1 2 3 4 Previous Next 31 Replies Latest reply on Jan 12, 2012 5:20 AM by Peter M

    Did I get a virus?

      I have been looking for days and can't find a solution to my problem.  I guess thats the problem with forum sites sometimes.

       

      Anyway, on December 12 I was shopping online.  I typed "www.bedbathbeyond.com" in my Firefox browser, which is apparently not bed bath and beyond's correct web address.  A pop-up came on the screen that said something about being the millionth visitor to the site that day and "Click here" to claim your prize.  I knew this was a farce, so I tried to exit the software but couldnt do anything until the popup was gone, so I control-alt-deleted and closed firefox from the task manager.  I logged back in and continued my shopping with no issues, and was quite pleased with my progress.  The next day, my wife restarted the computer in the morning and tried to log in, but it took forever to boot into windows and to the log in screen for our user profiles.  She left and went to work.  Later in the day ( I had no idea she'd experienced a problem) I attempted to log in to my profile and the computer took over 20 minutes to do anything.  Just kept saying "loading user preferences" or something to that effect.  I did a hard shut down and tried to reboot.  Took almost a half hour to even boot to the windows log in screen.

       

      I then booted into safe mode and when mcafee total security opened up, it said that the computer was at risk because real time scanning was turned off. I repeatedly tried turning it on, but it keeps turning itself off.  I managed to get it to run a full scan but mcafee found no infected files.  I downloaded and ran Stinger twice and it also found no infected files. 

       

      I tried to log in normally again after a reboot, but after the 20 minutes it took to get to the log in screen again and after I entered my login info (fingerprint scanner says it is disconnected?), it seemed as if my user profile did not even exist as the wallpaper was toshiba satellite background and it was trying to load user setting for internet explorer 6???  I turned the computer off and scratched my head. 

       

      I have a toshiba satellite running windows xp.  I have no idea what is going on or where to start.  I'm frustrated because I feel like McAfee let something through that infected my system.  So far, I've been unable to use my laptop for a week and I am in desperate need for some help!!!!!!

       

       

      Thanks in advance for any assistance anyone can provide!

       

      Mike

        • 1. Re: Did I get a virus?

          I also wanted to say that I ran malwarebytes and it located and quarantined 3 files, but my computer is still super slow in safe mode and i still cant boot and log in regularly.

           

          Thanks again

          • 2. Re: Did I get a virus?
            Nitin Kumar

            Hi,

             

            Please send the files  which was quarantined to virus_research@avertlabs.com and mention the recevied ID in this thread.

             

            Regards,

            Nitin

            • 3. Re: Did I get a virus?

              I would send you the files but now am unable to locate either the files or the log file that malwarebytes created with the scan report and file names in it.  Any suggestions?

              • 4. Re: Did I get a virus?
                Peter M

                If they are still there they would show in Malwarebytes under the quarantine tab where you could restore them.  If not then it's too late for that.

                 

                By the way. something nownitin forgot to mention, if emailing samples to the labs they must be zipped and password-protected using the password 'infected' (minus the '').

                 

                Try running MBAM again in 'Safe Mode with Networking' reached by tapping F8 repeatedly while booting up, it's #2 on the ensuing menu.   Don't forget to update it first.

                 

                (It functions in that mode exactly the same as regular mode).

                 

                If the slowness with your machine continues I suggest you post a Hijackthis log on one of the following forums for expert free advice:

                 

                DOWNLOAD HIJACKTHIS

                 

                Do not post Hijackthis logs here, we can't help you with those !

                 

                Post the logs at one of these specialist Forums:

                 

                AUMHA

                 

                BLEEPINGCOMPUTER

                 

                MAJOR GEEKS

                 

                MALWAREBYTES

                 

                MALWARE REMOVAL

                 

                SPYWAREHAMMER

                 

                SPYWARE INFO

                 

                WHATTHETECH

                 

                Be sure to read all the sticky announcements/instructions at the top of each malware forum!

                 

                Message was edited by: Ex_Brit on 20/12/11 12:45:13 EST PM
                • 5. Re: Did I get a virus?

                  Hello computercop,

                  Just another bit of info.

                   

                  I think I'm right about this. Somebody correct me if I'm wrong.

                   

                  Don't bother trying to turn on the real time scanning of mcafee in safe mode, because real time scnning does not work in any form of safe mode.

                   

                  Something you can try doing is perform a system restore to an earlier date if none of the steps mentioned above work.

                   

                  You can so a system restore from 'safe mode with command prompt'

                   

                  Boot the computer in safe mode with command prompt

                   

                  On the command prompt, type in the command :

                  %systemroot%\system32\restore\rstrui.exe

                   

                  For more information regarding system retore from comand prompt, use the foll link. It's a microsoft KB article.

                  http://support.microsoft.com/kb/304449

                   

                  Good Luck

                   

                  MM


                  • 6. Re: Did I get a virus?
                    Peter M

                    You can still scan with VirusSCan in Safe Mode however, just go to the file, folder or drive and right-click then select "Scan".  You wont see anything but animation in the taskbar area by the clock.  Hovering over it will give progress.

                     

                    System Restore is always the first thing to try.

                     

                    As mentioned previously Malwarebytes will install, update and scan in both regular and 'Safe Mode with Networking' modes

                     

                    Message was edited by: Ex_Brit on 23/12/11 6:54:42 EST PM
                    • 7. Re: Did I get a virus?

                      Thanks for the replies so far guys.  I haven't really had a chance to mess with the computer because of the holidays.  So today I am trying to screw around with it.  I tried to download and run "hijackthis" but when I tried to install it, I get a message that "the system administrator has sert policies to prevent this installation". 

                       

                      Question about the system restore.  Am I going to lose all of my files that are saved to my computer?  I have moved the documents I want to save to a thumb drive along with all of the pictures that I want to keep.  My huge concern is all of my music.  I don't want to lose it! 

                       

                      Any help is appreciated.  Thanks and Happy New Year!

                      • 8. Re: Did I get a virus?
                        Peter M

                        If an infection prevents a download try the 'Save as' option and change its name in the process.   That might work.

                         

                        System Restore doesn't touch personal files and folders.

                        • 9. Re: Did I get a virus?

                          Thanks!  Downloading as a different file name worked. 

                          1 2 3 4 Previous Next