Computer Infected 3 replies

Please wait...

Razgriz1928

Strength Through Progress

50 XP

26th October 2007

0 Uploads

1,694 Posts

0 Threads

#1 10 years ago

Alright so heres my story

Im one of the people who installed Kotf over a month ago and I'm having some problems. After installing KOTF I sensed something wrong with my computer. I installed all types of anti-virus scanners and some found other problems and removed them, yet my computer keeps freezing up. I even resulted to installing my old version of Norton Antivirus (2004 But Online Updates) and manualy scanning it didn't find anything, however, when I logged in it warned me of two harmful scripts, sprtcmd.exe and sprtsvc.exe and that these scripts were causing harm to my computer and needed to be stopped (I selected "stop these scripts" every time but they continued to run every time I logged on). After some research I found out that both were Dell Support files, and that virus's liked to sometimes hide in those sections of the computer so that the computer doesn't detect them. Sure enough I found the two Normal Support files and the two files that weren't supposed to be there. I deleted them both and even the support files just to be safe, but still no luck. I also seem to get this error message spammed every five seconds as well.

deskerrorsk1.th.jpgthpix.gif

If you can offer any help it would be appreciated.




MrFancypants Forum Admin

The Bad

217,298 XP

7th December 2003

0 Uploads

20,016 Posts

7 Threads

#2 10 years ago

If you PC is infected the best thing is probably to format and set it up so that it won't get infected again.

Make sure you download instructions and programs for making your PC secure before you format and safe them on a CD or USB drive. After formating install all the windows updates you can get, a good up-to-date virus scanner, Spybot Search and Destroy and disable all windows services that pose security risks.

If you want to manually remove infected files (not recommended as you might miss something) start with disabling windows restore as that is usually where a virus will create a backup.




>Omen<

Modern Warfare

50 XP

1st January 2005

0 Uploads

7,395 Posts

0 Threads

#3 10 years ago

LOL, good old Dell "support". I would guess the problem may be that you deleted the suspect files in the OS shell but not registry. It could also be still lingering in the Prefetch folder and Start Menu Programs list. A simple Search Assistant search will find it in the Prefetch and Start Menu, but not registry.

I don't however recommend manually editing the registry if you have no experience at it. Then again, since the main alternative via a simpler method is formatting the drive as suggested, it wouldn't hurt to try and find them in the registry (Edit>Find searches).

One simple way to do that without manually editing the registry might be to just download and use HijackThis, still one of the best and quickest malware detectors going. [COLOR=Blue]HijackThis Download[/COLOR]

Use the "Do a system scan and save a logfile" feature, then paste it here. [COLOR=Blue]HijackThis Auto Analyzer[/COLOR] The auto analyzer will tell you which files are questionable or suspect via varying levels of notification icons. You can then use the first page generated by the system scan to check which ones to remove. If in doubt on some of them (usually marked with a [COLOR=DarkOrange]?[/COLOR]), it's best to leave them or seek tech help from those whom know lots of common HijackThis entries.

Other notes, you said you "installed all types of anti-virus scanners", make sure when using AV tools you only have one at a time installed on your system. You need to thoroughly uninstall any AV program before installing another. Not doing so can cause problems.

Some good (and free) security tools are:

Ad-Aware a-Squared Avast! CCleaner Comodo HijackThis Sophos Spybot Windows Defender (If you use IE as your main browser)




Razgriz1928

Strength Through Progress

50 XP

26th October 2007

0 Uploads

1,694 Posts

0 Threads

#4 10 years ago

Alright thanks for the help. Ill try Hijackthis out.