Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
I've tried for the past two months to get rid of a virus that has been plauging me so I decided to get some outside help. This virus basically takes a screenshot of my screen every minute or so. Normally I wouldn't mind this but when it takes a screenshot, it replaces whatever I have on clipboard. Anyone know what this is? how to get rid of it?
It helps to give the name of the virus.
What have you tried to get rid of it?
Have you tried running your AV in 'SafeMode'?
Tried an online scan?
0 
i don't know the name of the virus. i've ran a symantec scan, adaware, spybot search and destroy, and microsoft spyware scan. I haven't tried running adaware in safe mode, didn't know you could. i'll try though. which online scans would you recommend?
0
How have you determined that the problem is caused by virus?
Give me ambiguity or give me something else
0
it acts like a virus but i'm not sure that it's a virus. it could be something else but whatelse could it be?
0
That's a very good question. It just seems that whenever someone encounters something in Windows that they don't understand, they immmediately cry "virus!"
If multiple scans by different AV software fail to find one, the chances are it's not.
Trojans and adware are not necessarily going to be detected by AV - frequently you need to scan for those separately.
I'm not sure that I understand your description of the symptoms - the contents of the clipboard are replaced? I would tend to suspect an installed program, either misbehaving or performing contrary to expectations. You might check running processes with CTRL-SHIFT-ESC or else examine the startups with msconfig to see if there is any clue there.
Give me ambiguity or give me something else
0
i couple spyware, trojans, and true viruses into one category: viruses. i had the problem, spent 2 months trying to get rid of it, formatted my computer, and it's still there. sounds like some malicious script to me. maybe a boot virus?? and it basically takes a screenshot (same as pressing the "prt sc" button) every minute or so. i've looked at my running processes, i've looked at my startup processes. i'm not a novice, i just can't get rid of this thing. it might be piggy backing on another process like explorer
0
Tim, There are tools out there that will reveal the spyware or at least most of it.
Hijack This is a good one and can help identify the bogus files but usually you need someone to help you through the process. There are some tools to help read your HT log but usually don't help get rid of the problem files.
You can download Hijack This at this link http://www.tomcoyote.org/hjt/ then place it into a folder of it's on, such as C:\HJT, so that back up copies can be made and not clutter your desktop or other folders and the backup copies of deleted items can be easily located if needed.
Once saved double click HijackThis.exe, and press "Scan". When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, Ctrl-A to Select All, and copy its contents into the text editor.Do not fix anthing yet. Let someone review your log. ---jabuck
0
"i couple spyware, trojans, and true viruses into one category: viruses"
You may if you wish, but that wouldn't be accurate, and there are different strategies for detecting and removing each.
It doesn't really sound like malicious software, and boot virus are generally readily detectable by AV. HJT! might give you some indication, sure
Give me ambiguity or give me something else
0
i ran hijack this before i formatted my computer but it came up with nothing (besides what's supposed to be there). same thing happened this time. I tried the panda scan, it didn't find anything. and jboy, you're right, in general you shouldn't group them but i have no idea what the hell this thing is. if i had to place my money on something, i'd say it was back oriface 2000.
0
Collectively that stuff is know as malware for easy reference, but they are different things and need to be treated as such in order to be dealt with.
Taking screenshots doesn't sound like it serves any useful or malicious purpose
13. How can I tell if BO2K is running on my machine?You will probably want to check your RunServices and Run registry keys as well as your startup groups to make sure that there isn't anything in there that you didn't specifically put in there (Good idea regardless!).
Give me ambiguity or give me something else
0
no luck. thank you everyone for your help but i think i'm going to format it again because new problems have arose.
0
If you ever do make a determination, post back. All I can say is that it doesn't sound like any malicious program I'm aware of, nor has anything significant been detected by the various scans you've performed.
Give me ambiguity or give me something else
0  |
 Absolutely NO PC anonymit...
|
E mail to myself ??
|
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
