In Progress Weird computer virus??

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

toxiceggplant

Thread Starter
Joined
Jan 31, 2018
Messages
2
Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 10 Home, 64 bit
Processor: Intel(R) Pentium(R) CPU N3540 @ 2.16GHz, Intel64 Family 6 Model 55 Stepping 8
Processor Count: 4
RAM: 8073 Mb
Graphics Card: Intel(R) HD Graphics, -1984 Mb
Hard Drives: C: 915 GB (740 GB Free);
Motherboard: Acer, EA70_BM
Antivirus: None
--
i always assumed i had a virus but when ever i would check with windows defender it would always say my computer was clean.

but yesterday my computer was acting pretty weird and i tried to look for weird processors in the task manager and found a exe under the name cpx running and i became suspicious when i saw the cpu was at 100% i began to search this program and people were saying it was a virus n stuff but this virus has gotten so bad that my computer will not reset nor will it boot itself into safe mode. i tried using an anti-rootkit by malwarebytes and it detected plenty of viruses but would stop working after hitting a certain amount.

this virus prevents me from downloading anything to remove it as it brings up a message stating that this resource is in use. the weird thing is i haven't had pop ups or ads of the sort this virus is just there.
i am denied access to some hidden folders says that i do not have permission to view it and that i am not the owner of it. and when i go to change the ownership it says "unable to display current owner"

its just really annoying to know it's on my computer but there's little that i could even do to remove this :(
 

capnkrunch

Malware Specialist
Joined
Nov 28, 2015
Messages
510
Hello toxiceggplant :)

Apologies for the delay in getting to your topic. Are you still in need of assistance?

Thanks,
-capnkrunch
 

capnkrunch

Malware Specialist
Joined
Nov 28, 2015
Messages
510
Alright. First let's go over the standard warnings and instructions:

Warning!
The steps presented in these posts are for this person and machine ONLY. Do not apply these steps to your own system, without the guidance of a trained malware removal helper. Doing so, may possibly damage your system, preventing it from starting.
Hello toxiceggplant and welcome to the Tech Support Guy Forums :)

My name is capnkrunch and I will be helping you with your malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  • The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  • You must have Administrator rights, permissions for this computer.
  • DO NOT run any other fix or removal tools unless instructed to do so.
  • DO NOT install any other software (or hardware) during the cleaning process.
  • Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  • Print each set of instructions, if possible. Your Internet connection will not be available during some fix processes.
  • Only reply to this thread, do not start another ... Please, continue responding, until I give you the "All Clean".
    Remember, absence of symptoms does mean the infection is all gone.
  • Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.

Note: If you haven't done so already, please read this topic Everyone MUST read this BEFORE posting for help in this forum where the conditions for receiving help here are explained.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care, not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.
For your safety and protection, I would advise backing up all your important documents, personal data files and photos to a CD or DVD drive as some infections may render your computer unbootable during or before the disinfection process. The safest practice is not to backup any files with the following file extensions:
exe, .scr, .ini, .htm, .html, .php, .asp, .xml, .zip, .rar, .cab as they may be infected.


WARNING: Please be extra careful backing up your files; I have an idea of what infection you could have and it can be very tricky. Pay close attention to the list of file extensions to be avoided and follow these instructions to show all file extensions:

Show Hidden Files and Folders
  • Click Start and then type File Explorer Options. Select it from the results.
  • Click on the View tab.
  • Check Show hidden files, folders, and drives and uncheck Hide extensions for known file types.
  • Click OK.
 

capnkrunch

Malware Specialist
Joined
Nov 28, 2015
Messages
510
Once you have read the instructions and backed up your files please complete the following:

Step one...

Please answer the following questions:
  • Do you have access to a clean computer running Windows 10?
  • Do you have access to a USB drive that you can format (NOTE: you will lose all the data on the drive when you format it)?
  • You said the computer will not boot itself into Safe Mode. Are you able to access the Advanced startup menu or is that where the malware is blocking you?

Step two...

The malware may stop this from running but give it a try. If it doesn't work just let me know.

FRST Scan
  • Please download FRST by Farbar, and save it to your Desktop.
    You need to download and run the 64-bit version.
  • Close all open programs and windows so you are at your Desktop.
  • Right click FRST64.exe and select Run as administrator.
  • If the malware prevents you from running it:
    • Rename FRST64.exe to something random with a .com extension. For example, dophgsd.com.
    • If that doesn't work try renaming it to iexplore.exe.
    • If you still can't run the program, just reply back here to let me know.
  • When the tool opens click Yes to the disclaimer.
  • Press the Scan button and wait while the scan finished
  • Once finished, two files will open: FRST.txt and Addition.txt. Please copy and paste the contents of both logs in your reply.
    The logs can also be found in the same directory where FRST was run from.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections...

In your next reply please include:
  • Did you have any problems with the instructions?
  • Answers to my questions
  • FRST.txt
  • Addition.txt
  • Are there any changes in computer behavior?
 

capnkrunch

Malware Specialist
Joined
Nov 28, 2015
Messages
510
Hello toxiceggplant :)

It's been 4 days since my last post. Do you still require assistance? If please following the instructions in my previous post and include the requested logs and answers in your reply.

Regards,
-capnkrunch
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Members online

Top