A Fairly advanced spyware issue.

Microsoft Windows xp home sp2
September 24, 2009 at 19:00:34
Specs: Windows XP
Hey guys,

I've done a ton of tech support and the like, and usually a good Hijack This or Spybot scan takes care of pretty much any issues a PC has, but this is really getting to me.

So here's the story - my beloved girlfriend was trying to watch a video online and ended up installing a "codec" that was needed to watch it. She got the memory dump BSOD, restarted, and got another one.

The only new process that runs appears to be called 'b', which I've msconfig'ed the hell out of startup. I also ran CCleaner, which probably didn't do anything, but what the hell. Anyways, my computer runs fine now, although startup is a bit slow.

Here's the killer: Even in Safe Mode, doing any kind of Spyware/Virus Scan is futile, because the program is automatically closed. And, get this - it's also uninstalled (almost completely, too). Also, system restores never can be completed.

Finally, here's the link to the site that got her: http://answers.yahoo.com/question/i...

The first link provided is the culprit - I don't know if that might help someone, but there it is.

Thanks in advance,
Brandon


See More: A Fairly advanced spyware issue.

Report •


#1
September 25, 2009 at 03:36:06
It seems you have b.exe , read this post ,

http://www.computing.net/answers/se...

......


Report •

#2
September 25, 2009 at 08:27:12
You should scan your computer with Spyware Doctor. Download free version from Google Pack website:
http://pack.google.com/intl/en/pack...


_____________________________________
http://cid-556a72d9038a7868.spaces....


Report •

#3
September 25, 2009 at 08:49:38
Hi,

Spyware doctor is not a good software.
Pc tool (editor of SpywareDoctor) uses some marketing technics who are ... unworthy of a serious editor : Fake security blogs.
On top of that, this softaware is not powerful ...
(He demands to pay something to disinfect your machine)

@+

Sorry for my future orthographic faults, English is not my mother tongue ;=)


Report •

Related Solutions

#4
September 25, 2009 at 12:58:37
Thanks for the hand. B.exe was found and deleted. Cheers!

Report •

#5
September 25, 2009 at 14:19:44
hmmmm....are you sure it is gone? If not post back and we'll get you running properly again

Some HELP in posting on Computing.net plus free progs and instructions Cheers


Report •

#6
September 25, 2009 at 16:23:41
You're right. It's not gone. Scanners still crash.

Report •

#7
September 25, 2009 at 16:31:17
AH, I figured so.
From what I know B.exe is a rootkit infection. You may want to try unhackme:
http://www.greatis.com/unhackme/dow...
It's a fully functional 30 day trial that will remove your infections.

I would suggest using the beginners guide on the left of the download page and doing all the scans untill the slate is clean. Any questionable threats, post them back and we'll let you know the what to do with them.
Good Luck

Some HELP in posting on Computing.net plus free progs and instructions Cheers


Report •

#8
September 25, 2009 at 17:11:28
I downloaded and installed the program. As with all of the other programs, the infection shut down the program after a matter of seconds and made it unusable.

I don't think this can be removed with a program.


Report •

#9
September 25, 2009 at 17:40:11
Boy, that has me rattled too! If you could get unhackme to work I'm sure you could remove the problem.

Persistance will work. Try other scanners like Trojan Remover, see if that one loads up and works:
http://www.simplysup.com/tremover/d...

Eventually there will be light at the end of the tunnel.

Some HELP in posting on Computing.net plus free progs and instructions Cheers


Report •

#10
September 25, 2009 at 17:45:54
If you can still access your PC I would suggest that you save all your important documents, pics, etc to CD's DVD's or Thumbdrives

If worse comes to worse you could try a parallel install of XP home (if you have an XP Home disc) It will warn you it's not good to put 2 operating systems on the same partition...BUT you can do it.
I've done that many times luckily not losing anything. Then you could get the PC running and get your valuable files saved so that you could do a full reformat and install if your problem can't be rectified.

Some HELP in posting on Computing.net plus free progs and instructions Cheers


Report •

#11
September 25, 2009 at 20:47:20
I always keep my files backed up on an external HD.

The strange thing is that the computer runs perfectly, but malware scanners don't work. Aside from that, there's no CPU leakage or wasted RAM to speak of. It's annoying to know it's still there, but it's not really harmful so far... I'll keep trying, but I was hoping this was a well-known bug that I'd never encountered.


Report •


Ask Question