I think my computer is infected

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
I think my computer is infected with malware. For the last week, when I
reboot, and try to connect to the net the windows firewall is off them
starts after a few seconds. I'm not able to open the Windows security center
until my computer has connect to the net. I have run "Hijack this" where can
I post the report?

Thanks for your help.
Russ



Re: I think my computer is infected

I've also tried to use Windows Sytem restore, but every restore point I try
won't work.

Quoted text here. Click to load it



Re: I think my computer is infected

On Wed, 28 Jan 2009 08:32:27 -0500, Russell, in
came up with this jewel:

Quoted text here. Click to load it
Read this Tutorial *before* first use;
(http://www.bleepingcomputer.com/forums/index.php?showtutorial=42 )
Once done > run HijackThis > save a scan log and post it to /any/ of the
following (expert) forums for analysis.
*Note, //registration// *is* required prior to posting a log.
- Not listed in any particular order -

(http://aumha.net/viewforum.php?f=30 )
(http://forums.spywareinfo.com/index.php?&showforum=18 )
(http://www.spywarewarrior.com/viewforum.php?f=5 )
(http://www.bleepingcomputer.com/forums/forum22.html )
(http://www.dslreports.com/forum/cleanup )
(http://forum.malwareremoval.com/viewforum.php?f=11 )
(http://www.cybertechhelp.com/forums/forumdisplay.php?f=25 )
(http://www.atribune.org/forums/index.php?showforum=9 )
(http://www.geekstogo.com/forum/Malware_Removal_HiJackThis_Logs_Go_Here-f37.html )
(http://forums.spywareinfo.com/index.php?showforum=18 )
(http://www.techmonkeys.co.uk/forums/viewforum.php?f=8 )
(http://forum.networktechs.com/forumdisplay.php?f=130 )
(http://forums.maddoktor2.com/index.php?showforum=17 )
(http://forums.spywaretimes.com/index.php?showforum=2 )
(http://www.bluetack.co.uk/forums/index.php?showforum=172 )
(http://forums.techguy.org/f54-s.html )
(http://forums.tomcoyote.org/index.php?showforum=27 )
(http://forums.subratam.org/index.php?showforum=7 )
(http://www.5starsupport.com/ipboard/index.php?showforum=18 )
(http://www.malwarebytes.org/forums/index.php?showforum=7 )
(http://www.wilderssecurity.com/forumdisplay.php?f=26 )
(http://makephpbb.com/phpbb/viewforum.php?f=2 )
(http://forums.techguy.org/54-security /)
(http://forums.security-central.us/forumdisplay.php?f=13 )
(http://castlecops.com/forum67.html )
(http://gladiator-antivirus.com/forum/index.php?showforum=170 )
(http://www.lavasoftsupport.com/index.php?showforum=36 )
(http://forum.piriform.com/index.php?showforum=12 )

Post back the URL where you posted your log, *not* the entire log!
--
Virus Removal http://max.shplink.com/removal.html
Keep Clean http://max.shplink.com/keepingclean.html
Change nomail.afraid.org to gmail.com to reply by email.
nomail.afraid.org is specifically setup for use in USENET

Re: I think my computer is infected

The Real Truth MVP wrote:

Quoted text here. Click to load it

..a VB script you stole from Andrew Aronoff, changed the name from
'silentrunners.vbs', and edited out his name and copyright information.
The real script is available at Andrew's web site:
http://silentrunners.org /

--
   -bts
   -Friends don't let friends drive Windows

Re: I think my computer is infected

On Wed, 28 Jan 2009 08:18:05 -0500, Russell, in
came up with this jewel:

Quoted text here. Click to load it

***************begin canned response*******************

What I use to clean and maintain Windows -

Windows Update (free)
http://www.update.microsoft.com/windowsupdate/v6/default.aspx?ln=en-us

Secunia Online Software Inspector (free)
http://secunia.com/vulnerability_scanning/online /

AntiVir (free version)
http://www.free-av.com /

Windows Defender (free)
http://www.microsoft.com/windows/products/winfamily/defender/default.mspx
for w2k users, see instructions here:
http://www.compatdb.org/support/topics/175747_windows_defender_windows_2000.html

SUPERAntiSpyware (free version)
http://www.superantispyware.com/download.html
If you can t download def. files you can get them here:
http://www.superantispyware.com/definitions.html

Malwarebytes' Anti-Malware (free version)
http://www.malwarebytes.org/index.php
If you can t download def. files, you can get them here:
http://www.malwarebytes.org/mbam.php

Spyware Terminator (free)
http://www.spywareterminator.com

SpywareBlaster (free)
http://www.javacoolsoftware.com/spywareblaster.html

Windows Firewall (free)- w2k users can get sygate (old free version)
http://www.oldversion.com/program.php?n=sygate

Firefox with AdBlock/NoScript/WOT installed (free), set to ┤defaultí
browser
http://en-us.www.mozilla.com/en-US/firefox /

AdBlock  https://addons.mozilla.org/en-US/firefox/addon/1865

NoScript https://addons.mozilla.org/en-US/firefox/addon/722

WOT      https://addons.mozilla.org/en-US/firefox/search?q=WOT&cat=all

MVPS Hosts file (free)
http://www.mvps.org/winhelp2002/hosts.htm

Thunderbird for e-mail (free), set to ┤defaultí e-mail
http://www.mozilla.com/en-US/thunderbird /

Turn off un-needed Windows Services
http://www.jasonn.com/turning_off_unnecessary_services_on_windows_xp

Update Java (free), delete old versions before updating
http://www.java.com/en/download/index.jsp

Buy a router w/built-in firewall (under $50)

More things to help keep your system lean and mean

Decrapify your PC (free)
http://pcdecrapifier.com/download

Remove Adobe Acrobat Reader and use Foxit Reader (free)
http://www.foxitsoftware.com/downloads /

CrapCleaner (free)
http://www.ccleaner.com /

JKDefrag (free)
http://www.kessels.com/Jkdefrag /

***************end canned response********************
--
Virus Removal http://max.shplink.com/removal.html
Keep Clean http://max.shplink.com/keepingclean.html
Change nomail.afraid.org to gmail.com to reply by email.
nomail.afraid.org is specifically setup for use in USENET

Re: I think my computer is infected

On 01/28/2009 06:59 AM, Max Wachtel sent:

Snip, snip...

Hello Max:  I've sent you a note to your personal email account...

Pete
--
1PW  @?6A62?FEH9:DE=6o2@=]4@> [r4o7t]

Re: I think my computer is infected

On Wed, 28 Jan 2009 09:26:35 -0800, 1PW, in
with this jewel:

Quoted text here. Click to load it

got it
--
Virus Removal http://max.shplink.com/removal.html
Keep Clean http://max.shplink.com/keepingclean.html
Change nomail.afraid.org to gmail.com to reply by email.
nomail.afraid.org is specifically setup for use in USENET

Site Timeline