|
|
The Bar For non Automotive Related Chat |
|
Thread Tools | Display Modes |
08-11-2007, 02:15 PM | #31 | ||
XR5 Pilot
Join Date: Dec 2004
Location: Perth, Ex NSW
Posts: 1,455
|
Sounds to me like you may have got a USB born virus.
They hide in .inf script on the Host drive until it is "awoken" when plugged into the Machine. What it then does is piggyback out on your windows services ports to call a parent server somewhere out there online and download any of the virus files you may try and delete. In addition to that, it may also hide in your .dll files within the System32 directory protecting itself behind windows' system file protection failsafe. A couple of programs I can recommend are Hijackthis www.hijackthis.de ...follow the prompts and copy and paste the log the program generates onto the website and it will analyse it with the most up to date definitions it has. It may alert you to some nasties hiding on your machine. File Unlocker is also a nifty tool to delete protected files (only if you're sure its the right *bad* file. Disable system restore as others have said as it may well hide in the restore libraries on your machine. Go into safemode to give to the best possible chance at deleting the little critters. May also be worth while running a rootkit scan on your machine. (Available in Beta from Mcafee and a few other Big name AV companies) We use a customised version of Mcafee here at work and my company's security ops team work very closely with them to get definitions pushed out to remedy stuff that we come across in our daily travels. It works a treat. If all else fails, blow away the bastard with a format :P
__________________
'08 Ford Mondeo XR5 in Thunder |
||
08-11-2007, 06:55 PM | #32 | ||
Starter Motor
Join Date: Nov 2007
Location: Port Lincoln
Posts: 1
|
Hey man, scary ... had exactly the same problem happen 2 days ago!!!!! Been on and off the phone to microsoft trying various solutions and finally got to the bottom of it. It was a "Trojan" malicious program and after downloading 3 different security and clean up programs I was finally put on to one that worked, dont know how to give you a link for it but it is called SmitfraudFix and you should be able to find a free download ( unless someone else has a link...). Once installed you need to reboot your computer in "SAFE MODE" - just tap F8 whilst it is rebooting, and then select safe mode from the menu. Open SmitfraudFix and select #2 from the menu.When asked if you want to clean registry answer YES. If 'wininet.dll' is infected ( it will tell you ) click YES to replace with clean version. when program is finished simply reboot in normal mode and you should be all sweet.
By the way if you can tell me how to create/copy a link I can give you the exact program I used. Good Luck. P.M. me If I can help anymore. |
||
08-11-2007, 07:07 PM | #33 | ||
Regular Member
Join Date: Dec 2005
Location: Victoria
Posts: 384
|
Save all your documents.
Wipe your Harddrive completely and start afresh. |
||
08-11-2007, 07:22 PM | #34 | |||
Banned
Join Date: Dec 2005
Location: brisbane
Posts: 2,039
|
Quote:
|
|||
08-11-2007, 09:13 PM | #35 | ||||
www.TUFFCARPARTS.com
Join Date: Feb 2006
Posts: 5,221
|
Fixed!!! A huge thanks to everyone for all the advice, VERY much appreciated!
Quote:
Quote:
__________________
http://i1233.photobucket.com/albums/...psc203b7b1.jpg |
||||
08-11-2007, 09:25 PM | #36 | |||
let it burn
Join Date: Feb 2006
Location: QUEENSLANDER!!!!!
Posts: 2,866
|
Quote:
You sure you got CClean, and not RegistryCleanFix which on google comes up as 'CCleaner free download' when you google CClean? If you look at the link it is RegistryCleanFix.com not CClean, and is the first google hit. This is the one you want. CClean |
|||
Thread Tools | |
Display Modes | |
|