Infected.

[Micron]

First of all, I'd like to apologize if I'm making this thread on a wrong section, I'm kinda new here and this one seemed the most appropriate.

Lemme get started. I'm actually really careful with whatever gets into my PC, but you can never be really careful when you share it with a brother and a mother. Anyway, a couple of days now I noticed my PC running slowly, and getting frequently stuck, I didn't really pay much attention though untill today, as I got home and turned on the screen there was some blablablabla.exe asking my permission, it seemed malicious so I denied access to check it but it continued to pop up by the time I denied it, hopefully closing it from the task manager worked. I checked it on the net and I found out this one was something about a Foxit Reader or something like that, I don't think either of my family members could be interested in smth like that although I don't even really know what it is. Anyway, I continued a bit my search and found out some applications were running on the task manager which I've never seen before. These applications were "215.exe", "lvnm.exe" which I checked on the net and surely are malware, and another one "5BB9D.exe" which seems like malware and I'm pretty sure it is but haven't seen anything related to it on the net.

So, I'd like and I would be really grateful if someone here could help me out on how to get rid of these stuff either by a trusted anti-malware program or even manually if he/she could provide me with a full guide on it. Please don't pass through this thread without helping if you really can, cos it's a bit annoying having my computer "crawling" and getting a porn site when clicking on a google link (yeah, happened like twice today).

Thanks in advance.

[enaberif]

Quote:

Originally Posted by Micron

First of all, I'd like to apologize if I'm making this thread on a wrong section, I'm kinda new here and this one seemed the most appropriate.

Lemme get started. I'm actually really careful with whatever gets into my PC, but you can never be really careful when you share it with a brother and a mother. Anyway, a couple of days now I noticed my PC running slowly, and getting frequently stuck, I didn't really pay much attention though untill today, as I got home and turned on the screen there was some blablablabla.exe asking my permission, it seemed malicious so I denied access to check it but it continued to pop up by the time I denied it, hopefully closing it from the task manager worked. I checked it on the net and I found out this one was something about a Foxit Reader or something like that, I don't think either of my family members could be interested in smth like that although I don't even really know what it is. Anyway, I continued a bit my search and found out some applications were running on the task manager which I've never seen before. These applications were "215.exe", "lvnm.exe" which I checked on the net and surely are malware, and another one "5BB9D.exe" which seems like malware and I'm pretty sure it is but haven't seen anything related to it on the net.

So, I'd like and I would be really grateful if someone here could help me out on how to get rid of these stuff either by a trusted anti-malware program or even manually if he/she could provide me with a full guide on it. Please don't pass through this thread without helping if you really can, cos it's a bit annoying having my computer "crawling" and getting a porn site when clicking on a google link (yeah, happened like twice today).

Thanks in advance.

Boot into Safe mode with networking
1) ComboFix
2) SuperAntispyware

[Squeetard]

And try Malwarebytes too if those don't work. Another one I've had success using is f-secure's online scan tool.

Most malware these days scrambles their executable's names now like that so you can't readily look them up and find cures.

[Micron]

ComboFix worked pretty good removing some minor problems. SuperAntiSpyware worked like a charm removing every single thing affecting my PC, which means I didn't have to use Malwarebytes, which is pretty good as well as I've seen.

Guys thanks a lot for your help, I wish I can help you too in the future on something. :)

[enaberif]

Quote:

Originally Posted by Micron

ComboFix worked pretty good removing some minor problems. SuperAntiSpyware worked like a charm removing every single thing affecting my PC, which means I didn't have to use Malwarebytes, which is pretty good as well as I've seen.

Guys thanks a lot for your help, I wish I can help you too in the future on something. :)

One reason I like SaS for is it has a "Heavily Infected" mode which will really scour and go deep into your system.

Combofix is a godsend as it cleans out so much of the typical stuff that people get infected with.

[Micron]

That's true. Although one thing I haven't figured out right now is how to uninstall ComboFix. I'm trying to do that combofix /uninstall but it doesn't seem to work, any solution to that?

[martincrow]

Combofix is really nice antimalware application available for online, after using it on your system, the main thing we all look for is to uninstall the program. I have used following steps mentioned on a site and it got removed from my system.
Go to start menu>>Run>>type combofix/uinstall and it will be cleared from your system.


e signature