!11! THE HAXXORS STOLED MY MEGAHURTZ!!
|
|
IP Logged |
Rock beats Scissors.
|
|
|
maffumatt
Guest
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #7 on: Dec 27th, 2005, 3:04pm » |
Quote Modify
Remove
|
get the zonealarm firewall, its free and is about the best there is. Also go to shields up at http://www.grc.com/x/ne.dll?rh1dkyd2 and let them scan your ports. You will be surprised as to what the results will be. Wont help you now but may stop furthere intrusions. I use the avast antivirus, it works very well. Windows firewall sucks, the zonealarm one is great, it tells you of every attempt to enter any port, tells who is doing it and what their computers address is. Follow the advice on shields up, stealth all your ports. My 2 cents
|
| « Last Edit: Dec 27th, 2005, 3:36pm by Mattchew » |
IP Logged |
|
|
|
Opus
New Board Hall of Famer
(Insert witty comment here)
 
Gender:
Posts: 2509
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #8 on: Dec 27th, 2005, 5:09pm » |
Quote Modify
|
You can try STINGER It is made for those nastys that disable your scanners.
The real cure is in my sig.
Opus/Paul 
|
|
IP Logged |
Zed-Zed-nine plural-Zed alpha,
There is no place like home.
|
|
|
Ueli
Guest
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #9 on: Dec 27th, 2005, 5:36pm » |
Quote Modify
Remove
|
I agree with maffumatt, ZoneAlarm is a great firewall. Mine has blocked 133222 access attempts since April, that's about 555 per day. One great feature is a CRC check before a program is allowed access to the net, no chance for the Greeks to infect programs. (It was the Greeks that did the dirty trick with the wooden horse, not the Trojans ;)
I use AntiVir (free from http://www.hbedv.com/en/ as virus scanner. It includes a guard for incoming traffic. They are faster with updating for new threats than McAffe or Norton!
I never had any active malware on my system.
Ueli
|
|
IP Logged |
|
|
|
Redd
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 6661
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #10 on: Dec 27th, 2005, 7:29pm » |
Quote Modify
|
on Dec 27th, 2005, 9:18am, Rock_Lobster wrote:Post a screen shot of your process list in here.
Somewhere recently I told someone of a utility they could download to get a cutable/pasteable task list.. www.iarsn.com... download TASKINFO.
/OH NOES!!11! THE HAXXORS STOLED MY MEGAHURTZ!! |
|
I can't seem to get a screen shot of my task manager.
|
|
IP Logged |
I saw an act of faith today. A man was on his knees, not in a pew in a Church, but in a garden planting seeds. ~~Unknown
|
|
|
Redd
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 6661
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #11 on: Dec 27th, 2005, 7:34pm » |
Quote Modify
|
Quote:
That was my secondaryanti-virus in addition to the anti virus I get along with my yahoo dsl service. Neither one was working.
Stil having alot of problems, downloaded and ran the avast and there was something in windows I had no other option but to delete, and then there was folder,
c:\hiberfil.sys access denyed error 0xc0000022
Whatever the hell that is. I'm about to scream and I came down with the flu today too. I'm just NOT in the mood for this SHITE today!!!!1
|
|
IP Logged |
I saw an act of faith today. A man was on his knees, not in a pew in a Church, but in a garden planting seeds. ~~Unknown
|
|
|
cootie
New Board Hall of Famer
sumday I'm gonna be sumbody........ ..
Gender:
Posts: 8406
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #12 on: Dec 27th, 2005, 7:51pm » |
Quote Modify
|
Did you get a flu shot.....am jus curious if so cuz last time I got one I got MAJOR SICK and got it around new years eve....had a big party I had planned I had to go to also and back had flared up MAJOR.....flu shot didn't cover the rite strains that year. I had one this year and do NOT want to get it......hopein it was a good shot this time. Anyhow.....I had a bug in my old computer years ago that made stuff go NUTS like you explained but it only did it a day then POOF it was gone. I read there are sum designed "jus" to do that and only last a day or so many hours but whenever ya got it it was programmed to attack a certain day at a certain time. Hope ya get it figured out cuz there is nothin more frustrateing then a wacked out computer !! There too big to throw out a window or kick Pam
|
|
IP Logged |
Cause and Effect......"Cause is the effect concealed, Effect is the cause revealed"
|
|
|
Opus
New Board Hall of Famer
(Insert witty comment here)
Gender:
Posts: 2509
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #13 on: Dec 27th, 2005, 9:35pm » |
Quote Modify
|
on Dec 27th, 2005, 7:34pm, Redd715 wrote:
c:\hiberfil.sys access denyed error 0xc0000022
|
|
Google is your friend
Did you try Stinger?
Opus/Paul
|
|
IP Logged |
Zed-Zed-nine plural-Zed alpha,
There is no place like home.
|
|
|
BobG
New Board Hall of Famer
Gender:
Posts: 5747
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #14 on: Dec 27th, 2005, 9:50pm » |
Quote Modify
|
There are only 2 types of computers:
1. Those that have died .
2. Those that are going to die.
There are 2 rules about putting important and un-important stuff into a computer:
1. Important stuff, don't do it. You WILL loose it.
2. Un-important stuff. See rule 1.
If your computer screws up for any reason, kiss it goodbye, toss it over the fence and go buy a new one.
At least that's what I do. 
|
|
IP Logged |
Stay stressed. Never relax. Never sleep. Ever.
|
|
|
Linda_Howell
CH.com Alumnus
New Board Hall of Famer
Hearing is one thing. Listening is another.
Gender:
Posts: 6721
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #15 on: Dec 27th, 2005, 10:02pm » |
Quote Modify
|
The voice of Vegas has spoken. Computers were invented in Las Vegas so therefore believe what Bob has said.
Linda
|
|
IP Logged |
Kindness, is gladdening the hearts of those who are traveling the dark journey with us.
|
|
|
BobG
New Board Hall of Famer
Gender:
Posts: 5747
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #16 on: Dec 27th, 2005, 10:44pm » |
Quote Modify
|
LMAO 
|
|
IP Logged |
Stay stressed. Never relax. Never sleep. Ever.
|
|
|
Opus
New Board Hall of Famer
(Insert witty comment here)
Gender:
Posts: 2509
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #17 on: Dec 27th, 2005, 10:59pm » |
Quote Modify
|
on Dec 27th, 2005, 9:50pm, BobG wrote:
If your computer screws up for any reason, kiss it goodbye, toss it over the fence and go buy a new one.
At least that's what I do.
|
|
Don't toss it, send it to me, I will pay the shipping. That is unless it is a dell.
Opus/Paul
|
|
IP Logged |
Zed-Zed-nine plural-Zed alpha,
There is no place like home.
|
|
|
Lobster
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 2016
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #18 on: Dec 27th, 2005, 11:56pm » |
Quote Modify
|
on Dec 27th, 2005, 9:50pm, BobG wrote:If your computer screws up for any reason, kiss it goodbye, toss it over the fence and go buy a new one.
At least that's what I do.
|
|
Crom laughs at your nonexistant geek skills.
|
|
IP Logged |
Rock beats Scissors.
|
|
|
BobG
New Board Hall of Famer
Gender:
Posts: 5747
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #19 on: Dec 28th, 2005, 12:01am » |
Quote Modify
|
Crom has nonexistent hygiene skills.
|
|
IP Logged |
Stay stressed. Never relax. Never sleep. Ever.
|
|
|
Lobster
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 2016
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #20 on: Dec 28th, 2005, 12:03am » |
Quote Modify
|
on Dec 27th, 2005, 7:29pm, Redd715 wrote:
I can't seem to get a screen shot of my task manager.
|
|
You ignored the 'taskinfo' download.
Here is another download for you to ignore...
http://www.download.com/3001-8022_4-10379544.html
Download that, execute, then select 'do a system scan and save a log file'.
When the text box pops up cut & paste it here.
|
|
IP Logged |
Rock beats Scissors.
|
|
|
Carl_D
Guest
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #21 on: Dec 28th, 2005, 1:03am » |
Quote Modify
Remove
|
Redd, did you try running your anti-virus in safe mode?
Soem viruses will be running in normal mode and disable certain programs, but if it is in safe mode, those viruses 9 times out of 10 will also be disabled and elminated.
Also, you may have to write down each filename that is infected and go into your computer manually and remove the files yourself. I had a virus that would not delete using the anti-virus, so put the puter in safe mode, found the file and deleted it. It's worth a try if you haven't already. If all else fails, reformat and start clean.
Peace,
Carl
|
|
IP Logged |
|
|
|
catlind
CH.com Alumnus
New Board Hall of Famer
Taz taught me the cluster dance
Gender:
Posts: 3433
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #22 on: Dec 28th, 2005, 9:22pm » |
Quote Modify
|
Try getting HijackThis and running it in safe mode. If you don't know much about CLSID's and resident programs, you can look up the hijackthis log codes by typing them into google.
I've used it for numerous computers that have a 'ghost' virus that can't be found and been able to recover without having to format.
Cat
|
|
IP Logged |
A true friend is someone who reaches for your hand and touches your heart
If yer gonna be stupid, ya gotta be tough
|
|
|
Lobster
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 2016
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #23 on: Dec 29th, 2005, 12:02am » |
Quote Modify
|
on Dec 28th, 2005, 9:22pm, catlind wrote:| Try getting HijackThis... |
|
Exactly... that is what my link is to.
|
|
IP Logged |
Rock beats Scissors.
|
|
|
Redd
CH.com Alumnus
New Board Hall of Famer
Gender:
Posts: 6661
|
|
Re: DAMN IT!!!!! (not CH)
« Reply #24 on: Dec 29th, 2005, 12:22am » |
Quote Modify
|
Logfile of HijackThis v1.99.1
Scan saved at 11:19:38 PM, on 12/28/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Yahoo!\Antivirus\ISafe.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Logitech\ImageStudio\LogiTray.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\PROGRA~1\PESTPA~1\PPControl.exe
C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
C:\Program Files\Yahoo!\browser\ybrwicon.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
C:\PROGRA~1\YAHOO!\YOP\yop.exe
C:\Program Files\Logitech\ImageStudio\LowLight.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\PROGRA~1\YAHOO!\browser\ycommon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\YAHOO!\MESSEN~1\YPAGER.EXE
C:\DOCUME~1\HPAUTH~1\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe
|
|
IP Logged |
I saw an act of faith today. A man was on his knees, not in a pew in a Church, but in a garden planting seeds. ~~Unknown
|
|
|
|
|
|
Home
Help
Search
Members
Member Map
Login
Register
Reply
Notify of replies
Send Topic
Print
test rss