1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My computer has a virus - please help!

Discussion in 'BlackHat Lounge' started by appliedscience, May 24, 2011.

  1. appliedscience

    appliedscience Regular Member

    Joined:
    Jan 28, 2011
    Messages:
    202
    Likes Received:
    5
    Hey guys,

    somewhere along the way I downloaded a virus, I have 'XP Internet Security 2011' popping up every 30 seconds telling me I have severe viruses on my computer, I have about 3 different types of pop-ups coming up every 30seconds or so from; trojan, security risk, privacy warnings, malware found, spyware found and more.. :(

    Problem is, I did a full scan with Microsoft Security Essentials and a scan with Avast (free) and kaspersky (free) and all three scans have come up clean, saying I have no threats.

    I need to register 'XP Internet Security 2011' for it to take action in removing the threats found, but my comp is so old I don't have a registration key (and if I do I don't know what it is). XP Internet Security 2011 is the only program telling me I have viruses...

    Anyone know how I can get them off my computer??
     
  2. Vivica

    Vivica Regular Member

    Joined:
    Dec 15, 2007
    Messages:
    260
    Likes Received:
    72
    Occupation:
    Agent of novelty!
    Location:
    Planet Earth ≡ This was just a first step; in time
    That particular piece of malware is nearly impossible to remove. I ended up reformatting and starting over.
     
  3. bzy39

    bzy39 Regular Member

    Joined:
    Jan 15, 2009
    Messages:
    434
    Likes Received:
    239
    install Malwarebytes, it will remove/clean the fake antivirus 'XP Internet Security 2011'
    here the tutorial
    Code:
    http://forums.malwarebytes.org/index.php?showtopic=77963
     
  4. karibo

    karibo Regular Member

    Joined:
    Jan 30, 2010
    Messages:
    279
    Likes Received:
    340
    Location:
    Top of YOUR girlfriend
    Try spyware doctor. Cleaned some nasty shit on my pc :)
     
  5. carnage_100101

    carnage_100101 BANNED BANNED

    Joined:
    Feb 17, 2011
    Messages:
    240
    Likes Received:
    163
    Download malware bytes from a clean computer,Then reboot the infected machine in safe mode.Update MB and do a full scan,Also click run>msconfig and disable anything out of the ordinary.
     
  6. appliedscience

    appliedscience Regular Member

    Joined:
    Jan 28, 2011
    Messages:
    202
    Likes Received:
    5
    If i reformat will I lose everything on my computer (i.e. files, folders, etc)? If I do a backup I will only likely take the malware with it. How do I go about reformatting?
     
  7. rabbitgirl

    rabbitgirl Regular Member

    Joined:
    May 21, 2010
    Messages:
    292
    Likes Received:
    233
    Location:
    Somewhere in the FuTuRe!
    ahh, i know this crazy virus...it changes/modifies the registry in such a way that antiviruses don't detect it! Here, try this:

    Code:
    http://www.lavasoft.com/products/ad_aware_free.php
    I hope it allows u 2 install it. If it does, run a full scan with adware. I hope u rid of this annoying virus soon. cheers
     
  8. rabbitgirl

    rabbitgirl Regular Member

    Joined:
    May 21, 2010
    Messages:
    292
    Likes Received:
    233
    Location:
    Somewhere in the FuTuRe!
    Don't reformat yet (and yes, u will lose everything if u do)....Try following the suggestions of d pple dat have posted (i.e malbyte, adware, safemode booting etc) b4 considering reformating/reinstalling
     
  9. appliedscience

    appliedscience Regular Member

    Joined:
    Jan 28, 2011
    Messages:
    202
    Likes Received:
    5
    wow, thanks for all the replies. I will do the above and follow-up, thanks guys.
     
  10. download

    download Jr. VIP Jr. VIP Premium Member

    Joined:
    May 4, 2010
    Messages:
    1,271
    Likes Received:
    712
    Location:
    USA
    Yes, this virus is a bch... one excellent way is to use System restore to see if you can completely restore your computer back to an earlier point, which usually works without any antivirus trouble.
     
  11. rabbitgirl

    rabbitgirl Regular Member

    Joined:
    May 21, 2010
    Messages:
    292
    Likes Received:
    233
    Location:
    Somewhere in the FuTuRe!
    Just went thru bzy39's forum link and the guy seem 2 have similar problem....I'd suggest following that thread link to the dots.

    All the best!
     
  12. Bartman

    Bartman Power Member

    Joined:
    Apr 24, 2010
    Messages:
    569
    Likes Received:
    131
    dude, i cant believe people are so clueless.
    download combofix from bleepingcomputer.com
    double click on the red icon.
    let it run. do not disturb it under any circumstances.

    then your computer will be back to normal.
    after that, just to be safe, run malwarebytes.
     
  13. hawke

    hawke Power Member

    Joined:
    Nov 14, 2008
    Messages:
    644
    Likes Received:
    533
    Location:
    Ohio
    Reboot into "Safemode with networking" ---> install and full scan with malwarebytes ----> reboot into regular windows and install spybot search and destroy and run full scan with that ....

    after you've fixed all files it'll probably ask you if you want to run it at the next boot.... select yes and reboot....

    in that order... Be patient as this whole process will take 10 + hours.... but your system will be clean :)

    Hope that helps :)
     
  14. bertbaby

    bertbaby Elite Member

    Joined:
    Apr 15, 2009
    Messages:
    2,019
    Likes Received:
    1,496
    Occupation:
    Product marketing
    Location:
    USA
    Home Page:
    If you want to backup boot the computer using a rescue CD such as Hirens Boot CD. The virus will be inactive and you can safely backup your data. Of course, if you got the virus from a bad warez download then the virus is still lurking so scan your backup with Malwarebytes.

    I had a ransomware trash my registry so badly the OS was useless and yes I was careless. Learned my lesson. So, if you are in the habit of visiting some bad neighborhoods then think about Ubuntu or using Chrome.
     
  15. nethead01

    nethead01 Regular Member

    Joined:
    Sep 21, 2009
    Messages:
    424
    Likes Received:
    229
    safemode + malwarebytes = problem solved :)
     
  16. Sites4u

    Sites4u Jr. VIP Jr. VIP Premium Member

    Joined:
    Jul 10, 2009
    Messages:
    202
    Likes Received:
    280
    Got it the other day just download search and destroy its free you may need to dl it on another pc and add it too a flash drive from there install it and let it run.

    If it edits your reg keys and u can't execute exe files you may need to run the search and destroy exe from cmd
     
  17. hawke

    hawke Power Member

    Joined:
    Nov 14, 2008
    Messages:
    644
    Likes Received:
    533
    Location:
    Ohio


    A second spyware program is needed to be clean....and spybot is completely free and top quality, I've used it for years on mine and all my clients PC's, also I always run hijackthis on their PC's when I'm done cleaning them....

    :)
     
  18. Monrox

    Monrox Power Member

    Joined:
    Apr 9, 2010
    Messages:
    615
    Likes Received:
    579
    safemode + combofix too. Just run them both one after the other with a restart inbetween. The name "XP Internet Security 2011" doesn't mean it's actually from Microsoft tsss.
     
  19. Sombrero

    Sombrero Senior Member

    Joined:
    Feb 28, 2011
    Messages:
    1,119
    Likes Received:
    858
    Occupation:
    Dogs love Christmas too ♥
    Location:
    Papal Island
    I had the same problem 2 days ago. Just download RKill (Google it) and use it to remove that malware.

    Forget all the safemode and sh#t!!!

    This is the serial: 1147-175591-6550 (for the malware)

    Take care dude
     
  20. hawke

    hawke Power Member

    Joined:
    Nov 14, 2008
    Messages:
    644
    Likes Received:
    533
    Location:
    Ohio

    Might Not be a good Idea to post a serial like that.... just sayin' ....