Hey,

I have got a Virus from somewhere and nothing will get rid of it... I formated my PC about 2 days ago now the same virus is back but i dont know whats causing it!

Can someone please help me!
This is what it does
http://img412.imageshack.us/img412/6793/showne2.jpg
But it opens loads all the time and crashed explorer!

I need help quick please
Danny

Update: it has now locked me from google, window mail... its slowly killing my PC :S

Moved by jesus (Forum Super Moderator) from Discuss Anything: Please post in the correct section next time.

Someone has controlled your PC using a program, never add someone you don't know, as they can find your IP address and do loads of stuff, also don't accept anything from random people.

No-one is remotely connecting... Its a Trojan but nothing will delete it :S

So the trojan wouldn't delete? What anti-virus you got?

Norton 360 and I have also tryed McAfee but nothing will delete it...

I would download avast anti-virus and see if that can delete it.

http://www.avast.com

Use AVG 8.0, decent I'm using it now.

Look, no wonder you havent been able to get rid of it, Nortan + McAfee are really ****.
The only reason they have a good reputation is because they sell it in shops, and put alot of advertising into it.

I recommend using AVG 8.0 or AVAST.

they both have a free version and are very professional.

I am currently running AVG 8.0 paid version + Avast

Your browsers been hijacked I suggest you don't use damn internet explorer, download firefox and use that instead, much safer.

It's not really possible for the trojan to stay on your PC when you reformat it unless it's sitting on the network or something. Disconnect your network cable from the PC (or turn the wireless off if you use wireless) and then reformat, as it recommends.

Viruses don't camp out in network cables.

I would download avast anti-virus and see if that can delete it.

http://www.avast.com

I use avast
its the best..... :)

Ima Gunna Actually Download That Thanks. :D

Look, no wonder you havent been able to get rid of it, Nortan + McAfee are really ****.
The only reason they have a good reputation is because they sell it in shops, and put alot of advertising into it.

I recommend using AVG 8.0 or AVAST.

they both have a free version and are very professional.

I am currently running AVG 8.0 paid version + Avast
I have the paid version of AVG 8.0 until 1st of December.

Features;
- Anti-virus
- Anti-Spyware
- E-mail Scanner
- Web Shield
- Resident Shield
- Anti-RootKit
- LinkScanner
- Update Manager
- License

Some features may not come with the free version.

Viruses don't camp out in network cables.

LOL that made me chuckle lmao


I use avast
its the best..... :)

This thread isn't about comparing what avs are the best.


I have the paid version of AVG 8.0 until 1st of December.

Features;
- Anti-virus
- Anti-Spyware
- E-mail Scanner
- Web Shield
- Resident Shield
- Anti-RootKit
- LinkScanner
- Update Manager
- License

Some features may not come with the free version.

Whats that got to do with helping him?

Whats that got to do with helping him?
Well its going to tell him what type of features AVG 8.0 has:rolleyes:

No... you were just saying that you have avg

tbh I think avg is crap anyway, people go on about it like its some god

It is like one, it controls the PC :P AVG isn't crap, plus I bet you don't have AVG 8.0 full version. What anti-virus do you have ;)

How much is this AVG paid version ?

And can you get it is a shop. Instad online.

Get NOD32, it's pretty pro @ internet security.

I dunnno Jay. check on their website.

I dunnno Jay. check on their website.

Guess that's AVG.com

Aha, doing it now thanks.

+rep cuz i'm feeling nice

If you reformat its gone. You must be doing something to get it back.

It is like one, it controls the PC :P AVG isn't crap, plus I bet you don't have AVG 8.0 full version. What anti-virus do you have ;)

I have kaspersky and tbh I think its much better than avg

http://www.spychecker.com/program/hijackthis.html

Run me a hijack log and upload it to rapidshare. Then PM it to me or post it.

Guess that's AVG.com

Aha, doing it now thanks.

+rep cuz i'm feeling nice

Thanks.


I have kaspersky and tbh I think its much better than avg
Have you tried AVG 8.0 yet?

I have a feeling this might be MediaTickets which I had. It randomly opens ads, and can be bundled with those stupid rogue antivirus/spyware programs.

Someone has controlled your PC using a program, never add someone you don't know, as they can find your IP address and do loads of stuff, also don't accept anything from random people.
You don't know what your talking about.

Run a anti virus scan.
http://housecall.trendmicro.com/

Then tell us which virus it is.

The virus is obv crypted onto your hard drive, therefore reformatting won't do anything becuase you can't fully remove everything from your hard drive.

a. You didn't format your HD fully
b. You need to reformat it a number of times to remove all of the DATA
C. You need a new hard drive

You don't know what your talking about.

Run a anti virus scan.
http://housecall.trendmicro.com/

Then tell us which virus it is.

The virus is obv crypted onto your hard drive, therefore reformatting won't do anything becuase you can't fully remove everything from your hard drive.

a. You didn't format your HD fully
b. You need to reformat it a number of times to remove all of the DATA
C. You need a new hard drive

Jesus calm down he isn't gonna need a new hard drive fgs so obviuosly you don't know what your talking about


http://www.ccleaner.com/
http://www.superantispyware.com/.

download both of them and use whatever virus scanner you want (I recommend kaspersky - if anyone quotes me and says anything about avg I will seriously hunt you down and stick your ******* computer mouse up your ****).. Make sure you have all the latest updates for everything, then run the cleaner in ccleaner. After you have done that scan with your av and then scan with the free version of superantispyware.

If you google the ip that keeps popping up you would see that its just some stupid malware.

Its probably just hidden in temp internet files or something (which is what ccleaner cleans)

btw that method has helped few people fix the problem

Jesus calm down he isn't gonna need a new hard drive fgs so obviuosly you don't know what your talking about


http://www.ccleaner.com/
http://www.superantispyware.com/.

download both of them and use whatever virus scanner you want (I recommend kaspersky - if anyone quotes me and says anything about avg I will seriously hunt you down and stick your ******* computer mouse up your ****).. Make sure you have all the latest updates for everything, then run the cleaner in ccleaner. After you have done that scan with your av and then scan with the free version of superantispyware.

If you google the ip that keeps popping up you would see that its just some stupid malware.

Its probably just hidden in temp internet files or something (which is what ccleaner cleans)

btw that method has helped few people fix the problem


That is helpful, except Ccleaner will not help - it's not likely it's hiding out in the temps.

What it looks like is the trojan is trying to direct you to a page to download more viruses (Yes, the plural is viruses not virii. That is incorrectly used by hackers etc and does not follow usual pattern in the english language)
yet the page is no longer available. So it would be a good idea to disconnect yourself from the internet and as said before, reformat your HD a few times and then get a decent anti virus e.g kaspersky or NOD32.

That is helpful, except Ccleaner will not help - it's not likely it's hiding out in the temps.

What it looks like is the trojan is trying to direct you to a page to download more viruses (Yes, the plural is viruses not virii. That is incorrectly used by hackers etc and does not follow usual pattern in the english language)
yet the page is no longer available. So it would be a good idea to disconnect yourself from the internet and as said before, reformat your HD a few times and then get a decent anti virus e.g kaspersky or NOD32.

internet explorer has been hijacked, nothing else is effected except internet explorer so that makes it pretty obvious. Theres a high possibility that it could be hiding in his temp folder, meaning that if it is and you think it isn't, what if it is and he avoids my way of getting rid of it?

Also (bold bit):

Sorry but this has to be said.. Nobody likes a smartass.. you think we care about how we spell it?

Its like saying to you hacking isn't called hacking, its called cracking.

internet explorer has been hijacked, nothing else is effected except internet explorer so that makes it pretty obvious. Theres a high possibility that it could be hiding in his temp folder, meaning that if it is and you think it isn't, what if it is and he avoids my way of getting rid of it?

Also (bold bit):

Sorry but this has to be said.. Nobody likes a smartass.. you think we care about how we spell it?

Its like saying to you hacking isn't called hacking, its called cracking.

Yeah, I know it's called cracking, but no one comments on that here, yet I have seen some one say I have viruses and then some one goes no you have a few virii in your system, and I was only adding that so I didn't get some smartass comment. And no, I wasn't being smartass because of the reasons of me having to add that little bold section. And I don't he should skip your way, but just because it is hijacking IE doesn't mean it IS in his temps. But I never said he shouldn't try it - just doubted the effectiveness though it was a very valid suggestion. :)

Norton, Mcaffe, Sophos, the lot are ABSOLUTE rubbish.

AVG or AVAST are the best, If you wish to buy one though... I reccomend AVG (Theres a free & paid version.)


http://free.grisoft.com/

Seeing as the thread starter hasn't replied then theres no point helping him..

Obviously not, he is probably hacked or cba now so this thread might aswell be locked.

Whilst re-formatting switch off your internet connection (Router, wired modem)

Once formatted, only use the internet to download AVG (reccomendation) once downloaded and installed, then install Zonealarm (FIREWALL)

http://free.grisoft.com/ and follow the nessacary links.. Then..
http://www.zonealarm.com/store/content/company/products/znalm/freeDownload.jsp

Lol who gave me -rep and told me to rot just for saying that the thread starter isn't even replying..

Whilst re-formatting switch off your internet connection (Router, wired modem)

Once formatted, only use the internet to download AVG (reccomendation) once downloaded and installed, then install Zonealarm (FIREWALL)

http://free.grisoft.com/ and follow the nessacary links.. Then..
http://www.zonealarm.com/store/content/company/products/znalm/freeDownload.jsp

Uhh what, turning off your modem whilst reformatting will do 0 (read: zero).

Whilst re-formatting switch off your internet connection (Router, wired modem)

Once formatted, only use the internet to download AVG (reccomendation) once downloaded and installed, then install Zonealarm (FIREWALL)

http://free.grisoft.com/ and follow the nessacary links.. Then..
http://www.zonealarm.com/store/content/company/products/znalm/freeDownload.jsp

Is That Carried On From The A Virus Hiding In A Network Cable? Lol

Could be a virus in the BIOS, yes, some stupid companies leave the BIOS unlocked.

Anyway,

If you can, format, with the network cable unplugged so you can't go on the internet unintentionally/accidentally and use another computer to download AVG Free and ZoneAlarm Firewall Free, copy them to your computer using a USB stick and install them, then plug your network cable back in.

It takes just a few seconds for a virus/spyware/malware to install once you open Internet Explorer, also download FireFox, www.getfirefox.com