Model Boat Mayhem

Please login or register.

Login with username, password and session length.
Pages: [1]   Go Down

Author Topic: Another virus...  (Read 814 times)

Martin [Admin]

  • Administrator
  • Full Mayhemer
  • *****
  • Offline Offline
  • Posts: 20,507
  • Location: Peterborough, UK
    • Model Boat Mayhem
Another virus...
« on: September 22, 2010, 03:57:18 pm »


I've been caught for the last week with a malevolent & very irritating virus, it just pops up a new browser window
with a load of spam links. It's very clever and quickly redirects itself to several new directs so searching for the original link
was impossible.

AVG scan - nothing.
Malware scan - nothing.
Adaware scan - nothing.
Registry scan - nothing.
Rootkit scan - nothing.
Gmer scan - nothing.
Safe mode scan - nothing.

after MUCH searching on 'tinternet, I found something called Combofix  http://www.combofix.org/ which
initiates a scan like I've never seen before! It found something hidden in a Windows Driver fill - killed it and downloaded and
replaced the driver it self! NB. --- Don't run Combofix Unless you REALLY know what you're doing! ---

Seems to be gone now......   <*<

Full and very in depth discussion here:[ url]http://forums.pcpitstop.com/index.php?/topic/190480-hidden-virus-opening-new-tabsredirecting/[/url]
Logged
"This is my firm opinion, but what do I know?!"    -   Mayhem FaceBook Group!

DickyD

  • Full Mayhemer
  • *****
  • Offline Offline
  • Posts: 9,497
  • www.srcmbc.org.uk
  • Location: Southampton UK
    • SRCMBC
Re: Another virus...
« Reply #1 on: September 22, 2010, 04:12:26 pm »


NB. --- Don't run Combofix Unless you REALLY know what you're doing! ---

Seems to be gone now......   <*<

Full and very in depth discussion here:[ url]http://forums.pcpitstop.com/index.php?/topic/190480-hidden-virus-opening-new-tabsredirecting/[/url]


Wish you had told me that before I used it to get rid of that bug that Jay passed round to all his messenger contacts a while back. >>:-( >>:-(
Logged
Richard Solent Radio Controlled Model Boat Club http://www.srcmbc.org.uk

essex2visuvesi

  • Full Mayhemer
  • *****
  • Offline Offline
  • Posts: 6,134
  • Location: Finland, England, Finland!
Re: Another virus...
« Reply #2 on: September 22, 2010, 05:28:06 pm »

F-secure says I cant open the combofix file as its a virus lol
Logged
One By One The Penguins Steal My Sanity
Proud member of the OAM  (Order of the Armchair Modeller)
Junior member of the OGG  (Order of the Grumpy Git)
Pages: [1]   Go Up