Hi djgonzo,
You might try this utility:
http://www.diamondcs.com.au/index.php?page=dellater
:)
Printable View
Hi djgonzo,
You might try this utility:
http://www.diamondcs.com.au/index.php?page=dellater
:)
As dino says if your restore points are infected, each time you reboot your bringing the baddies back, you will have to flush your restore points prior to running your HJT log and doing the fixes.
Start\Control Panel\System\System Restore (tab) select "turn off system restore" select apply.
Reboot, this will flush out your restore points, remember to turn on after you have cleaned the malware out and create a manual restore point.:cool:
Well I have recieved many helpful hints, but nothing to really stomp this bastard out. I am well on my way the Linux way and it has been some time in the making. This last infection was the last straw. I have always been very interested in Linux especially since the live distributions hit the scene. I am running PCLinuxOS and will be permanently installing a Linux version on my Dell. I am still getting the hang of installing software which is usually done in a terminal. I succeeded installing firefox but not fproc. I am going to go in the direction of Linux networking. For the mean time I am going to glean all of my important documents and information from my XP partition and then wipe it out.
Thank you for all the help I will definately look into wine and crossover, thanks for the suggestion it will come in handy ;)
Good by Windows you suck.....LOL
What I would do is this (if possible to run other programs at least)
1) Start up normally and run a HJT entry.
I noticed
C:\WINDOWS\system32\jalgfezc.exe
as well. This looks like a virii signiture of a file that will change to a random lettering each time you delete it.
In the background a lot of times it ran a dll that is also random, and after you kill hte program, the dll will also change itself. You will have to use a program like "Process explorer" to choose the running app, and to see its bound dll files.
Try that and see what you can find. Also do a search for all files recently created. Alot of time you will find weird things everywhere recently created. Search hidden and system also of course.
Good luck.
anyone else read that sentence and laugh ? or was it just me ?Quote:
My computer frooze because the CPU was at 99%.
No, I did not............... but I did read this:
and :rofl:Quote:
Good by Windows you suck.....LOL
Strange how NONE of my Windows machines have ever suffered from this sort of problem..............I wonder why? (does this mean that I can market my "whitelist" of pr0n sites?):D
Good old "security through obscurity" don't ya just love it?
Problem is that this LINUX/APPLE myth is being seriously challenged these days. The fact is that the bad guys are starting to attack via applications rather than operating systems :eek:
They have figured that this is easier than writing cross-platform malware.
I'm holding my breath. When the jihad skiddies finally get their chitQuote:
this LINUX/APPLE myth is being seriously challenged these days
together and post a verifiable exploit, one that actually works,
then I s'pose I'll have to go down to Circuit City and buy Symantec,
LINUX EDITION.
I have more important things to do than endlessly clean malware
that shouldn't have been invited onto the machine to start with.
These viruses aren't that sophisticated or clever, the OS is just
absolutely promiscuous.
Microsoft has acknowledged this indirectly by advising people
that, in order to secure the PC, you must "disable some of the
features"
Anti-Firefox ranters have scoffed that the only reason Firefox
is secure is because it "lacks the features and functionality"
of Internet Explorer, the very same features you must disable
as soon as you bring the box home from the store, so that malware
won't have its way with your computer.
The same is true of OSX or Linux. They lack those easy inviting
hooks for skiddies to latch onto. As time passes, the Microsoft OS
will become more like its competitors in this respect, more secure,
and many of these fun&games features will be history. It just isn't practical
to ship an OS that permits remote sites to install software on a user's
machine without asking.
If they spent a tenth of the time on this issue as they do on DRM...
:cool:
Hey, RCG......
I will send you my one....... Linux that is, not Norton:D They only pick up stuff that would be sent to Windoze boxes from Linux servers?Quote:
then I s'pose I'll have to go down to Circuit City and buy Symantec,
LINUX EDITION.
Hot damn! I just knew there was a reason that I liked it........................Quote:
the OS is just absolutely promiscuous.
I don't wish to start any conspiracy theories here, but.............. Bill Gates and the IRS?????Quote:
It just isn't practical to ship an OS that permits remote sites to install software on a user's machine without asking.
:eek:
i don't know about that, but he musta had summit to do wit 911,Quote:
conspiracy theories here, but.............. Bill Gates and the IRS?????
or JFK or whatever. Anybody that evil prolly has a number of
scams goin. Prolly caused the Sopranos to be cancelled cause
it was gettin too close to the truth, you know what I mean?
djgonzo,
I hope this will help. I had a similar problem and used ubcd 4 win to fix the problem.
It is a boot disk with lots of good stuff for windows including virus removal.
It takes some work to get it setup. You have to create your own boot disk based on your personal windows cd. However, I would not create it on a infected computer.
http://www.ubcd4win.com/
You can add hijack this to the boot cd and run it to check your harddrive.
http://www.911cd.net/forums//index.p...hreaded&start=
Also if you go to http://www.irongeek.com you can find links on setting up hijackthis on ubcd4win and making it work on you harddrive.
The two following links will help you to analize your results from hijack this:
http://hjt.networktechs.com/
http://hijackthis.de/