Jump to content

Heavy PC virus / malware

PatFenis

By PatFenis
in Resolved Malware Removal Logs

 Share

Recommended Posts

PatFenis

PatFenis

Posted
Posted (edited)

Hello,

Im new at this forum so thx for future help and sorry for my english.  2 days ago I experienced strange things on PC, sudden data oppening, random program starting, in game crashed, net speed slow down, CD rom opening, PC shut down even if my antivirus was on (Eset smart security). Didnt download anything, only problem that I though it was was CCleaner. So I fast checked procceses and there was strange apps starting all over again. Scanned comp, nothing, downloaded malwarebytes / Rkill / Roguekiller / Combofix and only Combofix found something but once deleted they are back up after reboot.  So I just took my Win7 installation disc and Re installed windows / formated HD cause I was hoping it will fix problem but nothing. Even on start of windows PC was writing and picking options. I somehow managed to get on startup, download antivirus and again nothing. Reinstalled 3 times and again same thing. Some strange $Recycle.bin spawn in 2 partitions. Dllhost.exe is active in task manager so I dont know if there's any connection. Also I noticed that in every program or file in Properties/Security there is TrustedInstaller with all privileges. Plz help, lost all my data. 

Capture.PNG

Capture1.PNG

Capture2.PNG

Edited by PatFenis
Fix.
Link to post
Share on other sites
David H. Lipman

David H. Lipman

Posted
Posted (edited)

The OS marks the construct as a part of the System and is Hidden.

This is not a virus.  That's a faux conclusion.  In fact on 99% of malicious files calling it a "virus" is a faux conclusion.  The terminology "virus" is overly used and very much abused.  All viruses are malware but not all malware are viruses.  The vast majority of malware are trojans.  To be a virus the malicious code must be able to self replicate.  That is to be a virus the code must be able to spread from "file to file",  "file to system" , "system to system" or "system to file" autonomously.  Trojans need assistance to spread.

Malware does not create the Recycle Bin.  It is an Operating System Construct.

You stated " its somehow associated with virus ".  No malware has been identified to draw that conclusion.

 

Edited by David H. Lipman
Spelling, Grammar and Clarification
Link to post
Share on other sites
PatFenis

PatFenis

Posted
  • Author
Posted
1 minute ago, David H. Lipman said:

The OS marks the construct as a part of the System and is Hidden.

This is not a virus.  That's a faux conclusion.  In fact on 99% of malicious files calling it a "virus" is a faux conclusion.  The terminology "virus" is overly used and very much abused.  All viruses are malware but not all malware are viruses.  the vast majority of malware are trojans.  to be a virus the malicious code must be able to self replicate.  That is to be a virus the code must be able to spread from "file to file" or "file to system" or "system to system" or "system to file" autonomously.  Trojans need assistance to spread.

Malware does not create the Recycle Bin.  It is an Operating System Construct.

You stated " its somehow associated with virus ".  No malware has been identified to draw that conclusion.

 

13 minutes ago, David H. Lipman said:

Please reference:  Recycle Bin

 

Ok. But what could couse all this problems?  What else should I do to normally start windows. Im writing from my friends PC atm because I just cant control mine. Cant even write because something is changing my letters, exiting pages, re opening etc. The more Im logged , more things are broken.

Link to post
Share on other sites
PatFenis

PatFenis

Posted
  • Author
Posted

Desktop computer . Well even after reinstall, problem is still the same. I explained all exact problems. Random tabs, pages and folder openings. Deleting, writing, Cd rom openning, shutting down PC. After reinstall of windows it writes name of PC , puts password and dont let me change anything. Can it be possible that it infiltrated the bios? 

Link to post
Share on other sites
David H. Lipman

David H. Lipman

Posted
Posted (edited)

None of those symptoms are from malware.

Malware is either stealthy such that it can perform the objective of the payload in secrecy for as long as possible or is self evident, such as the subtype of trojans called "adware", by Pop-Ups, consistent redirection to specific sites, etc.

There is a subtype of semi-malicious utilities that are classed as "Jokes".  They may open a  CD/DVD drive, etc.

There is no malware that resides in the BIOS at this time.

If you think you are truly infected we will close this thread and you'll create a new post requesting that you need assistance in verify if your PC is infected or not.  In that post, do not post any conclusions.  Just post that you request assistance in verifying your system and nothing else.

 

Edited by David H. Lipman
Spelling, Grammar and Clarification
Link to post
Share on other sites
PatFenis

PatFenis

Posted
  • Author
Posted
9 minutes ago, David H. Lipman said:

None of those symptoms are from malware.

Malware is either stealthy such that it can perform the objective of the payload in secrecy for as long as possible or is self evident, such as the subtype of trojans called "adware", by Pop-Ups, consistent redirection to specific sites, etc.

There is a subtype of semi-malicious utilities that are classed as "Jokes".  They may open a  CD/DVD drive, etc.

There is no malware that resides in the BIOS at this time.

If you think you are truly infected we will close this thread and you'll create a new post requesting that you need assistance in verify if your PC is infected or not.  In that post, do not post any conclusions.  Just post that you request assistance in verifying your system and nothing else.

 

Thx, will do. You can close this thread.

Link to post
Share on other sites
  • Root Admin
AdvancedSetup

AdvancedSetup

Posted
  • Root Admin
Posted

Glad we could help. :)If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.

  I accept