I can't get these virus off my computer!

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

s++++ happens, backup your docs, mp3's, films..... wipe the whole thing out, fresh install, restore... and try to keep your anti-virus file definition up to date.

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Turned off system restore. Ran antivirus in Safemode.
Ran every antivirus program but Panda.
Try to delete manaully found the directory and file and deleted it.
But got same virus again in different location after running Norton again.

What do i next

Anyone!

Thanks,

Professor Falken

 

Have you installed and run HijackThis as someone suggested to you earlier on this thread? Then post the results as a file upload as was suggested. (The HJT log is much too long to post in full.) You have a nasty bit of malware from what I can see from Google searches.

One other piece of software that I haven't seen recommended here is spybot search and destroy. It's worth trying it too, although this piece of malware may very well block it too.

 

OK, how about going to Start > Run > type in msconfig and go to the startup tab. See what's running in the registry keys. Open the registry editor (Start > Run > type in regedt32) and go to those keys. Try to track down each of the programs in the relevant directorys and check them out. Also match them up with the services running in the Services tab or the task manager. Look for ones with suspect names. What's happening is that (BTW have you installed anything recently) you have a program named eg. uduhjhjhdhd.exe getting started everytime you start your pc using the registry keys for startup and run. It then makes a copy or downloads these other backdoor/trojan programs which the AV finds and deletes. Then when you start up again the process happens all over again.

If you look in the msconfig utility then you will see a lot of programs configured to start automatically. Disable these (at least the ones you know, like Adobe etc) and restart. Maybe a recently installed program, usually music players have these things embedded in the program code.

Edit: check out these areas for the startup registry keys.