Page 1 of 3
Malware help please -Killerbyte
Posted: 28 Jul 2007, 18:01
by KillerByte
hey guys
so it seems that I have picked up a nasty bit of malware.
what does this little nasty do? very simple. it starts up IE when I'm online and then directs to a number of sites. this is random in its choosing of which sites.
i have run spybot search and destroy and avast and neither pick up the nasty. I even ran the win xp version of Defender and nothing was detected
Posted: 28 Jul 2007, 18:27
by hamin_aus
hijackthis log
Posted: 28 Jul 2007, 19:08
by liep
lolz didnt yo mama tell u not to browse t3h pornz with IE? Opera/firefox is da best...
Its evil is spybot didnt help, try maybe adaware also for good measure and yea after that its all hjt.
Posted: 28 Jul 2007, 19:22
by jee
Killerbyte, i suggest you change your title to something that will make people want to help you...,.
Posted: 29 Jul 2007, 04:47
by neon_chameleon
Why would putting your nick after the topic title it make any difference?
Killerbyte, malware is using under the adware category, try an adware scanner.
Posted: 29 Jul 2007, 08:28
by Screeper
Download/install Ad-Aware - update and run.
Download/install AVG's rootkit remover and run.
If they fail
Download Task Manager 1.7 or above and run TaskMan.exe (no need to install) - find the process/app that is causing the headache and close it down.
@Neon - posting at 04:47am 8O respect - now that's a dedicated Mod
Posted: 30 Jul 2007, 08:16
by rustypup
play with fire...
get burned...
dial 911...
"Your call is important to us... Please hold"
R300+- and all your problems vanish... (there is a 30 day trial...)
Posted: 30 Jul 2007, 14:13
by Frozenfireside
Ok you should be able to pick up the fix for the malware on the web.
Please tell me the actual name of the malicious .exe running in your memory.
Is it a random number.exe or such? If you are not sure what .exe it is, google the suspect ones.
I love spybot but, yep, it doesn't cope with hectic malware such as spyquake.
Hope this helps
Posted: 30 Jul 2007, 14:46
by maxxis
Format.
You will always wonder what that file is or why you machine is not responding like it did.
Posted: 30 Jul 2007, 14:53
by capanno
R5 says its because of browsing questionable sites...
Posted: 30 Jul 2007, 15:00
by maxxis
Ones where names end in .jpg perhaps?
Posted: 30 Jul 2007, 15:01
by Anakha56
capanno wrote:R5 says its because of browsing questionable sites...
R10 says its because he downloads and uses illegal programs as well as hacking people's ISP accounts
have you tried a virus scan?
Posted: 30 Jul 2007, 15:04
by capanno
Maxxis:
Very likely yes!
google images finds the perfect combo
Posted: 30 Jul 2007, 15:06
by rustypup
Anakha56 wrote:have you tried a virus scan?
R50 says AVG freeware.....
the hidden cost of the alternate software-aquisition philosophy...
Posted: 30 Jul 2007, 15:08
by capanno
OT
I heard AVG is kinda crappy. I'm using it now... It says my system is clean, but I'm skeptical. What else can I use?
Posted: 30 Jul 2007, 15:20
by M1K3
A friend of mine has the following on a Vista PC and has Norton's 2k7: w32.rontobkro@mm and is having trouble removing it... It just keeps re appearing... has anyone ever had experience with this virus? If so any suggestions? I have done the google thing and followed Norton's instructions and from what I understand Norton's should have had no hassles clearing it up.
Posted: 30 Jul 2007, 15:21
by rustypup
@cappano:
NOD32 or AntiVir..
NOD32 carries the best certification while its scan has got to be the lightest i've seen to date... and it's updates are tiny...
<edit>
@M1K3: don't you mean ronto
kbro?
</edit>
<edit2>
modified the comparatives link, (appears direct linking is disabled) - browse to the latest online results/report...
</edit2>
Posted: 30 Jul 2007, 15:26
by capanno
Thanks rusty
Posted: 21 Sep 2007, 07:08
by Xiphan
Have you ever thought about using
a-squared Free for removal of malware/ adware?
a-squared Free wrote:Security must not be a privilege. Under this motto, Emsi Software provides the Malware scanner a-squared Free completely free of charge for private use. But it is not a very limited version, it is a full tool to clean your computer from Malware. Not only Spywares, as detected by classic Anti-Spyware programs, but also especially Trojans, Backdoors, Worms, Dialers, Keyloggers and a lot of other destructive pests, which makes it dangerous to surf the web.
Sounds like it can remove quite a lot of nasties?
Posted: 21 Sep 2007, 07:33
by Gatsby
capanno wrote:R5 says its because of browsing questionable sites...
lolpr0n
Posted: 21 Sep 2007, 07:35
by Gatsby
capanno wrote:OT
I heard AVG is kinda crappy. I'm using it now... It says my system is clean, but I'm skeptical. What else can I use?
Nod32 my friend.
Posted: 21 Sep 2007, 08:07
by 1080
I had a problem about a month ago
search forums and found SmitfraudFix its a small app no installation though there is a process to follow.
its a cross between a registry scanner and virus scanner
but it was pretty good in sorting out my problem ( continuous browser loads )
alternative you can try dss
google them for the download
Posted: 21 Sep 2007, 08:19
by Xiphan
I would love to use NOD32, but I'm also thinking of using Zone Alarm Internet Security Suite? Anyone know if it's any good?
Posted: 21 Sep 2007, 09:02
by Rid1
1080 wrote:I had a problem about a month ago
search forums and found SmitfraudFix its a small app no installation though there is a process to follow.
its a cross between a registry scanner and virus scanner
but it was pretty good in sorting out my problem ( continuous browser loads )
alternative you can try dss
google them for the download
Smitfraud is a crap piece of thing to be stuck with!!! For some reason it neevr wants to leave a PC at all - even after many hectic fixes and processes to be followed for its removal!!! Its also associated with virtumonde both of which are on this pc im using now! Gave up getting rid of it !
Re: Malware help please -Killerbyte
Posted: 21 Sep 2007, 10:36
by viceroy
KillerByte wrote:hey guys
so it seems that I have picked up a nasty bit of malware.
what does this little nasty do? very simple. it starts up IE when I'm online and then directs to a number of sites. this is random in its choosing of which sites.
i have run spybot search and destroy and avast and neither pick up the nasty. I even ran the win xp version of Defender and nothing was detected
You really gotta stop going to those dodgy porn sites!!
