Virus on Computer

James240

ok ive downloaded F-Secure virus checker and it seems to be throwing up things left right and centre so far its found:

Trojan.win32.bho.bb

Risktool.win32.pskill

and it hasnt even finished its scan yet :eek:

Although happily it has dealt with those two so far

James240

skiddy2k wrote: »

try to download Kaspersky v7 (unreleased), hopefully the malware on your PC wont detect it... ftp://kav2006:Fynb02dbhec60@data.kaspersky.com/7.0.0.125/KIS/English/2007_06_28_12_33/kis.en.msi
also make sure "enable self-defense before instalation" is enabled/ticked... do an update, restart PC into SafeMode and scan from there. Set the Scan level of the MyComputer scan to "Max" and in the HeuristicAnalyzer tab, tick all the boxes and set heuristic scan level to "Detail"

(also remember to run the Trial Version)

Thanks skiddy2k im going to let the F-secure can run through and then give urs a go to double check that theres nothing left on there

there may be light at the end of the tunnel !! :T :j:j:j

skiddy2k

Also try to download the Avenger: http://swandog46.geekstogo.com/avenger.exe
save & run it. choose "input script manually", click on the Magnifier and input the following:

Files to delete:
C:\HIBERFIL.SYS
C:\PAGEFILE.SYS
C:\WINDOWS\SYSTEM32\SYSDRV0.EXE
C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
C:\DOCUMENTS AND SETTINGS\COMPAQ_OWNER\WN0008.EXE
C:\DOCUMENTS AND SETTINGS\COMPAQ_OWNER\LOCAL SETTINGS\TEMP\US0008.EXE
C:\WINDOWS\system32\erhecwjrbgbv.dll
C:\WINDOWS\system32\prmgkujwhutt.dll

press Done, and then click the green traffic light, confirm the reboot

skiddy2k

James240 wrote: »

Thanks skiddy2k im going to let the F-secure can run through and then give urs a go to double check that theres nothing left on there

there may be light at the end of the tunnel !! :T :j:j:j

Yeh, just take it one step at a time... no point trying all at the same time.
Looks like a Rootkit you got on the PC, thats why its proving so difficult to remove. Good luck!

James240

cheers mate much appreciated must admit ive never seen such a hard virus(es) to get rid of

cross fingers F-secure will do the job as well as what you have suggested as well

Rikki

Hi James :hello:

I've been following this thread and I must say I admire your patience. I would have done this by now.

No advice , just moral support :cool: and something to briefly make you and your Mum smile.

Hope you get it sorted soon.

.

James240

believe me Rikki its come close to it hun lol

Ive spent sooooo much time looking into this and trying to find out bits myself but as Browntoa pointed out it looks like it may be a newer virus lol

Im interested in this kinda stuff and how it works and how to remove it but i must admit even this has tested my patient lol

skiddy2k

Look on the bright side, you learn about how to remove malicious files this way and can help out people with similar problems in the future. ... (if you manage to remove it):eek:

James240

skiddy2k wrote: »

Look on the bright side, you learn about how to remove malicious files this way and can help out people with similar problems in the future. ... (if you manage to remove it):eek:

yep tis true

I do look at it as a learning curve cos i like to keep me IT knowledge as up to date as poss, and learning how to deal with this would certainly help doing that

James240

just attempting to run Kaspersky v7 now it installed this morning ok without anything being shut down so hopefully i will be able to get it to run when

Once its finished ill post the result tos let you know what happened, although i hope it gets solved today cos im not down at me mums for at least another week lol (fingers crossed lol)