Solved! racist n-word virus

Dawoud Alrifai · May 1, 2015

This isn't racist and i'm dead serious... I found the wierdist virus on my 300$ 4tb 7200 gaming pc hard drive and theirs this virus giving me pictures of naked men and asking me for virus removal payments heres what it is....

I just found this application "dear friend.exe" (My Computer/C

dear friend.exe) on my computer today and it will not let me delete it. I've ran a Mircrosoft Antispyware scan and an adaware se personal scan and neither has found it.

When I ran task manager dear friend.exe was running and I ended the process and it hasn't returned. I don't know how helpful that is but please help!

Joseph DeGarmo · May 1, 2015

What antivirus program are you using?

RCFProd · May 1, 2015

:lol:

Install Hitman Pro and activate your 30-days free license. Do a scan, remove it and see what the result is.

http

/www.surfright.nl/nl/hitmanpro

laviniuc · May 1, 2015

try malware bytes.

be careful, that sounds like a ransomware, those can be pretty dangerous.

Dawoud Alrifai · May 1, 2015

Joseph DeGarmo :

i downloaded norton and mcafee and it came back. and my pc is going crazy and the webcam is turning on for no reason and its litterly showing me midget porn of black men. im sorry if thats too much but im stumped. my webcam turns on and off wtf? and i hear an indian guy speaking hindu or something through my speakers and hes asking to give him rupees or moneypak to remove the viruus for 29.99 any ideas?

RCFProd · May 1, 2015

Hitman Pro is the best malware remover out there at the moment. (based on experience).

Do not use any other software other than this one. Downloading Norton and all that crap really is not a good idea. Those can almost be considered malicious aswell.

If that doesn't work you have to force a Windows reinstall with the HDD etc. formatted.

But just take my advice and do a scan with Hitman Pro.

You can also do a scan with Malwarebytes in safe-mode if it either doesn't work or after you've done a scan with Hitman Pro.

ingtar33 · May 1, 2015

run the following visus scans in this order

1) roguekiller (found at bleepingcomputers.com); reboot if required, this antivirus sometimes will give you further instructions about specific virus removal, if it does, follow those instructions to the letter
2) adwcleaner (found at bleepingcomputers.com); this will require a reboot
3) malwarebytes (found at malwarebytes.org)

it's a very very rare virus that can survive even one of those scans, all 3 together should probably whack whatever it is you've got.

nukemaster · May 1, 2015

I know you have a legit problem, but having that title show up on the forum feed of the main page is no good.

I surely hope you get this sorted because ransomware sucks.

laviniuc · May 1, 2015

nukemaster :

http

/www.tomshardware.co.uk/answers/id-2629619/racist-dear friend-virus.html

you forgot the perma link

Dawoud Alrifai · May 1, 2015

RCFProd :

it wont let me download anything any more and my webcam is turning on and theirs an indian guy speaking hindu to me and wants to me skype him... wtf

rgd1101 · May 1, 2015

Can you reinstall the OS?

Dawoud Alrifai · May 1, 2015

rgd1101 :

will that remove the virus? how do i do that

JeckeL · May 1, 2015

Dawoud Alrifai :

When you see the process in task manager, right click on it and click "Open File Location", when it opens the folder with the .exe in it, end the process and then try to delete the .exe. If windows won't let you delete it try renaming it to asdfasdfasdf.exe or something and then reboot. Sometimes if you rename it or rename the folder it's in or one of the parent folders it prevents it from being able to launch itself on startup

Dawoud Alrifai · May 1, 2015

rgd1101 :

its on the harddrive. i doubt its anything with the OS . i dont want to pay another 150$ for windows 7 pro 64

rgd1101 · May 1, 2015

Dawoud Alrifai :

You don't need a new license to reinstall Windows.

ingtar33 · May 1, 2015

Dawoud Alrifai :

load into safemode with networking. many viruses don't run in safemode.

if that won't work, download those three antivirus i suggested on another pc, save them to a thumb drive and load into safemode, then start to use them. see what happens.

it probably wouldn't be a bad idea to clean out your temp folders and trash bin before you start

c:\users\[your username]\AppData\Local\Temp
c:\windows\temp

windows7
c:\users\[your username]\AppData\Local\Microsoft\Windows\Temporary Internet Files
c:\users\[your username]\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5

windows8/8.1
c:\users\[your username]\AppData\Local\Microsoft\Windows\INetCache

laviniuc · May 1, 2015

if you have another pc switch to that one, fast. power down the one that's virused and stop it from writting anything else on the hdd.

take out your hdd from the broken one, clean it using the other pc (malwarebytes or any other of the programs mentioned above), save your important data, put the hdd back in and do a clean reinstall of windows.

eatmypie · May 1, 2015

sometimes what you described can happen from dhcp spoofing, where a person could act as the server you are trying to contact and respond with images instead of picture X it will be picture Y as whatever the person in the middle chooses. But this would only be relevant if you only see the pictures in your browser. If you do I can help you get rid of it.

Solved! racist n-word virus

Estimable

Estimable

Honorable

Honorable

Estimable

Honorable

Honorable

Distinguished

Honorable

Estimable

Don't

Estimable

Distinguished

Estimable

Don't

Honorable

Honorable

Honorable

Similar threads

Share this page