VIRUS?....!!!

AquaFRESH

Famous
Well, gentlemen, it looks like I have a virus. The symptons are... nothing while my internet is not connected. When it is connected, it appears that I'm sending phishing emails and spam. Norton goes crazy and starts scanning every email and my entire screen is filled up with scanning boxes. It consumes all my bandwith and a lot of CPU power when it does this.

So far, I've tried scanning with Norton, Adaware, Spybot S&D, and Pestpatrol. All of the programs have their current defiinitions downloaded, and all came back negative. Actually, that is not true. Adaware found something which I thought was the problem, and the problem was gone for a while. Then it came back and adaware scans now return negative.

I'm hesitant to get another virus scanning program because I think norton is the industry standard. If this is wrong, please tell me. Would a program like zone alarm help? Would it fix the problem or just the symptoms? I guess I'm looking for tips on how to track the virus down.

Thanks
 

AquaFRESH

Famous
I was too impatient to wait for the online scan, so I downloaded the software and got the updates. It detected the mass-mailer... but here's the confusing part... It said it was explorer.exe that was the malicious program. I didn't see that at first, so I told it to terminate it instead of quarantine. Not surprisingly, it closed explorer. I'm rerunning the virus scan now, but could the mass-mailer be masquerading as explorer.exe? If it is, how do I separate the two programs....?
 

AquaFRESH

Famous
I tried everything except bullguard. Kaspersky, Symantec, Adaware, Spybot S&D, Pestpatrol, Zone Alarm, etc... I ended up just going a system recovery and that seemed to solve the problem. Thankfully, I didn't have that many files that needed to be backed up.

All of the anti-virus software I tried told me I had a virus but couldn't locate it.

Now I just have to wait 6 hours for DoD to re-download...

P.S. The virus I believe I had was Win32.Bagle.BD... Hope nobody else catches this bug! I still have no idea how it got past all the software I had on my computer.
 

Nirvana*

I made one post
next time start up in safe mode and right click and do a norton scan on ur hardrive. i have had plenty of those before and i hate it. next time definitely start in safe mode, scan, delete, restart and it will hopefully do something
 
[quote1178963000=Nirvana*]
next time start up in safe mode and right click and do a norton scan on ur hardrive. i have had plenty of those before and i hate it. next time definitely start in safe mode, scan, delete, restart and it will hopefully do something
[/quote1178963000]


That's probably the best idea, I was gonna say that. I had to do mine in safe mode once before when it couldn't delete a virus, then it fixed it. Bullguard told me to do that though. Just to add to the bullguard good press, you can live chat to a technician on it who can provide support.
 

daMduck

Forum Fiend
Sorry to hear of your trouble aqua . Everyone is going to tell ya what antivirus to use. I'll just tell ya what not to use. NORTON ;)
 

slayr357

Poster Extraordinaire
you could also download firefox and then delete explorer clean the virus. Then redownload explorer
 
[quote1178994018=daMduck]
Sorry to hear of your trouble aqua . Everyone is going to tell ya what antivirus to use. I'll just tell ya what not to use. NORTON ;)
[/quote1178994018]

I agree, norton knackered my old pc.

Oh and to slayer, I think he means explorer not internet explorer.
 
Yea. You would be better off wiping the whole hard drive. The best way to do this IMO is to get a program that will set the hard numbers to 0's. Then, install windows back ontop
 

Jeffwa

Rookie
If it says explorer is infected that means the virus/malware is currently running. It doesn't USUALLY mean the file itself is infected - get rid of the virus and explorer.exe will usually show up as clean.

If you're still having trouble, download and run Hijack this (get it here - http://www.merijn.org/files/HiJackThis_v2.exe) and post the output. I'll try to help you clean the system up. Make sure you perform all "cleaning" in safe-mode, otherwise anything you remove will probably just come back.

As someone above said - rebuilding is always a good idea. There is no way to guarantee that your system is 100% clean after being infected unless you do a rebuild.
 
Top