1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Odd computer problems.

Discussion in 'BlackHat Lounge' started by thekidwithstars, Apr 23, 2014.

  1. thekidwithstars

    thekidwithstars BANNED BANNED

    Joined:
    Mar 6, 2014
    Messages:
    173
    Likes Received:
    164
    Either someone is fucking with me or I have a virus or something.

    Randomly my Internet pages won't load, but I'll still be able to stream music. Randomly when I restart my computer, it will take like 10 restarts because my screen gets stuck or something. Now I every time I log in or log out my laptop speakers make a yawning noise. I try to search YouTube and only the ads show up, really?

    Are you kidding me?

    I know it's probably not a virus because everything still runs factory fast. Plus I'm cautious.

    I've been in to the deep web, I've seen what some Internet people are like. How do I solve this? I'm thinking format and start over then setting up a VPN?
     
  2. Marsilirus

    Marsilirus Newbie

    Joined:
    Dec 28, 2013
    Messages:
    20
    Likes Received:
    13
    Your not hacked and you do not have any kind of a Virus, just reformat your PC and if it doesn't help - then the problem is probably coming from RAM, CPU or Motherboard.
     
  3. thekidwithstars

    thekidwithstars BANNED BANNED

    Joined:
    Mar 6, 2014
    Messages:
    173
    Likes Received:
    164
    Am I just acting paranoid? This stuff is weird bruh and I'm tripping out over here too so that doesn't help out this situation at all.
     
  4. Apricot

    Apricot Administrator Staff Member Moderator

    Joined:
    Mar 26, 2013
    Messages:
    11,962
    Likes Received:
    6,442
    Gender:
    Female
    Occupation:
    BHW Moderator
    Location:
    London
    Home Page:
    • Thanks Thanks x 1
  5. JustUs

    JustUs Power Member

    Joined:
    May 6, 2012
    Messages:
    609
    Likes Received:
    451
    Start button -> Search command.exe -> right click Run as administrator.

    In elevated command window enter "sfc /scannow".

    If that does not correct the problem restore the system from:
    Start Button -> Control Panel -> System -> System Protection.
     
    Last edited: Apr 23, 2014
  6. Smart SEO

    Smart SEO Senior Member

    Joined:
    Apr 17, 2011
    Messages:
    857
    Likes Received:
    759
    Location:
    Google HQ
    Computers are so fast nowadays that you cant really tell if its infected or not since it would run fast either way. It seems like it could be some nasty adware. Try using Spyware Doctor if malwarebytes doesnt work.
     
  7. Anirudh04

    Anirudh04 BANNED BANNED

    Joined:
    Apr 20, 2014
    Messages:
    29
    Likes Received:
    6
    Bro i also have a poverty pc :p 2 gb ram, 250 gb harddisk, 2.12 GHz but i still manage it ;) wanna know how?
    1. Download and install avast antivirus (run a scan every month)
    2. If you are using windows 7 you can do this thing
    Computer ---> Advanced System Settings --> Advanced --> Click settings of performance --> Click on adjust for best performance --> Apply ---> OK DONE :D
     
  8. BuildMoreLinks

    BuildMoreLinks Jr. VIP Jr. VIP Premium Member

    Joined:
    Jun 7, 2012
    Messages:
    1,910
    Likes Received:
    655
    Location:
    17.3660° N, 78.4760° E
    do a spybot scan and then install trial version of kaspersky and that will set you up.
     
  9. CodeNinja

    CodeNinja Newbie

    Joined:
    Sep 25, 2013
    Messages:
    47
    Likes Received:
    26
    Backup your data and a new system install is the easiest and quickest way to get you back into a smooth running workstation. Next time be careful what you install (especially pirated software e.g. from torrents which often are infected with spyware/malware)

    Should the problem continue occurring after some time then I highly recommend installing Ubuntu Linux, which nowadays is easier to use and maintain than Windows.

    Unlike with Windows most people using Linux even after 5 years do not need to do any system cleanups or reinstallations.

    For running Windows compatible software on Linux there is VirtualBox, where you can run all your scrapeboxes etc, even if the Windows virtual machine gets contaminated with viruses it won't affect your primary Linux system.
     
  10. meashis

    meashis Regular Member

    Joined:
    Nov 24, 2013
    Messages:
    477
    Likes Received:
    77
    Location:
    Workstation
    it's simple buy "alienware"
     
  11. umerjutt00

    umerjutt00 Jr. VIP Jr. VIP Premium Member

    Joined:
    Oct 28, 2011
    Messages:
    3,644
    Likes Received:
    1,904
    Occupation:
    Ninja
  12. thekidwithstars

    thekidwithstars BANNED BANNED

    Joined:
    Mar 6, 2014
    Messages:
    173
    Likes Received:
    164
    ^^^ I have a custom 17.1 FHD gaming laptop. It's pretty nice :).

    I have some nasty trojans. I used to scan with Housecall but I guess that's obsolete software now. No wonder my laptop is bugging out.
     
  13. proxygo

    proxygo Jr. VIP Jr. VIP Premium Member

    Joined:
    Nov 2, 2008
    Messages:
    10,200
    Likes Received:
    8,689
    what os you using - check see how many processors u have running.
    me - i have 23 on xp -- 40 on win7 ultimate - when you no your processors
    you no when something shouldnt be there
    also check msconfig - see if something is booting you dont recognize

    also as apricot said run malware bytes scan, it will show if something isnt right.
    that tool, built by some guys i no from paltalk tech chat.

    and remember full removal of a virus if there is 1 or malware must be done
    in safe mode, with windows restore disabled, or it will be backed up
     
    Last edited: Apr 23, 2014
  14. thekidwithstars

    thekidwithstars BANNED BANNED

    Joined:
    Mar 6, 2014
    Messages:
    173
    Likes Received:
    164
    There is still something up. It still makes a yawning noise when I start it up or turn it off lmao! These guys are funny.

    Malwarebytes detected 4 problems and removed them all. I think I recall 3 trojans and some other random problem. I'm gonna do everything else in my power other than Malwarebytes which was mentioned in this thread.
     
  15. proxygo

    proxygo Jr. VIP Jr. VIP Premium Member

    Joined:
    Nov 2, 2008
    Messages:
    10,200
    Likes Received:
    8,689
    i had a similar problem back in 2009 took me a week to get rid
    if you think a yawn is bad check this out this post is coppied from proxy fire.com 2009
    suffered that desktop pic for a week.

    proxygo 2009
    some d1ck posted a file on my site yesterday some proxie scanner..i sent it to virus total and
    it said clean, so i opened it and got this lol even altered my desktop pic to lol nice touch
    i felt like ide tripped acid for a month lookin at this

    [​IMG]

    Malwarebytes' Anti-Malware 1.30
    Database version: 1341
    Windows 5.1.2600 Service Pack 1

    11/8/2008 2:47:29 AM
    mbam-log-2008-11-08 (02-47-29).txt

    Scan type: Quick Scan
    Objects scanned: 40882
    Time elapsed: 2 minute(s), 29 second(s)

    Memory Processes Infected: 7
    Memory Modules Infected: 1
    Registry Keys Infected: 1
    Registry Values Infected: 18
    Registry Data Items Infected: 2
    Folders Infected: 0
    Files Infected: 31

    Memory Processes Infected:
    C:\WINDOWS\runsql.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\sv.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\svzip.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\vlc.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\wdmon.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\svx.exe (Trojan.Downloader) -> Unloaded process successfully.
    C:\WINDOWS\svw.exe (Trojan.Downloader) -> Unloaded process successfully.

    Memory Modules Infected:
    C:\Documents and Settings\tony\Local Settings\Temp\wndutl32.dll (Trojan.FakeAlert) -> Delete on reboot.

    Registry Keys Infected:
    HKEY_CLASSES_ROOT\CLSID\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

    Registry Values Infected:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\updatewin (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\updatewin (Trojan.FakeAlert.H) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\runsql (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netsv32 (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netzip (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\vlc (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\wdmon (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netx (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netw (Trojan.Downloader) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{020487cc-fc04-4b1e-863f-d9801796230b} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\net64 (Trojan.Agent) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\UpdateWin (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\UpdateWin (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole\UpdateWin (Worm.Sdbot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Lsa\UpdateWin (Worm.Sdbot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\UpdateWin (Worm.Sdbot) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\OLE\UpdateWin (Worm.Sdbot) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SYSTEM\CurrentControlSet\Control\Lsa\UpdateWin (Worm.Sdbot) -> Quarantined and deleted successfully.

    Registry Data Items Infected:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableTaskMgr (Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop\NoChangingWallpaper (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    C:\WINDOWS\system32\3076v.exe (Trojan.FakeAlert.H) -> Delete on reboot.
    C:\WINDOWS\runsql.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\sv.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\svzip.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\vlc.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\wdmon.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\svx.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\WINDOWS\svw.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Local Settings\Temp\wndutl32.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc47.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc49.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc50.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc51.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc52.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc53.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc54.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc55.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc56.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc61.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc62.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc63.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc68.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\RECYCLER\S-1-5-21-1547161642-261478967-839522115-1003\Dc48.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\sv.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\svw.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\svx.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\svzip.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\vlc.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Desktop\wdmon.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Application Data\config.cfg (Malware.Trace) -> Quarantined and deleted successfully.
    C:\Documents and Settings\tony\Application Data\~tmp.html (Malware.Trace) -> Quarantined and deleted successfully.

    NOW PLEASE IF YA GONNA POST CRAP FILES THINK THAT SOME OF US HAVE THE BACKUP
    TOOLS TO REMOVE THEM 5 HRS TO REMOVE, BUT REMOVED NEVER THE LESS...

    REMOVAL TOOLS USED
    mcafee / malwarebytes / smithfraud / nod / hijackthis /
    think u could own me > U WISH ..

    UPDATE
    fixed the final piece of the jigsaw the fixed destop pic problem
    now resolved..destop background is now unlocked and that
    **** is gone .. see fix below...

    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\policies
    "NoChangingWallPaper", double-click the DWORD value and set it to "0". Otherwise, you need to create a new DWORD value of "NoChangingWallPaper" and set it to "0".

    my normal desktop is back..
     
    Last edited: Apr 23, 2014
  16. akacash

    akacash Jr. VIP Jr. VIP

    Joined:
    Jan 16, 2010
    Messages:
    805
    Likes Received:
    575
    Location:
    The Beach, USA
    Malwarebytes is the best free tool out there in my opinion. It's really good about removing that kind of stuff and can scan for registry errors as well I believe. Make sure you run it as an admin and follow through with the restart after the scan when it prompts you to. When you're computer boots back up it may notify you that Malwarebytes want's to make changes, blah, blah, blah. Click OK obv. and that'll complete the full removal process most times.

    Have you tried running any BIOS tests to see if your mobo is acting up? Could just be a hardware issue, although if you said Malwarebytes found stuff already I guess you'd probably want to look there 1st. Good luck with it though and hope ya get it worked out.
     
  17. Coding

    Coding BANNED BANNED

    Joined:
    Dec 3, 2012
    Messages:
    68
    Likes Received:
    6
    reinstalling windows should be your first option
     
  18. Coding

    Coding BANNED BANNED

    Joined:
    Dec 3, 2012
    Messages:
    68
    Likes Received:
    6
    you can't know is it 100% clean until you reinstall.
     
  19. proxygo

    proxygo Jr. VIP Jr. VIP Premium Member

    Joined:
    Nov 2, 2008
    Messages:
    10,200
    Likes Received:
    8,689
    alot of things can be fixed if u have the patients and the know how
     
  20. tompots

    tompots Elite Member Premium Member

    Joined:
    Dec 11, 2011
    Messages:
    4,352
    Likes Received:
    3,955
    Gender:
    Male
    Occupation:
    Full Time Bot Developer
    Location:
    Professional Botters
    Home Page:
    If your a heavy internet user, witch I assume you are because your on an IM forum. You Should invest in a good AV program and malwarebytes pro and have then run on a daily schedule just to be safe. And also consider getting Key scrambler pro for those nasty key loggers that could potentially relieve you of every penny you have online. I would also not download random crap from the internet EVER.
     
    • Thanks Thanks x 1
    Last edited: Apr 23, 2014