So I, er....went to a porn site and got some bug on my comp. When I startup and get to XP, my background sreen turns blue with beetles crawling across the screen. The beetles disappear and then a a yellow sign comes up saying to check for virii and spy bots. I have done so.
Same thing comes up when I reboot.
I also get these 2 messages:
Cannot find script file C:\\documents and settings\\xxxx\\local settings\\temp\\.ttp.tmp.vbs
C:\\windows\\system32\\.lphc3rrj0e34g.exe is trying to connect to windows update.
(which I did not allow)
I did a google search for both items but no real informations. So far can access everything. Anyone here run into this situation before?
I have used Spybot and Adaware to clean and used Avira antivirus also.
Infected
-
CDN_Merlin
- DBB_Master
- Posts: 9781
- Joined: Thu Nov 05, 1998 12:01 pm
- Location: Capital Of Canada
-
Krom
- DBB Database Master
- Posts: 16138
- Joined: Sun Nov 29, 1998 3:01 am
- Location: Camping the energy center. BTW, did you know you can have up to 100 characters in this location box?
- Contact:
Yup, pretty much this entire situation could have been avoided if you hadn't used IE (or searched for free porn either 
).
Cleanup is going to be a bit of a chore, since you won't know how much stuff it worked its way into. Just opening up msconfig and removing the virus startup entries only works if you keep very tight control over what starts and runs on your machine and can identify what every startup entry does like I can. Also it doesn't work against viruses that embed themselves in other ways, such as behaving like a shell extension to start itself or a IE activex control. I would also load up AVG free and then run a full system scan in SAFE MODE, and then repeat the same thing with antivir free (both of them uninstall quite easily afterwards). Spybot and adaware won't hurt either, just make sure you use safe mode, it makes it a lot easier to keep the bugs out of memory so the files won't be locked on the drive.
After you nuke all the files, all that is left is cleaning up the registry entries (if any) that point to them. If you see some error at startup about a missing file, write down its name and location and search the registry for the entry that tried to start it then remove it.
).Cleanup is going to be a bit of a chore, since you won't know how much stuff it worked its way into. Just opening up msconfig and removing the virus startup entries only works if you keep very tight control over what starts and runs on your machine and can identify what every startup entry does like I can. Also it doesn't work against viruses that embed themselves in other ways, such as behaving like a shell extension to start itself or a IE activex control. I would also load up AVG free and then run a full system scan in SAFE MODE, and then repeat the same thing with antivir free (both of them uninstall quite easily afterwards). Spybot and adaware won't hurt either, just make sure you use safe mode, it makes it a lot easier to keep the bugs out of memory so the files won't be locked on the drive.
After you nuke all the files, all that is left is cleaning up the registry entries (if any) that point to them. If you see some error at startup about a missing file, write down its name and location and search the registry for the entry that tried to start it then remove it.
First of I don't use IE, only Forefox...so there
Removed the one start up entry with msconfig. Will try a safe mode virus scan later as I'm not sure if the blue screen has message on it as I put a background screen image up as a test. Old background screen disappeared when bugs showed up. New one stays up.
Removed the one start up entry with msconfig. Will try a safe mode virus scan later as I'm not sure if the blue screen has message on it as I put a background screen image up as a test. Old background screen disappeared when bugs showed up. New one stays up.
