Virus so bad I can't really run anything

Microsoft Windows xp home edition sp2b
April 1, 2010 at 21:25:06
Specs: Windows XP
I can't do anything, I can't cntrl alt delete, I can't run command prompt, and I cannot run msconfig or really any .exe file with this virus (or malware). It's one of those where it has a fake antivirus that wants you to buy it. Basically the only way I have gotten anyware was to run process explorer very early when I start up before the virus can stop closing every window I try to open, and I found a few suspicious processes to kill. The big one I've deleted was some folder that was created today that was located in my Local Settings\Application Data\csmkjwvwk\xjegjvotssd.exe. I've deleted that folder, but left it in the recycling bin just in case I actually needed it.

I think the virus is still there though, when I try to run exe's I still get a "Security Alert" Revocation information for the security certificate for this site is not available, do you want to proceed?"

If I click on this the virus will probalby start up again and take over my computer. Please help me!! I would reformat but I just finished some great recordings (music) and I would really like to at least bounce them to disk before reformating. Is there anything I can do to recover my computer?

See More: Virus so bad I cant really run anything

Report •

April 2, 2010 at 01:24:23
xjegjvotssd.exe [random]tssd.exe is a sign of "Antivirus Suite" malware. Please follow removal instructions here:

Report •

April 2, 2010 at 06:10:58
Gabriot, Follow the instructions in Response Number 1 in the thread at the link below. It should restore your exe file association.


Report •

April 3, 2010 at 23:43:20
Thank you all I have fixed it (I think) now. I guess my follow up question is -- is there any real way to protect against this "ransomware" other than just using the internet? I mean I never downloaded anything, all I was doing was looking at random videos on sites, I was using Firefox, and also I never ever hit one of those bars at the top that said "allow" or whatever.

I mean within a matter of seconds from visiting some random site, it was somehow able to download enough s--- to do so much to my computer, I mean it disabled task manager, msconfig, changed my internet options ot be a proxy, installed a fake av program w/ a GUI, installed fake popups to appear of many various origins, disabled the use of most my already existing antivurs and spyware cleaners, installed s--- deeply embedded in my hidden system folder, changed multiple registries, and probalby more and more s--- I don't know about it. Man, wouldn't it be great if stuff you actually wanted to install was this effecient!

But seriously, I don't understand how just visiting a site can do this to your computer. There has to be SOMETHING I can do that would block this bulls--- from happening again?

Report •

Related Solutions

April 4, 2010 at 06:19:42
We may can help you secure your system, run this scan that will help find bad files and help to see what needs to be updated on your system.

Download DDS and save it to your desktop.

Disable any script blocker if your Anti-Virus/Anti-Malware has it.
Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.
Then double click dds.scr to run the tool.
When done, the DDS.txt will open.
Click Yes at the next prompt for Optional Scan.

When done, DDS will open two (2) logs:
1. DDS.txt
2. Attach.txt (do not zip just copy/paste)

Save both reports to your desktop then post them please.

Report •

Ask Question