Results 1 to 7 of 7

Thread: Malware - HALP!

  1. #1
    Get to da choppa Million's Avatar
    Join Date
    Oct 2005
    Location
    Cardiff
    Posts
    1,040
    Thanks
    72
    Thanked
    17 times in 16 posts
    • Million's system
      • Motherboard:
      • Asus P5G41T-M LX2/GB/SI LGA775 mATX
      • CPU:
      • Core2 Quad Q6600
      • Memory:
      • 6Gb Corsair DDR3
      • Storage:
      • 256Gb OCZ Octane SSD, 3Tb Seagate HDD, 250Gb Samsung HDD
      • Graphics card(s):
      • HD4850 1Gb
      • PSU:
      • xClio 700w
      • Case:
      • Fractal Design Arc Mini (watercooled)
      • Operating System:
      • Windows 7
      • Monitor(s):
      • LG 36" LED TV
      • Internet:
      • Virgin 60mb cable

    Malware - HALP!

    Hi all,

    I have been struggling with my first installation of vista, as I managed in the space of a week or so to get a whole load of trojans and assorted malware (I think an infected zip file and possibly a fake adobe reader download, but IDK). Anyhow, I seem to have gotten rid of it using AVG free, SpyBot S&D and CCleaner, however SpyBot still picks up Virtumonde.

    I've done a bit of reading on virtumonde, and it seems like it's a persistent bugger. I wondered if anyone has any advice for me on good tools or methods to use. All replies are valued!

    Thanks

  2. #2
    Senior Member
    Join Date
    May 2008
    Location
    Bath Uni
    Posts
    1,140
    Thanks
    169
    Thanked
    71 times in 66 posts
    • Will404's system
      • Motherboard:
      • ASUS P5Q PRO
      • CPU:
      • Core2quad Q6600 @2.85GHz
      • Memory:
      • 4GB Corsoar Twin X XMS2 DDR2-PC2 6400 @ 900MHz, 5-5-5-18
      • Storage:
      • WD 320GB, Segate 320GB (Raid 0), 2* WD 1TB storage
      • Graphics card(s):
      • ATI Sapphire HD 4850
      • PSU:
      • Corsoar HX 520
      • Case:
      • Antec 900
      • Operating System:
      • Windows 7 Pro x64
      • Monitor(s):
      • ASUS MW221u 22"

    Re: Malware - HALP!

    Try a free trial of something like Kaspersky Internet Security Suite 2009 free trial in safe mode, and uninstall all other security software, and use that to kill virtumonde

  3. #3
    Senior Member Betty_Swallocks's Avatar
    Join Date
    Jan 2005
    Location
    Feet up, spliff lit.
    Posts
    1,140
    Thanks
    70
    Thanked
    60 times in 44 posts
    • Betty_Swallocks's system
      • Motherboard:
      • Asus Z97-A
      • CPU:
      • Intel Core i5 4690K o/c to 4.6 gHz
      • Memory:
      • 8Gb DDR3
      • Storage:
      • 256Gb SSD + 1320Gb (3x SATA drives)
      • Graphics card(s):
      • MSI R9 390 8Gb
      • PSU:
      • Corsair CS750M
      • Case:
      • Thermaltake Shark
      • Operating System:
      • Windows 10
      • Monitor(s):
      • 37" Samsung TV @1920x1080 + Dell 20.1" TFT secondary screen
      • Internet:
      • 150Mb Virgin Media cable

    Re: Malware - HALP!

    TBH if your installation is only a week old you can't have anything on there that you can't reinstall so I'd just format and reinstall Windows. You can spend days chasing down remnants of these nasty things and still miss some but a rebuild takes only a couple of hours and I don't know any virus or malware that can survive a format.
    "Free speech includes not only the inoffensive but the irritating, the contentious, the eccentric, the heretical, the unwelcome and the provocative provided it does not tend to provoke violence. Freedom only to speak inoffensively is not worth having."

  4. #4
    Splash
    Guest

    Re: Malware - HALP!

    Would you by any chance have disabled UAC?

  5. #5
    Admin (Ret'd)
    Join Date
    Jul 2003
    Posts
    18,481
    Thanks
    1,016
    Thanked
    3,208 times in 2,281 posts

    Re: Malware - HALP!

    Quote Originally Posted by Betty_Swallocks View Post
    TBH if your installation is only a week old you can't have anything on there that you can't reinstall so I'd just format and reinstall Windows. You can spend days chasing down remnants of these nasty things and still miss some but a rebuild takes only a couple of hours and I don't know any virus or malware that can survive a format.
    Agreed. When I'm building a new machine, my strategy is :-

    1) Plan it. Collect all the software I need for a base build.
    2) Download the latest versions of AV software, firewall, etc if I don't already have them
    3) Stick them all on a CD or DVD
    4) Once built, ensure PC isn't connected to my network
    5) Install OS, install TrueImage
    6) Install security software (firewall, AV software, Anti-Malware progs, etc)
    7) Install main utilities (Acrobat, Firefox, WinRAR, FTP software, etc)
    8) Install basic software suites (MS Office, Photoshop, Coreldraw, etc)
    9) Run TrueImage and take a backup, then vreate TrueImage boot disc (if needed)

    At that point, I can always restore the PC to that "start point" by formatting and reloading the image file.

    I've often found that if I get some nasty in PC infection, which to be honest, very rarely happens to me (these days) because I'm selective about what I install, only use legit versions and am careful about what websites I visit) I never quite feel I can trust a system if I just clean whatever nasty it was out. I'm always wondering if I got it all, or whether it left some system files laying around, whether it adversely affected performance by overwriting other system files, etc.

    Years ago, I spend a fair bit of time chasing my tail trying to get rid of nasties, mainly because I was determined to beat the little beggars. These days, I just want my system back ASAP and with the absolute minimum of time and effort. I'd rather be working, lurking about on Hexus (or a couple of other places), browsing the web, etc than screwing around trying to disinfect my PC, so I plan ahead, and find that a bit of preventative time can save a lot of hassle and frustration after something bites me.

    If I had a system that was relatively clean, I'd rather redo it from scratch and have the peace of mind, than scrabble around trying to undo a problem, and never be entirely sure I'd thoroughly got it all. of course, that's just be being careful and lazy.

  6. #6
    Get to da choppa Million's Avatar
    Join Date
    Oct 2005
    Location
    Cardiff
    Posts
    1,040
    Thanks
    72
    Thanked
    17 times in 16 posts
    • Million's system
      • Motherboard:
      • Asus P5G41T-M LX2/GB/SI LGA775 mATX
      • CPU:
      • Core2 Quad Q6600
      • Memory:
      • 6Gb Corsair DDR3
      • Storage:
      • 256Gb OCZ Octane SSD, 3Tb Seagate HDD, 250Gb Samsung HDD
      • Graphics card(s):
      • HD4850 1Gb
      • PSU:
      • xClio 700w
      • Case:
      • Fractal Design Arc Mini (watercooled)
      • Operating System:
      • Windows 7
      • Monitor(s):
      • LG 36" LED TV
      • Internet:
      • Virgin 60mb cable

    Re: Malware - HALP!

    Quote Originally Posted by Splash View Post
    Would you by any chance have disabled UAC?
    Ummm... maybe, just for a short while. Why?

    As for the format and fresh install - yes, I could do that, it's just I'm at uni now, and the OS disk is at home so it's a bit of a pain. I do know what you mean about not being able to trust your machine though!

    I used malwarebytes in safe mode, and then scanned with spybot, and it seemed that virtumonde had gone, but on normal startup I get spybot giving me a warning about a registry entry in C:\Users\\AppData\Roaming\Adobe\Manager.exe. Now when I try to navigate to this location, the adobe folder concerned appears to have nothing of the sort in it.

    What i'm wondering is if this is spyware re-writing itself into the registry, or if it's SpyBot picking up a regular program activity... I think it's probably still the sodding spyware

  7. #7
    Senior Member
    Join Date
    May 2008
    Location
    Bath Uni
    Posts
    1,140
    Thanks
    169
    Thanked
    71 times in 66 posts
    • Will404's system
      • Motherboard:
      • ASUS P5Q PRO
      • CPU:
      • Core2quad Q6600 @2.85GHz
      • Memory:
      • 4GB Corsoar Twin X XMS2 DDR2-PC2 6400 @ 900MHz, 5-5-5-18
      • Storage:
      • WD 320GB, Segate 320GB (Raid 0), 2* WD 1TB storage
      • Graphics card(s):
      • ATI Sapphire HD 4850
      • PSU:
      • Corsoar HX 520
      • Case:
      • Antec 900
      • Operating System:
      • Windows 7 Pro x64
      • Monitor(s):
      • ASUS MW221u 22"

    Re: Malware - HALP!

    Uninstall adobe reader?

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Just been hit by malware. D=
    By TAKTAK in forum Software
    Replies: 17
    Last Post: 26-08-2008, 07:12 PM
  2. Analysis - Joint OECD-APEC report on malware
    By HEXUS in forum HEXUS News
    Replies: 0
    Last Post: 04-06-2008, 02:46 AM
  3. Printer Problems! Halp!
    By Miserygut in forum PC Hardware and Components
    Replies: 2
    Last Post: 06-03-2008, 07:32 PM
  4. Halp, me compy just...
    By Nemz0r in forum Help! Quick Relief From Tech Headaches
    Replies: 13
    Last Post: 20-12-2007, 10:17 AM
  5. Sneakiest malware ever?
    By Rave in forum General Discussion
    Replies: 5
    Last Post: 31-07-2004, 10:22 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •