Virus help me please

2009-09-14 07:46:51

#1

a_reborn_vetaran: Member; +8|6233|Belgium

Hi,

when I came back home, my antivir guard noticed me I had a Trojan.

Name: wpv651251409250.exe

I cant delete, move to quarantine... it.

what can I do about this?

thx

2009-09-14 08:00:49

#2

max: Vela Incident; +1,652|6827|NYC / Hamburg

tried safe mode?

_{once upon a midnight dreary, while i pron surfed, weak and weary, over many a strange and spurious site of ' hot xxx galore'. While i clicked my fav'rite bookmark, suddenly there came a warning, and my heart was filled with mourning, mourning for my dear amour, " 'Tis not possible!", i muttered, " give me back my free hardcore!"..... quoth the server, 404.}

2009-09-14 08:06:21

#3

a_reborn_vetaran: Member; +8|6233|Belgium

max wrote:
tried safe mode?

I'm in safe mode now, what do I do...

Last edited by a_reborn_vetaran (2009-09-14 08:08:23)

2009-09-14 08:06:50

#4

.Sup: be nice; +2,646|6713|The Twilight Zone

max wrote:
tried safe mode?

[16:58] .SúÞ² ﴾͡๏̯͡๏﴿: safe mode?

https://www.shrani.si/f/3H/7h/45GTw71U/untitled-1.png

2009-09-14 09:23:17

#5

Morpheus: This shit still going?; +508|6259|The Mitten

a_reborn_vetaran wrote:
max wrote:
tried safe mode?
I'm in safe mode now, what do I do...

try and run the program again.

EE (hats

2009-09-14 10:51:27

#6

Benzin: Member; +576|6259

Try using Malwarebytes' Anti-Malware. Very good program.

2009-09-14 11:00:58

#7

blademaster: I'm moving to Brazil; +2,075|6905

CapnNismo wrote:
Try using Malwarebytes' Anti-Malware. Very good program.

yeah I agree its free 2 or the trial one see if that takes care of it

2009-09-14 11:22:07

#8

Guardian_Ekim: I'm a god damn American Jedi; +51|6810|775

When all else fails, a clean re-install of the whole system isn't bad now and then...

2009-09-14 11:57:28

#9

Monkey Spanker: Show it to the nice monkey.; +284|6512|England

www.bleepingcomputer.com join forum & use the search button. really friendly guys over there, if they can help the will.

Quote of the year so far "Fifa 11 on the other hand... shiny things for mongos "-mtb0minime

https://bf3s.com/sigs/f30415b2d1cff840176cce816dc76d89a7929bb0.png

2009-09-14 12:09:23

#10

Benzin: Member; +576|6259

smuder201 wrote:
www.bleepingcomputer.com join forum & use the search button. really friendly guys over there, if they can help the will.

I prefer the MalwareBytes forum. The guys at BleepingComputer TAKE FOREVER to respond to a help thread when you need one of the qualified assistants. MB is actually fast.

Again, run MBAM and see what that does. Run it once in full scan mode, remove whatever it finds and then run quick scan after the reboot. Compare the logs.

2009-09-14 20:35:31

#11

FEOS: Bellicose Yankee Air Pirate; +1,182|6671|'Murka

So I can't get to Safe Mode on the laptop I have that is infected with a couple of different ones (search engine redirect and remnants of Windows Police Pro/Antivirus 2009...gotta love the wife). Any workarounds to get into safe mode?

Tried multiple removal tools, manual removal...still there.

“Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid.”
― Albert Einstein
Doing the popular thing is not always right. Doing the right thing is not always popular

2009-09-14 20:38:59

#12

AussieReaper: ( ͡° ͜ʖ ͡°); +5,761|6413|what

Which browser redirects you?

I'd suggest you put firefox or a different browser onto disc and install it, hopefully it won't redirect you on that browser also.

Update your antivirus stuff from there and scan again.

2009-09-14 20:46:42

#13

FEOS: Bellicose Yankee Air Pirate; +1,182|6671|'Murka

AussieReaper wrote:
Which browser redirects you?

I'd suggest you put firefox or a different browser onto disc and install it, hopefully it won't redirect you on that browser also.

Update your antivirus stuff from there and scan again.

Either one (firefox and IE).

I've done that. I've installed new antivirus/spyware removers. The problem is that something is loading into memory that shuts down the scanners and changes the .exe to read-only. Totally unusable after that, as I suddenly don't have permission to change the attributes, even with administrator privileges.

“Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid.”
― Albert Einstein
Doing the popular thing is not always right. Doing the right thing is not always popular

2009-09-14 21:25:51

#14

Morpheus: This shit still going?; +508|6259|The Mitten

FEOS wrote:
So I can't get to Safe Mode on the laptop I have that is infected with a couple of different ones (search engine redirect and remnants of Windows Police Pro/Antivirus 2009...gotta love the wife). Any workarounds to get into safe mode?

Tried multiple removal tools, manual removal...still there.

...Why can't you get into safe mode?

EE (hats

2009-09-15 00:13:33

#15

Benzin: Member; +576|6259

You can't get into Safe Mode but you can get into normal Windows? How does that work?

2009-09-15 03:58:28

#16

FEOS: Bellicose Yankee Air Pirate; +1,182|6671|'Murka

CapnNismo wrote:
You can't get into Safe Mode but you can get into normal Windows? How does that work?

It bluescreens and reboots when I try to go into safe mode, but starts regular Windows normally

“Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid.”
― Albert Einstein
Doing the popular thing is not always right. Doing the right thing is not always popular

2009-09-15 04:00:10

#17

.Sup: be nice; +2,646|6713|The Twilight Zone

FEOS wrote:
CapnNismo wrote:
You can't get into Safe Mode but you can get into normal Windows? How does that work?
It bluescreens and reboots when I try to go into safe mode, but starts regular Windows normally

Drivers are the issue here I believe. Either corrupted or not the correct ones for your hardware

2009-09-15 06:07:50

#18

Benzin: Member; +576|6259

What you need to do is download and install Malwarebytes' Anti-Malware. Try that and see if that solves your virus issues, FEOS.

2009-09-15 17:29:39

#19

FEOS: Bellicose Yankee Air Pirate; +1,182|6671|'Murka

CapnNismo wrote:
What you need to do is download and install Malwarebytes' Anti-Malware. Try that and see if that solves your virus issues, FEOS.

As I said before, I've done that. I already had MAM on my laptop. Virus disables the executable, even when you re-install.

I'll try updating the drivers to see if that fixes my safe mode problem, but I'm skeptical. I don't have any driver problems otherwise (ie, in normal mode).

“Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid.”
― Albert Einstein
Doing the popular thing is not always right. Doing the right thing is not always popular

2009-09-15 22:30:53

#20

Morpheus: This shit still going?; +508|6259|The Mitten

FEOS wrote:
CapnNismo wrote:
What you need to do is download and install Malwarebytes' Anti-Malware. Try that and see if that solves your virus issues, FEOS.
As I said before, I've done that. I already had MAM on my laptop. Virus disables the executable, even when you re-install.

I'll try updating the drivers to see if that fixes my safe mode problem, but I'm skeptical. I don't have any driver problems otherwise (ie, in normal mode).

erm.
doesn't safe mode not use the normal drivers? Hence, running solely on windows defaults? Hence, your install is fucked up?
maybe a repair install, then safemode?

EE (hats

2009-09-15 23:28:34

#21

Benzin: Member; +576|6259

FEOS wrote:
CapnNismo wrote:
What you need to do is download and install Malwarebytes' Anti-Malware. Try that and see if that solves your virus issues, FEOS.
As I said before, I've done that. I already had MAM on my laptop. Virus disables the executable, even when you re-install.

I'll try updating the drivers to see if that fixes my safe mode problem, but I'm skeptical. I don't have any driver problems otherwise (ie, in normal mode).

Rename the EXE to winlogon.exe, iexplorer.exe; anything like might be on the virus's whitelist. Do that and report back.

2009-09-28 04:01:14

#22

FEOS: Bellicose Yankee Air Pirate; +1,182|6671|'Murka

CapnNismo wrote:
FEOS wrote:
CapnNismo wrote:
What you need to do is download and install Malwarebytes' Anti-Malware. Try that and see if that solves your virus issues, FEOS.
As I said before, I've done that. I already had MAM on my laptop. Virus disables the executable, even when you re-install.

I'll try updating the drivers to see if that fixes my safe mode problem, but I'm skeptical. I don't have any driver problems otherwise (ie, in normal mode).
Rename the EXE to winlogon.exe, iexplorer.exe; anything like might be on the virus's whitelist. Do that and report back.

I will try this...hadn't even thought of it, tbh.

Sorry I've been out for a bit. Kid was in the hospital, so neither the laptop nor bf2s were being attended to for the past week.

“Everybody is a genius. But if you judge a fish by its ability to climb a tree, it will live its whole life believing that it is stupid.”
― Albert Einstein
Doing the popular thing is not always right. Doing the right thing is not always popular

2009-09-28 06:27:03

#23

Dilbert_X: The X stands for; +1,815|6366|eXtreme to the maX

Sorry to hear that.

My PC had something similar, all anti-virus killed, anti-virus software wouldn't deal with it in safe mode (which did work OK).
Pretty sure it was conficker but the specific tools didn't find it either (tried them all).

My solution was to back up as much data as possible, put in a new hard drive and start again.
Hard drives are cheap and at least you're clean to start with, if theres some odd piece of data you might be able to pull it off later - or when the anti-virus stuff has caught up.

Or if you're brave you can plug it in again as a second drive right away and try sweeping it.

Last edited by Dilbert_X (2009-09-28 06:42:49)

Fuck Israel

2009-09-28 06:45:17

#24

Benzin: Member; +576|6259

FEOS wrote:
I will try this...hadn't even thought of it, tbh.

Sorry I've been out for a bit. Kid was in the hospital, so neither the laptop nor bf2s were being attended to for the past week.

Give it a shot and let us know.

2009-09-28 17:12:43

#25

Dilbert_X: The X stands for; +1,815|6366|eXtreme to the maX

You just have to delete the partition, make a new one, and format it. Boom. Virus is dead. No need to spend money on something that you don't need.

If the PC won't let you do it its pretty hard to do, plus obviously you lose your data for certain.
New HDs cost next to nothing, and they're usually bigger/faster/cheaper so don't see the problem TBH.

Fuck Israel

BF2S Forums Virus help me please

max wrote:

max wrote:

a_reborn_vetaran wrote:

max wrote:

CapnNismo wrote:

smuder201 wrote:

AussieReaper wrote:

FEOS wrote:

CapnNismo wrote:

FEOS wrote:

CapnNismo wrote:

CapnNismo wrote:

FEOS wrote:

CapnNismo wrote:

FEOS wrote:

CapnNismo wrote:

CapnNismo wrote:

FEOS wrote:

CapnNismo wrote:

FEOS wrote:

Board footer