Laptop is saying that I'm being attacked at this moment :(
16 replies, posted
My friend let me borrow is laptop that is pretty old : It is a Toshiba Laptop made in 2001. So the other night Windows Security Center says that there is a system hijack and possible privacy things. I also notice that it says Firewall is disabled and all of his anti-viruses are out of date and have no subscription left.
Also I am unable to launch things such as malwarebytes, AVG, or the other anti-viruses I tried to open. ( They are an exe. file. ) I also tried running Windows in Safe Mode to open these yet they will still not open.
The OS is Windows XP Service Pack 3 I'm quite sure, and Windows Security Center says that this computer has 25 infections, yet just the other day it also said It had 26 / 27 / 29 so I'm not really sure : /. The only thing I've noticed is that sometimes exe. files run slow but I'm not sure if they work at all hence it won't let me launch AVG.exe. Hmmm... applications work though, so I'm not sure why AVG.exe wouldn't work.
Here's a list of what Windows Security Center says is on my computer... :
Email-Worm.JS.Gigger
IM-Worm.Win32.Kelvir.K
BWMETwelve.1378
Devices.2000
IRC-Worm.DOS.Septic
IRC-Worm.DOS.Loa
P2P-Worm.Win32.Duload.a
Happy_II.506
Joke.1068
P2P-Worm.Win32.Franvir
Lemena.3544
Kot.b
EICAR-Test-File
Virus.Boot-DOS.V.1526
Macro.Visio.Radiant
Virus.BAT.8Fish
Trojan-Clicker.Win32.Small.k
Trojan-Spy.HTML.Bankfraud
DoS.Win32.DieWar
Exploit.CodeBaseExec
Trojan-Spy.HTML.Bankfraud
Trojan-Proxy.Win32.Agent.x
Email-Worm.VBS.Peach
Virus.Boot-DOS.V.1536
Also the system scan said that some of them show up in Task Manager as a svhost...and I've noticed there are quite alot of those :(
So If anyone could help I would be grateful, I mean I just finished putting mods in GTA :(
And I swear if this is Microsoft's way of April Fool's ...
Also this climaxed last night around 1 - 2 A.M. and now there seem to be random popups in Firefox.
------EDIT------
So my latest post...I fixed the problem and if you are having the same problem see my latest post also!
Clean it out and/or reformat....
Who would let there computer go like that?
I really can't say :(... and clean it out? Please evaluate!
I'll i can say is that laptop is in a pile of shit. A clear hard drive wipe is the best choice. Anything that may have been of value on there is likely already gone.
Ok... But how would I do this hard drive wipe exactly? While your thinking I'll be looking it up.. But wait... This has like a Toshiba folder... how would one get that back since I don't have the disc. Also this is a Toshiba laptop made in 2001, and I don't have the recovery disc :(
[editline]05:51PM[/editline]
Actually the thing that says I'm getting attacked s a XP AntiMalware
[editline]05:51PM[/editline]
I'm gonna try to go into Safe Mode again except with Networking.
[editline]06:18PM[/editline]
Still can't open AVG... yet other applications work
You can take it into a computer store and get it wiped clean for a fee.
Reformatting is your only option now for home-fixing
[QUOTE=KillaGunna24;21110793]You can take it into a computer store and get it wiped clean for a fee.[/QUOTE]
Take it to geeksquad. they're good at that.
I got a similar occurrence tonight. I tried to get anything to rid the comp of it and have no clue how it started. I can't open any program that doesn't open at startup.
As far as I know, Geek Squad can eliminate the Virus, backup what you want, then reload the system.
So I too will be going there tomorrow.
Just get [URL="http://www.malwarebytes.org/mbam.php"]Malwarebytes' Anti-Malware[/URL]
[QUOTE=clonekiller;21109155]Also I am unable to launch things such as malwarebytes,[/QUOTE]
[QUOTE=SleeZy;21115882]Just get [URL="http://www.malwarebytes.org/mbam.php"]Malwarebytes' Anti-Malware[/URL][/QUOTE]
:colbert:
Try launching Malware antibytes under safemode.
[QUOTE=Richard Simmons;21118880]Try launching Malware antibytes under safemode.[/QUOTE]
[QUOTE=clonekiller;21109269]
[editline]06:18PM[/editline]
Still can't open AVG... yet other applications work[/QUOTE]
Im guessing it blocks AV's even in safe mode.
Well gentlemen, I was able to fix the problem! :D I did system restore before March 31, downloaded AVG and Malwarebytes and got rid of what was causing all of this destruction ( I think that Security Center thing was fake :( )
You are all idiots. This is obviously scareware.
Just look at the fucking virus names:
[code]
Email-Worm.JS.Gigger
IM-Worm.Win32.Kelvir.K
BWMETwelve.1378
Devices.2000
IRC-Worm.DOS.Septic
IRC-Worm.DOS.Loa
P2P-Worm.Win32.Duload.a
Happy_II.506
Joke.1068
P2P-Worm.Win32.Franvir
Lemena.3544
Kot.b
EICAR-Test-File
Virus.Boot-DOS.V.1526
Macro.Visio.Radiant
Virus.BAT.8Fish
Trojan-Clicker.Win32.Small.k
Trojan-Spy.HTML.Bankfraud
DoS.Win32.DieWar
Exploit.CodeBaseExec
Trojan-Spy.HTML.Bankfraud
Trojan-Proxy.Win32.Agent.x
Email-Worm.VBS.Peach
Virus.Boot-DOS.V.1536[/code]
1:What self respecting Virus maker names their fricking virus VIRUS?
2:90% of the viruses are designed to have a very low profile so they can steal/hack/and observe while you don't suspect a thing. Therefore they wil usually not prevent you from opening exe's.
Must've been an April Fools virus. I got the exact same thing.
Yes, I noticed it was scareware also.. :/ Sigh, I still have it though, and I'm quite certain its hooked up with Windows Security Center... And Startup programs..
Does anyone know where the Startup Folder is?
[editline]03:16PM[/editline]
Fixed it! All I had to do was bring up the command prompt, type in notepad... and then type stuff in notepad..
Here ( this is for Void Skull ) :
XP Antimalware 2010 also know as XP Antimalware is a rogue antispyware program, clone of XP Internet Security 2010, which is also a rogue antispyware. Nothing new here, as before, the rogue distributed through the use of trojans. When the trojan is initialized, it will download and install core component of XP Antimalware 2010 onto your computer without your permission. The same trojan will also configure the fake security program in such a way as to run automatically when you start any program on your computer. Using the method of running, the rogue can block any your programs, including legitimate antivirus and antispyware applications.
When XP Antimalware 2010 is started, it will perform a full scan of your PC. It It will state that your computer is infected with trojans, adware or malware and that you should purchase its “full” version to remove these infections. Important to know, XP Antimalware 2010 only imitates a system scan, the rogue is not able to perform any type of security related functions. It can`t protect your PC, detect malware files and so on.
What is more, to make a more complete illusion that your computer is infected, XP Antimalware 2010 displays numerous false alerts that the security of your computer at risk, or that a file is infected with a dangerous trojan, etc. The rogue will also hijack Internet Explorer and Firefox and display fake warnings when you opening a web site. As the scan results, all these messages and alerts – a fake, so you can safely ignore them
Now here is how to remove it... Oh this fixes the exe. files not working like AVG
--------------------------------------------------------------------------------------------
Method 1
Click Start, Run. Type command and press Enter. Type notepad and press Enter.
Notepad opens. Copy all the text below into Notepad.
Windows Registry Editor Version 5.00
[-HKEY_CURRENT_USER\Software\Classes\.exe]
[-HKEY_CURRENT_USER\Software\Classes\secfile]
[-HKEY_CLASSES_ROOT\secfile]
[-HKEY_CLASSES_ROOT\.exe\shell\open\command]
[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\.exe]
@="exefile"
"Content Type"="application/x-msdownload"
Save this as fix.reg to your Desktop (remember to select Save as file type: All files in Notepad.)
Double Click fix.reg and click YES for confirm.
Reboot your computer.
----------------------------------------------------------------------------------------------------------
This is another method if the first does not work ( the first worked for me though so good luck :D )
Method 2
Click Start, Run. Type command and press Enter. Type notepad and press Enter.
Notepad opens. Copy all the text below into Notepad.
[Version]
Signature="$Chicago$"
Provider=Myantispyware.com
[DefaultInstall]
DelReg=regsec
AddReg=regsec1
[regsec]
HKCU, Software\Classes\.exe
HKCU, Software\Classes\secfile
HKCR, secfile
HKCR, .exe\shell\open\command
[regsec1]
HKCR, exefile\shell\open\command,,,"""%1"" %*"
HKCR, .exe,,,"exefile"
HKCR, .exe,"Content Type",,"application/x-msdownload"
Save this as fix.inf to your Desktop (remember to select Save as file type: All files in Notepad.)
Right click to fix.inf and select Install. Reboot your computer.
-------------------------------------------------------------------------------------------------------------
Then use Malwarebytes to destroy all of the remains of this " Anti-Malware "
[URL="http:www.malwarebytes.org/"]http:www.malwarebytes.org/[/URL] - To download if you don't already have ( Official Site :D )
And there you have it! I wish you good luck Void Skull!
Sorry, you need to Log In to post a reply to this thread.