Malware help please -Killerbyte

[KillerByte]

hey guys

so it seems that I have picked up a nasty bit of malware.

what does this little nasty do? very simple. it starts up IE when I'm online and then directs to a number of sites. this is random in its choosing of which sites.

i have run spybot search and destroy and avast and neither pick up the nasty. I even ran the win xp version of Defender and nothing was detected

[hamin_aus]

hijackthis log

[liep]

lolz didnt yo mama tell u not to browse t3h pornz with IE? Opera/firefox is da best...

Its evil is spybot didnt help, try maybe adaware also for good measure and yea after that its all hjt.

[jee]

Killerbyte, i suggest you change your title to something that will make people want to help you...,.

[neon_chameleon]

Why would putting your nick after the topic title it make any difference?

Killerbyte, malware is using under the adware category, try an adware scanner.

[Screeper]

Download/install Ad-Aware - update and run.
Download/install AVG's rootkit remover and run.
If they fail
Download Task Manager 1.7 or above and run TaskMan.exe (no need to install) - find the process/app that is causing the headache and close it down.

@Neon - posting at 04:47am 8O respect - now that's a dedicated Mod

[rustypup]

play with fire...

get burned...

dial 911...

"Your call is important to us... Please hold"

R300+- and all your problems vanish... (there is a 30 day trial...)

[Frozenfireside]

Ok you should be able to pick up the fix for the malware on the web.
Please tell me the actual name of the malicious .exe running in your memory.

Is it a random number.exe or such? If you are not sure what .exe it is, google the suspect ones.

I love spybot but, yep, it doesn't cope with hectic malware such as spyquake.

Hope this helps

[maxxis]

Format.

You will always wonder what that file is or why you machine is not responding like it did.

[capanno]

R5 says its because of browsing questionable sites...

[maxxis]

Ones where names end in .jpg perhaps?

[Anakha56]

R5 says its because of browsing questionable sites...

R10 says its because he downloads and uses illegal programs as well as hacking people's ISP accounts

have you tried a virus scan?

[capanno]

Maxxis: Very likely yes!

google images finds the perfect combo

[rustypup]

have you tried a virus scan?

R50 says AVG freeware.....

the hidden cost of the alternate software-aquisition philosophy...

[capanno]

OT

I heard AVG is kinda crappy. I'm using it now... It says my system is clean, but I'm skeptical. What else can I use?

[M1K3]

A friend of mine has the following on a Vista PC and has Norton's 2k7: w32.rontobkro@mm and is having trouble removing it... It just keeps re appearing... has anyone ever had experience with this virus? If so any suggestions? I have done the google thing and followed Norton's instructions and from what I understand Norton's should have had no hassles clearing it up.

[rustypup]

@cappano: NOD32 or AntiVir..

NOD32 carries the best certification while its scan has got to be the lightest i've seen to date... and it's updates are tiny...

<edit>
@M1K3: don't you mean rontokbro?
</edit>

<edit2>
modified the comparatives link, (appears direct linking is disabled) - browse to the latest online results/report...
</edit2>

[capanno]

Thanks rusty

[Xiphan]

Have you ever thought about using a-squared Free for removal of malware/ adware?

Security must not be a privilege. Under this motto, Emsi Software provides the Malware scanner a-squared Free completely free of charge for private use. But it is not a very limited version, it is a full tool to clean your computer from Malware. Not only Spywares, as detected by classic Anti-Spyware programs, but also especially Trojans, Backdoors, Worms, Dialers, Keyloggers and a lot of other destructive pests, which makes it dangerous to surf the web.

Sounds like it can remove quite a lot of nasties?

[Gatsby]

R5 says its because of browsing questionable sites...

lolpr0n

[Gatsby]

OT

I heard AVG is kinda crappy. I'm using it now... It says my system is clean, but I'm skeptical. What else can I use?

Nod32 my friend.

[1080]

I had a problem about a month ago

search forums and found SmitfraudFix its a small app no installation though there is a process to follow.
its a cross between a registry scanner and virus scanner
but it was pretty good in sorting out my problem ( continuous browser loads )

alternative you can try dss

google them for the download

[Xiphan]

I would love to use NOD32, but I'm also thinking of using Zone Alarm Internet Security Suite? Anyone know if it's any good?

[Rid1]

I had a problem about a month ago

search forums and found SmitfraudFix its a small app no installation though there is a process to follow.
its a cross between a registry scanner and virus scanner
but it was pretty good in sorting out my problem ( continuous browser loads )

alternative you can try dss

google them for the download

Smitfraud is a crap piece of thing to be stuck with!!! For some reason it neevr wants to leave a PC at all - even after many hectic fixes and processes to be followed for its removal!!! Its also associated with virtumonde both of which are on this pc im using now! Gave up getting rid of it !

[viceroy]

hey guys

so it seems that I have picked up a nasty bit of malware.

what does this little nasty do? very simple. it starts up IE when I'm online and then directs to a number of sites. this is random in its choosing of which sites.

i have run spybot search and destroy and avast and neither pick up the nasty. I even ran the win xp version of Defender and nothing was detected

You really gotta stop going to those dodgy porn sites!!