Hi everyone. My brother got something again. It’s called Win32:Tenga. Avast! popped up every 4-5 seconds with PID 4 - ccsetup… .exe.
It popped up when he was using FileFront - clicked “Download Now” - it’s download button, and avast! started popping up. And another browser tab opened, too. I closed it immediatly.
Oh… he is using Windows XP Professional SP3 - 32 bits.
I’m thinking about reinstalling the entire system…
Help please!
Thank you.
for a second opinion…have you run a quick scan with a fully updated malwarebytes ?
googling the name it looks to be a nasty file infector…
Ok, looks like everything is OK since I reinstalled it.
Now that computer is clean, has an avast! Free and no internet - because somewhy the computer doesn’t want to connect to the Router.
Did you say you re installed windows xp, if so & no connection, you might need to download service pack 2 on another computer load to stick or cd & install on other computer.
Well it has SP3 for now. There’s a local connection but I think I should install it’s drivers too.
I’ll do it tomorrow
Well it has SP3 for now.then you have everything you need...
Windows XP Service Pack 3 (SP3) includes all previously released updates for the Windows XP operating system, in addition to a small number of new updates. Windows XP SP3 will not significantly change the Windows XP experience.
Sorry thought you had done a fresh install, all you need to do is set up the router again & secure it.
No, the router’s settings are correct as it’s running at my computer.
All I had to do is to install the chipset’s drivers. Now everything looks OK. I hope I won’t have to clean that computer again…
Oh and before reinstalling the system:
I found another entry in the boot menu: “do not select this - Hibakeresés engedélyezve” (Debugging enabled). What could that be?
Hibakeresés engedélyezve-----Debugging Enabled it’s Hungarian
Yes it is…
But, what was that “do not select this” entry??
Debugging Mode: This option turns on debug mode in Windows. Debugging information can be sent across a serial cable to another computer that is running a debugger. This mode is configured to use COM2.
I know what is debugging. I want to know what could create that entry. It doesn’t matter if it was in Debugging mode or not.
Have you run combofix ? If so that is the recovery console
Yes when we removed the other virus. Now the computer is much faster and runs smoothly.
Anyway, thank you!
You can hide that from the startip by doing the following
Right click my computer
Select properties
Select Advanced
Select startup and recovery
Remove the tick from time to display operating systems
It’s for diagnostics of your system & will disable drivers so it does matter if it’s in debugging mode or not.
Everyone’s got debug mode in safe mode.
You just happen to do a fresh install of windows xp professional
Umm… after I reinstalled the system it’s not there. I just wanted to know what was it. And I pressed F8 to view the systems because I made some backups in safe mode.