Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trojans from your links!?


  • This topic is locked This topic is locked

#16
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
In meantime I restarted my comp and it's back again: Laud noise and 370MB PF Usage. :)
I did MBAM log, but as the symptoms were back I restarted in Safe mode and did the scan with the MBAN there. Nothing found.

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8005

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

23.10.2011 16:17:39
mbam-log-2011-10-23 (16-17-39).txt

Scan type: Quick scan
Objects scanned: 164890
Time elapsed: 4 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
  • 0

Advertisements


#17
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Where is the loud noise coming from ?

As you only have 503Mb of Ram windows will try to use as much of it as possible, I would recommend that you get some more RAM (at least 1GB ) to get windows to run smoothly

To find out how much RAM your system can take, what type and a ballpark cost visit Crucial.com and run the memory scanner
  • 0

#18
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
Essexboy, thank you for advice. I already have brand new HP, but unfortunately I'm afraid to used it on this unsecured network (though I pay 25€ every month!). Right now I don't have any other choices.
My comp, which I'm using now, is 4 years old and I know him as my own pocket. Before a week ago he needs around 270MB PF Usage (and was not laud), today 360MB (and is loud, but not all the time or when a few programs are running). Something is wrong.
A few month ago Kaspersky lab clean this comp with the similar symptoms, but unfortunately they closed their web site, so I do not remember what or how they manage to clean it.
Truly thank you for your time and effort! :)
  • 0

#19
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
The noise sounds like it may be the hard drive failing

What type of network are you on ? As you should be able to secure it.

Also if your new computer is fitted with windows 7 64 bit then the security is greatly increased over XP
  • 0

#20
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
I'm on Wireless Network Connection (unsecured wireless network), but ok. I count 3 weeks more and than I'm moving out of here, so we'll not bother with this, unless you know for a proper program who defencing of stealing wireless connection? I already try LanEye and I think I got infected with troyan (Kaspersky lab save my comp).

The noise is not from HD, because sometimes comp works perfectly at full load of programs. I thing that someone has the access to my comp and than it start to be slow and loud. When I close down all programs except Task manager, I can see actions on my network connection. and last but not least: When my comp was clean (and uses 270MB of PF Usage) there was no problems with noise or speed.

And yes, my little baby HP Pavilion 7 has everything what I need, but really scared to infected it, so I'll let him sleep for this few weeks.
  • 0

#21
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets run the Kaspersky programme and see if I can find it

Download AVPTool from Here to your desktop

Run the programme you have just downloaded to your desktop (it will be randomly named )

First we will run a virus scan

Click the cog in the upper right
Posted Image


Select down to and including your main drive, once done select the Automatic scan tab and press Start Scan
Posted Image

Allow AVP to delete all infections found
Once it has finished select report tab (last tab)
Select Detected threats report from the left and press Save button
Save it to your desktop and attach to your next post


Now the Analysis

Rerun AVP and select the Manual Disinfection tab and press Start Gathering System Information

Posted Image

On completion click the link to locate the zip file to upload and attach to your next post

Posted Image
Megaupload
  • 0

#22
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
Uf, it was a tough time!
I cannot save threats report, because my Notepad opens blank and than freezes - always crash - I tyred 4 times.
So, here is avptool_sysinfo.zip.
If you can find where is problem ok. Otherwise I'll reinstall Windows installation.
It's not worth yours and my time anymore.
Thank you Essexboy!

Attached Files


  • 0

#23
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
I am seeing no apparent malware from the system. I will close two loopholes in the system anonymous user and administratives shares. But, you may well be right and go for a full re-install. If you need any assistance with that then just shout

  • Re-run AVPTool
  • Select the Manual Disinfection tab and press Script execution

    Posted Image
  • Where it states Insert text script in the following box copy the below script and press Run script
    Copy from Begin until End

    Posted Image

    begin
    SetAVZPMStatus(True);
    SetAVZGuardStatus(True);
    SearchRootkit(true, true);
    RegKeyIntParamWrite('HKEY_LOCAL_MACHINE', 'System\CurrentControlSet\Services\LanmanServer\Parameters','AutoShareWks', 0);
    RegKeyIntParamWrite('HKEY_LOCAL_MACHINE', 'SYSTEM\CurrentControlSet\Control\LSA','RestrictAnonymous', 2);
    BC_ImportDeletedList;
    BC_ImportAll;
    ExecuteSysClean;
    BC_Activate;
    RebootWindows(true);
    end.

  • Your system will reboot on completion, if it does not please do so yourself
  • On completion please run another analysis scan and attach the zip file

  • 0

#24
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
OK, here is ziiip.
Now, shall we swimming further or shall we executing?

Attached Files


  • 0

#25
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Your call as I can see nothing further that would be causing this - unless it is a hardware problem
  • 0

Advertisements


#26
danielle07

danielle07

    Member

  • Topic Starter
  • Member
  • PipPip
  • 18 posts
Qul.
I will let you know how computer behave after the execution.
Thank you again - you're great!
  • 0

#27
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
:)

If you wish we could look at the hardware side with a few small tests
  • 0

#28
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP