Create an account

Very important

  • To access the important data of the forums, you must be active in each forum and especially in the leaks and database leaks section, send data and after sending the data and activity, data and important content will be opened and visible for you.
  • You will only see chat messages from people who are at or below your level.
  • More than 500,000 database leaks and millions of account leaks are waiting for you, so access and view with more activity.
  • Many important data are inactive and inaccessible for you, so open them with activity. (This will be done automatically)

0Day Forums Hacking & Exploits Antivirus & Protected I've got a Problem

Thread Rating:
  • 599 Vote(s) - 3.47 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Options
I've got a Problem

Offline rocking815143


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Aug 2016
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#1
07-31-2011, 08:31 AM
Okay White Hat's, my Problem is some sort of malware.

-when I log into my PC, a cmd window opens and ask me to
delete system32

-now I'm confused, because I found @ Google that system32.exe
could be a malware, because I have Vista, and there is no system32.exe
I think, Vista has explorer.exe

-I scanned for Malware with Avira and HiJack.
Result: 0 Malware

-It's horrible, why would cmd autostart and ask for deleting
system32, if system32 is Virus, or is it not a virus?

It's quite a bit confusing for you, I know, but everyone who understands
my problem and solves it, get +rep from me.

thanks
Reply

Offline glyndwrddxjxxqy


Member
*
Member
Posts: 0
Threads: 0
Joined: Feb 2017
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#2
07-31-2011, 09:08 AM
Ahh this is a little batch virus i think. I will write a guide to remove asap.

Download following and scan.

(Remember not to delete you own stuff if you got anything that is considered a virus.)

[link=http://www.surfright.nl/en/downloads]Hitman Pro 3.5 [/link]

[link=http://www.malwarebytes.org/products/malwarebytes_free]Malwarebytes Anti-Malware Free[/link]

[link=http://security.symantec.com/nbrt/npe.aspx?lcid=1033]Norton Power Eraser [/link] (Has false positives if you have cracked software/homemade shortcuts etc.)

In vista try looking at these paths (you might need to enable ''show hidden files'')

C:\Users\[USERNAME]\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

C:\Users\AllUsers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

Try this.

Go to Regedit.

For Local Machine-
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce

For Current User-
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce

Or this.

HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\WinLogon\

If none above works.

[link=http://is.gd/NItN5O]GMER - Anti-Rootkit Tool[/link]

If this doesn't solve the problem then pm me. But im 99,0% sure it will :thumbs:
Reply

Offline surmising233496


Member
*
Member
Posts: 0
Threads: 0
Joined: Jun 2017
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#3
07-31-2011, 09:46 AM
Quote:(07-31-2011, 01:16 PM)Pwnisher Wrote:

[To see links please register here]

You're awesome, gave me a full Tutorial for that and the tools are very usefull too.
This little batch and some other malware I found with this tools are deleted.

+rep :wink:

Thanks. And im glad to help.
Reply

Offline merkl


Luxury
*****
Luxury
Posts: 0
Threads: 0
Joined: Apr 2018
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#4
07-31-2011, 09:48 AM
You're awesome, gave me a full Tutorial for that and the tools are very usefull too.
This little batch and some other malware I found with this tools are deleted.

+rep
Reply

Offline statuette564


Valued member
***
Valued member
Posts: 0
Threads: 0
Joined: Aug 2022
Reputation: 0
Level: inf [Level]
Total Points: inf
Rank nan / 1
100% to upload Level
Rank
Activity inf / 1
99% to upload your Rank
Activity
Experience nan
100% to upload Experience
Experience

Points: 50
#5
07-31-2011, 09:49 AM
send a private message to me, if you still need help in about 4 hours. i'll be able to help you, oh and DONT delete the system32 file. system32 is good (im sure, i dont know vista all too well)
Reply

« Next Oldest
Next Newest »


Forum Jump:


Users browsing this thread:
1 Guest(s)

©0Day  2016 - 2023 | All Rights Reserved.  Made with    for the community. Connected through