I think I have a virus - Calgarypuck Forums - The Unofficial Calgary Flames Fan Community

rubecube · 09-29-2010, 04:23 PM

So pretty much just as the title says. I'm positive I have a virus but for some reason avast and other anti-virus programs aren't detecting it. My PC is running at about 80% physical memory and the only program I have open is firefox. I did a HiJackThis log and nothing fishy shows up. Any suggestions?

nik- · 09-29-2010, 04:30 PM

Nuke and pave.

alan21 · 09-29-2010, 04:32 PM

I have no suggestions or solutions to your problem but the Canucks logo is a nice touch.

Rathji · 09-29-2010, 04:52 PM

Try Hitman pro 3.5 and Malware Bytes.

If they don't catch it, then the easiest thing to do is backup your data and format.

kirant · 09-29-2010, 05:48 PM

As Rathji suggested, run your computer in safe mode and use Malware Bytes (Full search).

I've found it gets rid of stuff 80% of the time.

Hack&Lube · 09-29-2010, 06:02 PM

Malwarebytes misses a lot for me.

Get SuperAntiSpyware http://www.superantispyware.com/
And DoctorWeb CureIt http://www.freedrweb.com/cureit/

Rathji · 09-29-2010, 06:37 PM

Quote:

Originally Posted by Hack&Lube

Malwarebytes misses a lot for me.

Get SuperAntiSpyware http://www.superantispyware.com/
And DoctorWeb CureIt http://www.freedrweb.com/cureit/

Malware Bytes and Hitman Pro together is the key.

Dr Web's CureIt is really good as a standalone scanner though.
.

sclitheroe · 09-29-2010, 11:16 PM

Quote:

Originally Posted by Hack&Lube

Malwarebytes misses a lot for me.

Get SuperAntiSpyware http://www.superantispyware.com/
And DoctorWeb CureIt http://www.freedrweb.com/cureit/

Just out of curiosity, does downloading free AV software from Russia give you pause at all?

I guess Kaspersky is from Russia too, but free anti-malware software from Russia?

What kind of stuff has it found that MalwareBytes didn't?

rubecube · 09-29-2010, 11:31 PM

Weird, I'm down to 60% tonight with the same programs open. Although that does seem high for only running firefox and avast.

Roast Beef · 09-29-2010, 11:36 PM

If you have a lot of add-ons installed for Firefox that could be part of the problem.

sclitheroe · 09-29-2010, 11:43 PM

Memory utilization is not a very reliable method of evaluating a potential malware infection. Maybe the AV utils you used found nothing for a reason?

GoinAllTheWay · 09-29-2010, 11:48 PM

Quote:

Originally Posted by sclitheroe

Just out of curiosity, does downloading free AV software from Russia give you pause at all?

flamesrule_kipper34 · 09-29-2010, 11:55 PM

Spybot.

Thor · 09-30-2010, 01:47 AM

Could try security task manager, been a while since its properly updated but it can look at your tasks and give you an indication of malicious in memory programs.

http://download.cnet.com/Security-Ta...-10246545.html

If nothing is being found in safe mode with malwarebytes I'd be thinking its not a virus issue. Is it just firefox that is hogging resources for you and what is your operating system and ram total?

OilKiller · 09-30-2010, 06:19 AM

Quote:

Originally Posted by Rathji

Malware Bytes and Hitman Pro together is the key.

If these two can't find it, then odds are, it's not there. The other suggestions are OK programs, but these two are the ones I would go with.

rbochan · 09-30-2010, 06:40 AM

It might be a tumor.

Hack&Lube · 09-30-2010, 09:42 AM

Quote:

Originally Posted by sclitheroe

Just out of curiosity, does downloading free AV software from Russia give you pause at all?

I guess Kaspersky is from Russia too, but free anti-malware software from Russia?

What kind of stuff has it found that MalwareBytes didn't?

I don't recall off hand, but there were several occasions about 1-2 years ago. Sometimes it takes a Russian to beat the Russians. DrWeb is also good to have in case you get something nasty which is very good at blocking most antivirus' from running as DrWeb always downloads as a random filename and has a very good emergency mode in case your desktop has been locked out. I usually just run them from another OS on my dual boot anyway.

One day I will learn the hard way for my laziness and then just run virtualizations.

Yeah_Baby · 09-30-2010, 04:29 PM

Quote:

Originally Posted by rbochan

It might be a tumor.

It's not a tumaaah.

Weiser Wonder · 09-30-2010, 04:37 PM

Quote:

Originally Posted by rubecube

Weird, I'm down to 60% tonight with the same programs open. Although that does seem high for only running firefox and avast.

Back up your files and run Combofix:

http://www.bleepingcomputer.com/comb...o-use-combofix

I've done with my computer with no problems. It works the best.

sclitheroe · 09-30-2010, 06:30 PM

Quote:

Originally Posted by Weiser Wonder

Back up your files and run Combofix:

http://www.bleepingcomputer.com/comb...o-use-combofix

I've done with my computer with no problems. It works the best.

I’d use combofix to remove an identified, but otherwise unremovable infection. It’s not something you want to be routinely using.

Generally, if I had a client that had a piece of malware that could only be handled with combofix, I’d recommend a full reinstall after using combofix to stabilize the box long enough to do a proper inventory and backup