ArcBoyeee All American 1208 Posts user info edit post |
It keeps blocking the internet, pulling up shit sites and attempts to run some bullshit antivirus. The university's antivirus is SHIT. It has never blocked a single infection for me. I think it said it's name was "Trojan.Fraudpac.somethingorother" I googled it and haven't found a legit way to get rid of it. It's somehow infected both of my laptops this week. Both with anti virus. I don't go to shady sites either. Will post a screen shot momentarily. I might not be able to get back online considering the bitch already blocked it on my main laptop. halp?
It also won't let me run any apps: "progname.exe has been infected, do you want to run antivirus now?"
cant get into paint to make screen shot.
[Edited on May 27, 2010 at 5:37 PM. Reason : halp] 5/27/2010 5:35:45 PM |
A Tanzarian drip drip boom 10996 Posts user info edit post |
Save yourself the heartache and reinstall. 5/27/2010 5:41:14 PM |
AstralEngine All American 3864 Posts user info edit post |
trend micro usually clears this shit up pretty well. Just download it and run it, you may have to rename the executable to get it past some of the beginner tricky level viruses. If that doesn't work, get back to us 5/27/2010 5:41:34 PM |
wahoowa All American 3288 Posts user info edit post |
MBAM will get it. get it on a flash drive and install on your computers. If it wont let you install, use "Root Repeal" to stop the virus process 5/27/2010 5:46:32 PM |
ArcBoyeee All American 1208 Posts user info edit post |
I cant reinstall on the netbook - no CD drive.
I have trend micro on both. How do I enable it again? go into safe mode? renaming wont work
downloaded MAMB but the trojan won't let me run it. What now?
[Edited on May 27, 2010 at 5:53 PM. Reason : more] 5/27/2010 5:48:12 PM |
wahoowa All American 3288 Posts user info edit post |
download the program "Root Repeal." Run that...find the virus process (usually a process name with random letters and numbers) and stop it. Then install MBAM 5/27/2010 5:55:01 PM |
A Tanzarian drip drip boom 10996 Posts user info edit post |
Quote : | "I cant reinstall on the netbook - no CD drive." |
What OS?5/27/2010 5:56:42 PM |
ArcBoyeee All American 1208 Posts user info edit post |
dammit - I don't have winrar to run it. can't install winrar - trojan won 't let me run it.
it's getting worse, its running up well over 30 icons in the system tray that are red shields with x in them. they keep coming back after I WAVE my mouse over them and the disappear.
WINDOWS XP SP3
[Edited on May 27, 2010 at 5:59 PM. Reason : os] 5/27/2010 5:59:12 PM |
A Tanzarian drip drip boom 10996 Posts user info edit post |
http://www.google.com/search?q=install+windows+xp+usb+flash+drive
Pick one. 5/27/2010 6:05:38 PM |
ArcBoyeee All American 1208 Posts user info edit post |
I'd rather not do that since I have no way of reactivating all the specialized software that controls the buttons on it like wifi, volume, and FN key response. They are not available online - already checked on that.
How about a way to defeat the Trojan instead of doing a full system reinstall? 5/27/2010 6:10:21 PM |
wahoowa All American 3288 Posts user info edit post |
you can extract root repeal on another computer and transfer it over if necessary.
Also try Sysinternals (http://www.sysinternals.com) to see what processes are running. You may need to change the name of the program to "winlogon.exe" for it to work.
I can also email you the program if you want. Its about 3mb
[Edited on May 27, 2010 at 6:22 PM. Reason : a] 5/27/2010 6:22:05 PM |
ArcBoyeee All American 1208 Posts user info edit post |
email? PM sent. 5/27/2010 6:50:33 PM |
Kris All American 36908 Posts user info edit post |
your computer must have came with some way to flash it back to original 5/27/2010 7:01:08 PM |
wahoowa All American 3288 Posts user info edit post |
Email sent 5/27/2010 10:47:14 PM |
ArcBoyeee All American 1208 Posts user info edit post |
trojan eliminated on all three systems but residual WiFi problems persist.
I keep having to restart for functionality to come back to my receiver. sucks. anyone know how to get it all back?
also, start bar has that fucking classic look and I've tried changing all the settings and still won't go back to blue.
god dammit i hate viruses and shit.
3hours gone
also, laptop now HANGS like hell when I try and hibernate. thus making me force restart and fucking the wifi again.
IM SO PISSED
[Edited on May 27, 2010 at 11:31 PM. Reason : FUCK] 5/27/2010 11:30:30 PM |
lion4russell All American 1588 Posts user info edit post |
make her use birth control 6/2/2010 12:31:13 PM |
tomtheturtle New Recruit 1 Posts user info edit post |
back up essential files and reformat. 6/2/2010 1:09:48 PM |
Grandmaster All American 10829 Posts user info edit post |
try a repair install first. 6/2/2010 1:11:23 PM |
pimpmaster69 All American 4519 Posts user info edit post |
Depending on how far infected your computer is it might be easier to just wipe reinstall the OS. I had a particularly nasty virus doing the same things yours did but it even infected my save mode. I got a similar one later that safe mode wasn't infected by though as well. With that one I put MalwareBytes on a flash drive and ran it from there. wiped out the virus, then booted normally ran it again and cleared everything out.
With my first infection I ended up having to drop my hard drive on an external inclousure and plugged it into an uninfected computer. Then ran MalwareBytes on it. Then I placed it back in my laptop booted up and ran MalwareBytes to get the rest of the stuff. This one was a headache and took a while but finally fixed all my problems.
http://www.malwarebytes.org/
Trust me their software works wonders. 6/4/2010 1:34:28 PM |
Doss2k All American 18474 Posts user info edit post |
I had this same thing happen the other day, first virus Ive ever had at least knowingly and no idea how it got on my system, but I had it gone in about 10 min. Gotta restart and get taskmanager up ASAP and kill the process so that you can actually do anything, then find the files and kill those and then take care of your registry and boom done 6/4/2010 6:38:21 PM |