1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

New virus?

Discussion in 'Virus & Other Malware Removal' started by 5thStreetHound, Jan 15, 2011.

Thread Status:
Not open for further replies.
  1. 5thStreetHound

    5thStreetHound Thread Starter

    Jan 15, 2011
    Good day people, I could use a little help. Let’s strike that! I need a lot of help! I’m running XP Pro. Got an e-mail from someone I recognized and Norton said it was safe, one key stroke and onto disaster. Got an e-mail from this person an hour later saying there account had been hijacked and do not open anything from them. I got to give them E for effort but the damage is done.
    I’ve never seen or heard of this virus. I surfed the net with no answers. I went into overdrive immediate disconnecting my Lan cable and shutting down the system. When I rebooted, it would only get a little ways into the bios and posted a message of key board failure not letting the F1 or the delete key function. So I cleared the cmos on the board. This allowed me to get to the password page and back into windows. The virus will not allow me to boot into safe mode. It will allow me to get into my doucments but will not allow me to open any applications and after about a couple of minutes, I get an error message telling me that windows has a major fault and has to shut down. This starts the ball rolling again with the clearing of the cmos etc. Anyone here point in what direction I should be going at this point besides hell in a hand basket? Thanks for your help in advance, Bob
  2. CatByte

    CatByte Malware Specialist

    Feb 24, 2009
    are you able to download and run any diagnostic programs?

    If not do you have access to another computer where you can download then transfer over via USB?

    do you get any error messages when you try and open the documents?

    Please run the following on your USB before transferring files:

    Please do the following:

    Download Flash_Disinfector.exe from HERE and save it to your desktop.

    • Double-click Flash_Disinfector.exe to run it and follow any prompts that may appear.
    • The utility may ask you to insert your flash drive and/or other removable drives including your mobile phone. Please do so and allow the utility to clean up those drives as well.
    • Wait until it has finished scanning and then exit the program.
    • Reboot your computer when done.


    Please download DDS from either of these links

    LINK 1
    LINK 2

    and save it to your desktop.
    • Disable any script blocking protection
    • Double click dds to run the tool.
    • When done, two DDS.txt's will open.
    • Save both reports to your desktop.
    Please include the contents of the following in your next reply:



    Download GMER Rootkit Scanner from here to your desktop. It will be a randomly named executable.
    • Double click the exe file.
    • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO, then use the following settings for a more complete scan.

      Click the image to enlarge it
    • In the right panel, you will see several boxes that have been checked. Ensure the following are unchecked
      • IAT/EAT
      • Drives/Partition other than Systemdrive (typically C:\)
      • Show All (don't miss this one)
    • Then click the Scan button & wait for it to finish.
    • Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
    • Save it where you can easily find it, such as your desktop, and attach it in reply.

    Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries
  3. 5thStreetHound

    5thStreetHound Thread Starter

    Jan 15, 2011
    Thank you very much CatByte! The problem has been resolved. I did every thing you told me. When I ran GMER Rootkit Scanner, it never stopped. It just kept scanning over and over. I got out of that and ran MalwareBytes and it located a Trojan by the name of Ransom. In the end I really don’t know what got it out. The Microsoft program or MalwareBytes but its happily gone. Thanks again, Bob
  4. CatByte

    CatByte Malware Specialist

    Feb 24, 2009
    OK, I'm glad you resolved the issue.

    Thanks for letting me know.

    If you find you still have symptoms, please start a new thread with the DDS and GMER scans as I am unsubscribing from this one.
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/974803

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice