1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How do I get rid of this Virus?

Discussion in 'BlackHat Lounge' started by xboxps3wow, Jun 6, 2010.

Tags:
  1. xboxps3wow

    xboxps3wow Power Member

    Joined:
    Jan 15, 2010
    Messages:
    737
    Likes Received:
    239
    Occupation:
    student
    Location:
    Chicago
    I've had this virus/malware for few weeks now and every time i scan my PC with malwarebytes, it says it removes it. When i scan it again few days later, its still there. My antivirus doesn't even detect it. Its in the registry and it is annoying the crap out of me. If i remove it manually from the registry, can it stop some other programs from working?

    Here is what it is:
    Registry Keys Infected:
    HKEY_CURRENT_USER\SOFTWARE\Apocalypse (Backdoor.IRCBot)
     
  2. HoNeYBiRD

    HoNeYBiRD Jr. VIP Jr. VIP

    Joined:
    May 1, 2009
    Messages:
    5,904
    Likes Received:
    7,139
    Gender:
    Male
    Occupation:
    Geographer, Tourism Manager
    Location:
    Ghosted
    create a system restore point before you remove this registry entry and see what happens

    don't you have running process(es) which shouldn't have to be run atm? if you find something suspicious, terminate it or if you can't do that for some reason (the process is restarting time after time), you can quarantine it with security task manager (but be careful with this tool, you won't be able to run processes which is quarantined) and after you quarantined it, scan your comp & remove the infection with some kind of antispyware tool, such as spyware doctor
     
  3. xboxps3wow

    xboxps3wow Power Member

    Joined:
    Jan 15, 2010
    Messages:
    737
    Likes Received:
    239
    Occupation:
    student
    Location:
    Chicago
    Thanks. And no, I don't. There is nothing running that shouldn't be running. I guess I will create a restore point and see what I can do.. and if I screw it up, I will just restore.
     
  4. xboxps3wow

    xboxps3wow Power Member

    Joined:
    Jan 15, 2010
    Messages:
    737
    Likes Received:
    239
    Occupation:
    student
    Location:
    Chicago
    Ok, I went into the registry and removed it completely. Restarted my computer and its there again.. .wtf?
     
  5. sonobby1

    sonobby1 Regular Member

    Joined:
    Mar 3, 2009
    Messages:
    236
    Likes Received:
    31
    Location:
    Uk
    Ok everytime I get a virus/trojan, or anything bad I go to this forum.
    http://www.webuser.co.uk/forums/index.php
    Therer absolutly amazing, when you go there go down to hijack this log and analysis. follow the instructions to create a hijack this log, and you post it on the forum. from there one of the experts shows you step by step what to do to get rid of all the crap on your comp. Believe me they are unbelievable, and its free. They say if your satisfied you can donate , but you dont have to. system restores and shit dont work for these types of viruses /trojans, this definetly works
    Si

    I hope im not going to get in trouble for posting a link am I?, its totally legit, please let me know anyone?
    Si
     
  6. xboxps3wow

    xboxps3wow Power Member

    Joined:
    Jan 15, 2010
    Messages:
    737
    Likes Received:
    239
    Occupation:
    student
    Location:
    Chicago
    here is what it looks like when I click on the registry:
    [​IMG]


    EDIT: ok, I will check them out and see if they can help :)
     
    Last edited: Jun 6, 2010