Virus, posing as a flash player upgrade on web page,infected my sy

  • Thread starter Thread starter TomzToonz
  • Start date Start date
T

TomzToonz

It bypassed, disabled, and destroyed windows defender and then infected IE
7, Real player, installed 4 programs and reset some of my admin. options. I
finally removed the infecting virus and compomised programs and installed
another firewall, but now I can't get the Task manager to run at all. It has
this error message.."Task manager has been disabled by your administrator" I
can't find any way to enable it again, any help will be greatly
appreciated...!!
 
What is the name of the malware that attacked your computer?

How did you 'finally remove' the malware...and how do you know it was
finally removed?

Besides Windows Defender, what other anti-malware software were you
running on your unidentified version of Windows at the time your
computer became infected?
 
TomzToonz said:
It bypassed, disabled, and destroyed windows defender and then
infected IE
7, Real player, installed 4 programs and reset some of my admin.
options. I
finally removed the infecting virus and compomised programs and
installed
another firewall, but now I can't get the Task manager to run at all.
It has
this error message.."Task manager has been disabled by your
administrator" I
can't find any way to enable it again, any help will be greatly
appreciated...!!
Click to expand...

Does "it" have a name?

If "it" really *is* a virus, a firewall is the wrong tool to use.
Firewalls are good against some worms, but a true virus won't be
affected by a firewall. You need to get the proper tools to address this
problem.

First, you need to identify the malware. Have you tried Malwarebytes'
Anti-Malware (MBAM) - it doesn't target viruses, but there is a good
chance that this is not really a *virus* that you are dealing with.
Another one to try is SuperAntiSpyware.

If it really *is* a virus, you are going to need an antivirus program
(or other virus capable malware removal tool).
 
TomzToonz said:
It bypassed, disabled, and destroyed windows defender and then infected IE
7, Real player, installed 4 programs and reset some of my admin. options. I
finally removed the infecting virus and compomised programs and installed
another firewall, but now I can't get the Task manager to run at all. It has
this error message.."Task manager has been disabled by your administrator" I
can't find any way to enable it again, any help will be greatly
appreciated...!!
Click to expand...

Give this tool a shot -

XPQuickFix
http://www.technibble.com/xpquickfix-repair-tool-of-the-week/

" XPQuickFix is a small, freeware and portable tool designed to quickly
fix any restrictions and other errors that are often caused by viruses.
XPQuickFix can correct 25 common Windows XP problems such as enable the
Task Manager, enable Registry Editor, fix a CD autoplay and more. "



MowGreen
================
*-343-* FDNY
Never Forgotten
================

banthecheck.com
"Security updates should *never* have *non-security content* prechecked
 
From: "TomzToonz" <[email protected]>

| It bypassed, disabled, and destroyed windows defender and then infected IE
| 7, Real player, installed 4 programs and reset some of my admin. options. I
| finally removed the infecting virus and compomised programs and installed
| another firewall, but now I can't get the Task manager to run at all. It has
| this error message.."Task manager has been disabled by your administrator" I
| can't find any way to enable it again, any help will be greatly
| appreciated...!!

It wasn't a virus, it was a trojan.

Download, install, update and then execute, Malwarebytes' Anti-Malware
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
 
TomzToonz said:
It bypassed, disabled, and destroyed windows defender and then
infected IE 7, Real player, installed 4 programs and reset some of
my admin. options. I finally removed the infecting virus and
compomised programs and installed another firewall, but now I can't
get the Task manager to run at all. It has this error
message.."Task manager has been disabled by your administrator" I
can't find any way to enable it again, any help will be greatly
appreciated...!!
Click to expand...

Any name on the object in question?

Anything done by you so far in attemtp to fix it?

Were you running as administratoir (a user with those proviledges) when you
got hit or no?
 
TomzToonz said:
It bypassed, disabled, and destroyed windows defender and then infected IE
7, Real player, installed 4 programs and reset some of my admin. options. I
finally removed the infecting virus and compomised programs and installed
another firewall, but now I can't get the Task manager to run at all. It has
this error message.."Task manager has been disabled by your administrator" I
can't find any way to enable it again, any help will be greatly
appreciated...!!
Click to expand...


This can happen when the Vundo/Zalob infected your machine through a USB
stick and denied your Admin right and by assigning itself an Admin
Rights/Account!


Try to scan for malware and viruses and let us know your findings:

http://www.superantispyware.com/superantispywarefreevspro.html
Malwarebytes© Corporation - Anti-Malware
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

BlackLight

http://www.f-secure.com/en_EMEA/security/security-lab/tools-and-services/blacklight/
BlackLight
ftp://ftp.f-secure.com/anti-virus/tools/fsbl.exe

Easy Clean
http://www.f-secure.com/en_EMEA/security/security-center/easy-clean/


Run a scan from here on-line:
http://security.symantec.com/sscv6/default.asp?langid=ie&venid=sym
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Download Avast Cleaner (offline scanner) from here:
http://www.avast.com/eng/avast-virus-cleaner.html
Comodo BOClean : Anti-Malware Version 4.27
http://www.comodo.com/boclean/boclean.html

If the above doesn't help or you denied to download such utilities try to
download the Hijackthis and send the report to one of
many
forums for analysis and troubleshooting or you can send it to me on my email
provided at the bottom:
When all else fails, HijackThis v2.0.2
(http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php)

Can you please send me a copy at (e-mail address removed) ,
remove the obvious to email me.

HTH
nass
---
http://www.nasstec.co.uk





..
 
Back
Top