Blake

Hey Major Geeks! My name is Blake! I'm extremely novice when it comes to computers. Originally, I found this site because I was looking for ways to remove some sort of infection I have on my computer. I looked around for a while, and liked the site as a whole. The admins, mods, and posters here seem pretty knowledgeable about computers and whatnot, so I feel pretty confident in asking for help. I'm not sure how to go about telling you what virus or infection or whatever it is that I have, so I'll just describe it the best I can and we can go from there.

(I looked at the readme and runme thing, it does not make one bit of sense to me).

I'm almost positive that it came from something I found on my computer called AV Security Suite. I searched that on Google and found out others have had related problems with that program randomly showing up (probably from downloading from a bad source or whatever). I then searched how to remove it, and most of it costs money or is just beyond me (hence the reason I am here!). The virus doesn't allow me to run anything but the Internet. I play World of Warcraft and Warcraft 3 custom games; I can't now. I have Skype, MSN Messenger, AIM, and Myspace IM; I can't run any of those. I'd venture a guess that about 90% of what I have on my computer I can't run. I just spent about half an hour to see what I could run, and the Internet and some petty programs were all I could manage. This virus is extremely annoying, because out of the random it will open IE and go to porn websites or male enhancement websites. It also tells me every minute or so that I need to activate AV Secuirty Suite to remove all these viruses. Well, I wasn't born yesterday, or the day before that; I didn't download this program, and I'm not going to use it blindly. I guess what I'm asking is what you guys think I should do about this. One more thing: whenever it updates me telling me to actiavte this virus scan, it says:

Title: Antivirus Software Alert

INFILTRATION ALERT
Your computer is being attacked by an internet virus. It could be a password-stealing attack, a trojan-dropper or similar.

DETAILS
Attack from: 197.218.27.202, port 26467
Attacked port: 65519
Threat: Win32/Nuqel.E

OR

DETAILS
Attack from: 112.137.16.221
Attacked port: 11089
Threat: BankerFox.A

It then asks if I want to block. I say no every time.

I apologize for the extremely long post, but I wanted to be specific as possible so my problem could be solved. If I have to take it in to the local computer repair, fine. I just wanted to see if there were any ways I could do it myself, before spending any money. I appreciate any helpful replies, I also appreciate any knowledge taught by replies.

Thanks!

maledict

 

Hello and welcome to the forum! :wave It sounds like you are infected to me, and I suggest going through the Read and Run in the Malware sectiion forums. Do all scans and post all logs they ask you to. Then they will get back to you with details on what to do.

This link is to the "Read and Run" you need to do http://forums.majorgeeks.com/showthread.php?t=35407

I do not know what type of machine you are using windows 98, ME, Windows 2000, windows 2003, Windows XP, Vista?

Basically the link I provided the Read and Run is telling you to disable and uninstall all software you have including antivirus and your firewall(if using one). Because once you download the programs it can cause problems/may not work properly if you have your"protection running" while using this sites.

Step 2 in the link basically saying to open control panel and click add/remove where you remove programs from. And see if there are Viewpoint Manager (Remove Only)
Viewpoint Media Player
Viewpoint Toolbar
Viewpoint Toolbar (Remove Only)
If so (we suggest removing) this is just for cleaning purposes).

Next thing is ask you to do us get rid of/update your java. Some normal Java can let "infections" in through that way.. so they suggest updated sunjava.

If any of these are in your add/remove list
IBM 32-bit Runtime Environment for Java 2, v1.4.2
Java Runtime Environment 1.1
Java 2 Runtime Environment Standard Edition v1.3.1_02
Java 2 Runtime Environment Standard Edition v1.3.1_04
Java 2 Runtime Environment, SE v1.4
Java 2 Runtime Environment, SE v1.4.2_01
Java 2 Runtime Environment, SE v1.4.2_03
Java 2 Runtime Environment, SE v1.4.2_05
Java 2 Runtime Environment, SE v1.4.2_06
J2SE Runtime Environment 5.0
J2SE Runtime Environment 5.0 Update 1
J2SE Runtime Environment 5.0 Update 2
J2SE Runtime Environment 5.0 Update 4
J2SE Runtime Environment 5.0 Update 5
J2SE Runtime Environment 5.0 Update 6
J2SE Runtime Environment 5.0 Update 7
J2SE Runtime Environment 5.0 Update 8
J2SE Runtime Environment 5.0 Update 9
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 11
Java(TM) SE Runtime Environment 6
Java(TM) SE Runtime Environment 6 Update 1
Java(TM) 6 Update 2
Java(TM) 6 Update 3
Java(TM) 6 Update 4
Java(TM) 6 Update 5
Java(TM) 6 Update 6
Java(TM) 6 Update 7
Java(TM) 6 Update 8
Java(TM) 6 Update 9
Java(TM) 6 Update 10 thru Update 17

They suggest removing them they are out of date and you need to update it by going to the link at the top in step 1 saying to update sunjava.

Then they have the norton things then they have the Ccleaner (crap cleaner many call it). It cleans out your temps, historys and etc.. and even can clean out registrys. Many people use CCleaner because in many opinions its the safest for the "non smartest people" really cant mess up the computer with it. Download it from This is site and keep the settings it has on it and you should be okay.

So in the Read and Run Click the blue highlighted word CCleaner it will go to a page. In the middle "download locations" its just places you can click to download from them. So click any of them. Download CCleaner and run it like it says in the "read and run" Now run Ccleaner with the default options (that means don’t change anything) to clean out temporary files.
Only use the default settings on the Windows Tab and select Run Cleaner. Do not run any other options from other tabs.
Also it is highly recommended to login to all other User Accounts on the PC.
Run CCleaner on each account. This can greatly reduce scan time and log sizes from the later scanning you will do below.
If you don’t see Ccleaner’s link when logging into the other accounts, just go to the C:\Program Files\Ccleaner folder and double click on the ccleaner.exe file to run it. You can also create a shortcut to the file on the Desktop of your other user accounts to make it easier to run in the future

Now after your done doing some "house cleaning" its time to get to work. In the next part of the "read and run" Link I proved at the top. Located in a sticky in the malware forum.

Step 4 of the Read and Run part you need to find out what kind of version you got.

Then you will need to do the next thing and get hidden folders to show. Sometimes hidden folders can be an issue and they need to be shown while doing these scans.

so Click the How to view hidden, system files & folders! words and find your system"windows XP" is mine. Scroll till you find how to view hidden folders on YOUR system. So I would do the find hidden folder under windows XP. After you are done doing the show of hidden folders you can move on.

Next step is Use MSconfig to setup for Normal Startup Mode starting up in normal mode on a computer is the best way to do the scans and the best way to use your computer. Sometimes an infection will not let you start in normal mode and you can hopefully get into safe mode. But we suggest getting into "normal mode for the scans to run in" After done and started in normal mode you can move to the next thing.

Dealing with Startup Process Many times people have computers that are slow and takes a while to load things when starting a computer. Many times its programs starting up at log in. And this takes time/resources and can take a computer a while. So they suggest to look and go through and maybe taking items out of start up process to maybe make it faster for you.

Step 5 in the Read and Run section is Uninstall Malware via Add/Remove Programs highlighted bold words. This is a link(click it) this is a list of well known programs that are consider malware and need to be remove/deleted from a computer. While looking at this list.. you can open control panel - click add/remove list(where your programs you have installed are listed) and you can view that add/remove list on your computer and see if"any of the programs" on your computer is in the malware list. If so remove it and delete it! Sometimes infections will add/install/remove/change things without you knowing. I at one time went to a site and it automatically opened my thing and saved itself to my computer.

Step 6 of Read and Run

Step 7 My favorite part! In the read and run!

Finally you are now able to get to the cleaning procedures of this.

Now there are 4 links to different windows cleaning procedures

Windows 95, 98, or ME the 1st one
Windows 2000 or 2003 the 2cd one
Windows XP the 3rd one
Vista the 3th one

The 5th link at the very bottom is not something you do at this time. That is a link to alternative programs you can use to clean/use to protect your computer. Now the thing is you need to click the link at the bottom of what computer system you have.Mine is a windows XP so I clicked the Windows XP cleaning procedure.

Now once your in your in the right cleaning procedure section for your computer. Mine is Windows XP so Iam in Windows XP part. the Step 1 tells you to download programs Step 2 how to install and run them and after you run all the programs will will save "logs" from each scan and save to certain areas of the computer. And in Step 3 you will tell you you need to load those "logs" on the forum in the malware section and wait for help.

Now remember in the install and running of each program you need to save each program in its order it ask you to and location it ask you to. Then run them and install them, then it will ask you on some of the programs to "change' some features and check mark some/uncheck mark some. So make sure you do ask they say.

Just a reminder I suggest going to the actual link I proved at the top. Read and Run part of the Malware section and follow/read it from that part. I Just basically stated help on what to do in my reply to your question. So make sure you follow the link and you can read what I type for some help. If you need anymore help be sure to ask!

And finally I am sorry for typing a huge text and I am sorry if this does not make since/I suck at typing. So I am sorry ahead of time.

 

I have a Dell with Vista.

 

I've tried a lot this, and I literally cannot open any programs except for the Internet. I have no idea why, maybe he thought since he took WoW away he could at least let me surf the web? A lot of the time it's saying that the files are infected, and can't be opened.

 

Welcome, sounds like you've got your hands full there.

Silas laid it our pretty good. You can also copy the install files to a flash drive, just select save to that drive, but don't run it.

Then you can plug that stick into the infected machine and run it from there, per the directions given. I've done this several times.

But there is no quick and easy answer with these things, and the removal can be quite exhausting.

The alternative is to reformat/reinstall, with all loss of data.