We'd like to remind Forumites to please avoid political debate on the Forum... Read More »
We're aware that some users are experiencing technical issues which the team are working to resolve. See the Community Noticeboard for more info. Thank you for your patience.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
Virus on Computer
Options
Comments
-
Thanks Pchelpman, im not round my mums for about 4 days now as im away for a bit, ive told her not to go on the internet for the moment. Once i get back down to her (hopefully should be midweek) ill post the HJT log so to see exactly whats wrong
Thanks to everyone for their help so far as you have been a fantastic help :beer:
James Savings Total so far for 2023: £8,062.580 -
if hjt doesn't work, try autoruns, it does a similar thing. Did you run the bitdefender scan in safe mode?Ever get the feeling you are wasting your time? :rolleyes:0
-
hi guys iom back round me mums at the moment, the autoruns link that Albertross gave runs and it throws up a backdoor.delf.hbi which has been detected by 8 bit defender, located in three files but given the file name it looks like there made up one :rolleyes:
Going to try and get HJT to run on the computer so cross fingers Savings Total so far for 2023: £8,062.580 -
ok just tried to run HJT from a DVD-RW in normal mode and the virus is still terminating the program before its able to finish
does anyone else know anything i can do ? Savings Total so far for 2023: £8,062.580 -
rename the HJT program to soemthing else and then run the scan...
ie
hijackthis.exe to james240exeEx forum ambassador
Long term forum member0 -
ive already down that Browntoa but it seems to still know to end it before its finished Savings Total so far for 2023: £8,062.580
-
have you tried deleting the 3 files you found while in safe mode ??
are they DLL's or exe's ??Ex forum ambassador
Long term forum member0 -
there .dll's there the ones that are listed in post 30 mate
Ive just run the autoruns that albertross recommended to run and i saw them in there so ive deleted in that program in safe mode.
Although i then tried to run HJT again and it wouldnt let it just kept on stopping the program, same with AVG as well and quite a few of the other AV that people have recommended.
the only one that seems to run on the computer is 8 bitdefender but it doesnt seem to be able to get rid of it according to the report it gave me in post 30 Savings Total so far for 2023: £8,062.580 -
just run autorun again and 8 bit defender has picked up the same files as listed above in post 30 and the file names are exactly the same as beforeSavings Total so far for 2023: £8,062.580
-
Browntoa the file path for these is
HKLM\software\microsoft\windowsnt\currentversion\winlogon\notify
Ive gone into REGEDIT to have a look and there seems to be two folders named erhecwjrbgbv and prmgkujwhutt which is what the virus scanner picked up.
Ive just tried deleting the folders, but when i go back into REGEDIT they have reappeared with everything intact .....Savings Total so far for 2023: £8,062.580
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 351K Banking & Borrowing
- 253.1K Reduce Debt & Boost Income
- 453.6K Spending & Discounts
- 244K Work, Benefits & Business
- 598.9K Mortgages, Homes & Bills
- 176.9K Life & Family
- 257.3K Travel & Transport
- 1.5M Hobbies & Leisure
- 16.1K Discuss & Feedback
- 37.6K Read-Only Boards