Bugged system

WeatherMan

WeatherMan

Active Member
Hi guys.

Got a system here needing help. Its from my stepdads mate, apparently he keeps getting porn popups. So god knows whats on the system.

Could you please post instructions for me. I'll crap free the system then run all the usual hehar to get his system squeaky :)

Thankyou


Looks like this is a bit more damaged than I thought it was gonna be.

Start up: Windows popup (unknown didnt bother reading it because I know itl come back)
Secuirty Center. Wont respond.
Mcaffee bumps up, blah blah popup.exe script running, OK stop script - BSOD.

HJT coming now. (Hopefully).

Lol this is a joke. Theres about 3 Obviously fake spyware scanners left right and center, one which mimicks secuirty center, with scarily good accuracy.
 
Last edited:
Post a Hijackthis Log

  • Download Hijackthis from here
  • Open Hijackthis
  • Click on "Do a system Scan Only"
  • Click on "save log"
  • A notepad window will open
  • Hit Ctrl + A
  • Copy + paste in a forum reply

Then we can go from there.

or

Please post a Hijackthis log. To post a Hijackthis log, please do the following:
Click Here to download HJTsetup.exe


* Save HJTsetup.exe to your desktop.
* Double click on the HJTsetup.exe icon on your desktop.
* By default it will install to C:\Program Files\Hijack This.
* Continue to click Next in the setup dialogue boxes until you get to the Select Additional Tasks dialogue.
* Put a check by Create a desktop icon then click Next again.
* Continue to follow the rest of the prompts from there.
* At the final dialogue box click Finish and it will launch Hijack This.
* Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
* Click Save to save the log file and then the log will open in notepad.
* Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
* Come back and create a new thread and Paste the log in your post, using Hijackthis in your Subject bar
* DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.


We will look at your log as soon as we see it, and give you further instructions on how to fix your computer. Most of the time it will involve downloading more programs that will either give us logs to locate the malware or delete those malware.

Once you have posted a HJT Thread DO NOT make any changes to your PC unless the advisor helping you has instructed you to do so!
 
Ugh I was just about to run HJT an the system restarted :mad:

5 mins..... maybe more. takes that long to boot.

BTW this is WinXP & FAT32. Once everything is sorted is it ok to convert to NTFS or can a system volume not be converted whilst in use.

Im guessing this HJT is gonna be long :P
 
Thanks. I can't format this system annoyingly, been told its a work system, so no recovery consoles built in. Just a disk, which I don't have :P

I'm slowly getting there ( I think ) System decides to restart whenever IE opens a conjested page up. So im downloading it on this system and will send it over the network.
 
Bootup05 said:
Thanks. I can't format this system annoyingly, been told its a work system, so no recovery consoles built in. Just a disk, which I don't have :P

I'm slowly getting there ( I think ) System decides to restart whenever IE opens a conjested page up. So im downloading it on this system and will send it over the network.
Click to expand...

I'm not sure you need a disk for this.

"Changing a volume's existing file system can be time–consuming, so choose the file system that best suits your long–term needs. If you decide to use a different file system, you must back up your data and then reformat the volume using the new file system. However, you can convert a FAT or FAT32 volume to an NTFS volume without formatting the volume, though it is still a good idea to back up your data before you convert
 
Last edited:
Lol this system is wrecked. Theres Symantec fighting Mcaffee, 80 processes running. And something weird going on with IE....I see my page. press (Filehippo HJT) (Systems just BSODED again whilst im typing.) and instead of going where I say, it goes to ebay. or Stopzilla. SYSTEM HAS RECOVERED FROM A SERIOUS ERROR comes up every 5 seconds, and I get a new homepage every time the system feels like its going to reboot.
 
Briguy said:
"Changing a volume's existing file system can be time–consuming, so choose the file system that best suits your long–term needs. If you decide to use a different file system, you must back up your data and then reformat the volume using the new file system. However, you can convert a FAT or FAT32 volume to an NTFS volume without formatting the volume, though it is still a good idea to back up your data before you convert
Click to expand...

Sorry I probably you probably took that the wrong way.

I know I wouldn't have to format for a conversion.

I was talking about, formatting instead of spending hours trying to clear all the shit off the system. Sorry I didnt mention that.:)
 
Bootup05 said:
Lol this system is wrecked. Theres Symantec fighting Mcaffee, 80 processes running. And something weird going on with IE....I see my page. press (Filehippo HJT) (Systems just BSODED again whilst im typing.) and instead of going where I say, it goes to ebay. or Stopzilla. SYSTEM HAS RECOVERED FROM A SERIOUS ERROR comes up every 5 seconds, and I get a new homepage every time the system feels like its going to reboot.
Click to expand...


Is there anything really important on your computer that you can't live without?

Can you get into safe mode?
 
Im not really sure, as it isnt my system. Wasn't told what to keep and what not. Just not to wipe it lol.

If It doesnt boot this time I'll safe mode :)

I have the file ready to send over the network, and the system doesnt restart unless IE is up so Im just waiitng for it to boot an I can get HJT on its way.
 
Bootup05 said:
Im not really sure, as it isnt my system. Wasn't told what to keep and what not. Just not to wipe it lol.

If It doesnt boot this time I'll safe mode :)

I have the file ready to send over the network, and the system doesnt restart unless IE is up so Im just waiitng for it to boot an I can get HJT on its way.
Click to expand...



See if you can download combofix and run it in safe mode. Then post the log so we can see it.

You can download it here: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
 
Alright thanks. System BSOD'd when I sent it over the network, Wouldnt save to USB and then BSOD again so its trying to boot into safemode now :)
 
The file wouldnt save to disk, But I can try running it in Safemode and see what happens :)

Edit: Even in safemode IE wont find the right pages
 
Last edited:
Can we pls wait because as soon as we has a HJT then we might be able to resolve it without doing a clean reinstall.....
 
^^ Using Hijackthis during safe is pointless b/c nearly everything is disabled during safe mode so nothing will show up on hijackthis!!
 
You must log in or register to reply here.
Back
Top