really bad worm problem

overeem

Beta member
Messages
5
so usually i don't open stuff that people give me, but last night i did like an idiot.

first off i just want to remind i'm going to sound retarded because i don't know anything about computers except how to use one.

so first he made little pop up messages to talk to me
he could see everything on my screen that i looked at, for instance he was like "is that a pic of your gf as your wallpaper?"
and when i opened my mcafee antivirus he saw and told me it wouldn't do anything, which it didn't.

he then turned my webcam on.... idk how but he did.

second i have a feeling he hacked into more because he knows where i live and whatnot my name age, i have a feeling he just hacked my facebook.

i turn off my internet so he can't go in but i hate this! when i turn my task manager on i see a chain of programs called crss.exe, dwm.exe, rundll32.exe, and there are three of those. i can't delete them and i don't know what to do :[

so if someone could help me that'd be really helpful, i have my laptop on next to me so if you guys need some further details i'll cooperate and whatnot
 
Sounds like a good trojan, or root-kit.... Though he is right Mcafee won't help much...
You could try Avast, they have a great anti-virus system.. If you choose to do a boot scan it will be more likely to remove it... Also Adaware AE would be a great one to get, as they do scan for root-kits.
If this still doesn't do anything for you, I would suggest something like a system restore, or TRK (Trinity Rescue Kit ), or some other live scanner...
 
Sounds like a good trojan, or root-kit.... Though he is right Mcafee won't help much...
You could try Avast, they have a great anti-virus system.. If you choose to do a boot scan it will be more likely to remove it... Also Adaware AE would be a great one to get, as they do scan for root-kits.
If this still doesn't do anything for you, I would suggest something like a system restore, or TRK (Trinity Rescue Kit ), or some other live scanner...

the program is encrypted so would that stuff work?
 
One of the best anti malware scanners you can get is Malwarebytes' Anti-Malware. Give that a shot to see if it can rid you of that proggy that was installed.

What operating system are you using?


It sounds like he may be exploiting the NetMeeting Remote Desktop Sharing service. In XP, click Start > Run. Type services.msc in the box and click OK. In the window that pops up, scroll down to NetMeeting Remote Desktop Sharing, right click it an select Properties. You can then stop the service and set it's Startup type to Disabled

 
Atomic - Malwarebytes does not scan for root-kits... Plus they do not scan anything designed to infect 64bit systems... Nor does it run on 64bit OS's...

overreem - Sadly enough, most anti-virus products do not scan encrypted software... I would say Adaware may still be worth a try... Otherwise, Spyware Terminator might pick it up.. But outside of those two, System Restore is going to be the best way... Outside finding the file it's self and deleting it.. But if it is polymorphic, or anything similar, it could be spread out to many files..
 
Malwarebytes' Anti-Malware does scan for rootkits form what I understand, but as with most any scanner, it needs to be run in safe mode to get at them.

He could also run HijackThis and post the logfile here.
 
HiJackThis... That is so outdated... Plus if he wants to post a summery, Spyware Terminator provides much better information then HiJackThis...

As for MalwareBytes, when I went to their site, they did not at all reference root-kits... They simply referenced spyware and malware... Though I wish it was for 64bit systems or at least compatible with them... I have wanted to at least test it out, for the kicks and giggles of it... but I only have 64bit vista...
 
Your right it is... Personally though, I find it nearly useless on any windows system above 2k..
 
Back
Top Bottom