We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
I think I'm infected with a virus!
Options
Comments
-
Jason ~ if you can a fresh install really is the way to go (But you need to completely clean that USB gizmo first else youll just reinfect yourself)
If you wish to push on with cleaning your computer ~
rerun ccleaner to remove the temp files
Open notepad and copy/paste the text in RED below
File::
c:\windows\ativpsrm.bin
c:\windows\system32\vcmgcd32.dll
c:\program files\muyxe.txt
c:\windows\system32\emptyregdb.dat
c:\windows\pchealth\helpctr\OfflineCache\index.dat
c:\windows\alcupd.exe
c:\windows\system32\ChCfg.exe
c:\windows\Alcrmv.exe
c:\windows\system32\RtlCPAPI.dll
c:\windows\system32\khmx0.dll
c:\windows\soundman.exe
c:\windows\system32\RTLCPL.exe
c:\windows\Installer\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}\IconCDDCBBF15.exe
c:\windows\Installer\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}\IconCDDCBBF13.exe
c:\windows\Installer\{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe
c:\windows\system32\drivers\lrntmn.sys
Save this as "CFScript"
Then drag the CFScript into ComboFix.exe as you see in the screenshot below.
This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply
Combofix should never take more that 20 minutes including the reboot if malware is detected.
If it does, open Task Manager then Processes tab (press ctrl, alt and del at the same time) and end any processes of findstr, find, sed or swreg, then combofix should continue.
run ccleaner again in case anything got by what weve just deleted (Every chance considering the seriousness of the infection)
Download FIREFOX
Run LSPFIX
Download HostsXpert
http://www.softpedia.com/get/Security/Security-Related/Hoster.shtml
and then follow the below steps.
* Unzip HostsXpert.zip
* It will create a folder named HostsXpert in whatever folder you extract it to.
* Run HostsXpert.exe by double clicking on it.
* click the Make Writeable? button.
* click Restore Microsoft's Hosts File and then click OK.
* Click the X to exit the program
Run ccleaner again
Attempt to run the kaspersky scan using firefox -Will probably need flash and or java installing for it ~
https://addons.mozilla.org/en-US/firefox/browse/type:7:idea:0 -
Forgot to add. If I have this right, your realtek software has been infected so dont be suprised if this kills your sound. Should be able to reinstall all software once your clean (IF you can get clean):idea:0
-
Trend's PC Cillin has an online virus scanner here http://housecall.trendmicro.com/uk/are there any other online scanners I can use?
You may find that a virus may be preventing you from scanning properly or from installing anti-virus though.
Formatting would be my preferred option, if you don't have an original XP disc and can't retrieve your MS serial code, how about using the Ubuntu OS?
You would need to download it and make a bootable CD to use it (on a mate's computer) but it's a brilliant alternative to Windows.
http://www.ubuntu.com/0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 350.8K Banking & Borrowing
- 253K Reduce Debt & Boost Income
- 453.5K Spending & Discounts
- 243.8K Work, Benefits & Business
- 598.6K Mortgages, Homes & Bills
- 176.8K Life & Family
- 257.1K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards