get_nick

So surfing the web for some myspace comments, our laptop was infected with a nasty worm/virus/whatever. It's called "Antivirus xp 2008". It keeps wanting us to pay for some shit software. It has changed the wallpaper of the computer and is just being fucking stupid. I tried to delete the file, but it was locked for "read only". Finally got it deleted, but i'm still having problems and the wallpaper is fucked.

I can't figure out how to post a screen print, but i'll try to attach.

Tried doing a system restore but there aren't any restore points other than today. Is there a free software I can download to clean it up? I found the location of the file, it's in "C:\Program Files\rhc5vej0e775\rhc5vej0e775.exe "







AAARRRGGGHHH!!!!!!!

Attached Thumbnails

 

__________________
I changed the page layout. let me know what you think. I need feedback.
www.obamacies.com

TurboMirage

reinstall.......

__________________
Home of the RPW built 2000 Lancer CC Coupe.

See what is done to the little Evo5.

"If you don't like what I've done with my car, I will gladly refund all the money you put into it."

Luis998

First off, glad to see that you're back, Nick.

Second, try Google'ing Trojan remover or free Trojan remover. If I had access to my laptop, which I won't until God knows when, I could find out the name of the program that has been very successful at removing viruses for free. The trojan remover that I am talking about I believe comes from AOL. That is where I learned about it years ago.

Ugh! I need access to a computer other than my work computer in order to be able to figure things out. Let me see what I can find out for you. In the meantime, try looking that up and see what comes up. I would look it up for you now, but my time is limited. PM me with anymore questions and I will try to solve it for you. Sonofa...I miss my damn laptop.

__________________
Max? There is no max. Max just means you gave up.
This is my thread: http://hondaswap.com/engine-building...g-wind-110848/

http://hondaswap.com/members-lounge/...thread-278554/

whiterabbit06

I just got that thing too it pissed me off and I finally just ended up reinstalling windows. I tried to delete it from the command prompt booting into dos and safe mode and it wouldn't go away. I would suggest if you have a cd burner back up all of your stuff and reinstalling windows. I write programs and have a very extensive knowledge of computer software/hardware and I couldn't get rid of it.

__________________
90 Civic Hatch <= Sold
99 VW GTI <= BIG F'IN POS <= Finally got it fixed, it's running good now
07 Jeep Compass

If you ever find anything I write usefull please leave rep.

Rebuilding a Transmission
http://www.the-whiterabbit.com

get_nick

fuck
thank you sir



upate: I tried to remove the wallpaper. I noted that things were out of place. I couldn't change the wallpaper or the screen saver. See attached.

I went into to the program files and removed some of the bad files individually then i was able to uninstall the whole program. i downloaded a trojan check and it found a few things. see attached. bastards put in a code to hide a lot of shit.

Attached Thumbnails

 

__________________
I changed the page layout. let me know what you think. I need feedback.
www.obamacies.com

GSRCRXsi

yea youre pretty much fucked. reinstall windows

__________________
91 CRX si
95 Integra LS
I DO NOT answer tech questions via PM. Use the forums!!!

sufikation

i use the free downloads from download.com called ad-aware and avg free 8.0, the keep me safe 99% of the time and have np getting to, and removing whatever crap i pick up. good luck.

__________________
Son Of a Bitch Everythings Real

awptickes

crapcleaner.

I can email it to you if you want.


What exactly do you have running on there? Can you download a tool called pslist.exe, then run it, and save the output to a text file?

EDIT: I see a program called "Trojan Remover" in your screenshot. Please unplug from the internets, change all passwords for all internet sites you've used on that computer from another computer, and reinstall windows. Don't bother trying to use Windows Restore to bring it back to a restore point, as a lot of software will infest the restore points.

__________________
☻/ DIY/Howto HID Projector retrofit
/▌
/ \

B

a re-install should be a last-case option.

only consider it after you've run
adaware
avg anti virus
avg anti spyware
hijack this
reg cleanse

Ethan

Agree! Ad-Aware and Avg are the shizzzz.

But you best bet is probably gunna be to reinstall windows bud.

__________________

Sabz5150

Had to deal with this particular nasty on a coworker's system. It's a hard one to remove.

This is why I do not use Windows.

__________________
lrwxrwxrwx 1 root root 9 2007-09-24 10:32 /dev/thisissparta -> /dev/null

TurboMirage

not everyone pays for porn, either

__________________
Home of the RPW built 2000 Lancer CC Coupe.

See what is done to the little Evo5.

"If you don't like what I've done with my car, I will gladly refund all the money you put into it."

endlesszeal

AntiVir is another very good free detection program. Also, on top of the forementioned software, try running Hijackthis. You can save a log and post it on castlecops. They'll tell you what to get ride of.

Jeef

Really who pays for porn?

__________________
Ex 89 crx si,91 & 95 Civic owner.

06 Silverado RCSB 20's, 2/4" Belltech lowering kit, waiting for 2 more cylinders, 1.9 more liters, and 208 more hp engine swap.

Luis998

What ended up happening with your computer, Nick?

__________________
Max? There is no max. Max just means you gave up.
This is my thread: http://hondaswap.com/engine-building...g-wind-110848/

http://hondaswap.com/members-lounge/...thread-278554/

ilubmyEG

I could fix it all for you being a computer technician by trade. But being that you are far away that may not be possible. And yes last resort is the windows re-install their are tools and ways to remove the virus but you do need to know what you are doing or you will damage it further then already is.

cressidakiller

As noted AVG can be useful (and free). Spybot is pretty good and free as well. Depending on your setup w/ multiple hard drives or multiple partitions in hard drives you could put another OS (operating system/windows) on another drive/partition and possibly bypass risk. You could check your registry. Go through all your files and delete what you don't know (if you're fairly pc saavy) or by date. Update your Windows. There is some evil stuff out there. My friend's pc had the wallpaper changed to something w/ html code. Key loggers or hardware/bios viruses are probably the worst (not sure on yours). If you do re-install, try a ghost program next time.