Aces High Bulletin Board
Help and Support Forums => Technical Support => Topic started by: humble on October 25, 2006, 04:06:52 PM
-
somebody actually sent me a targeted virus (it was addressed correctly to me in a way unique to my business). It appears to have hijacked my internet connection at the sys level. My zonealarm caught it (after the fact)...I tried to use trendmicro to eliminate it but it cant.
This one is beyond my somewhat limited expertise. It's on my business laptop (all essential stuff backed up daily 3 ways). If needed I can nuke the whole system, other suggestions appreciated......what program reccomended to deal with this....if any.
-
Did you try the stand alone Trend Micro or the online version?
If online try the 1month trial version of the stand alone to see if it works better.
If not try this information posted a few times by Silat:
Originally posted by Silat
http://www.spywareinfo.com/~merijn/downloads.html - Download Hijackthis. Put it in a new folder named "Hijackthis". Put the folder on c drive. This is important for proper logging of info when you get hijacked. Do not use this program unless you completely know what you are doing. FREE
http://www.javacoolsoftware.com/downloads.html - download and install : SpywareBlaster and SpywareGuard FREE
http://customblockinglist.cjb.net/ - Spyware Blaster Custom Blocking List Free!
http://www.safer-networking.org/index.php?page=download - Download and install Spybot - Search & Destroy FREE
http://www.intermute.com/products/cwshredder.html - CWShredder Download the standalone version. FREE
http://www.lavasoftusa.com/support/download/ - Download the free version of Adaware and install. Or pay for the advanced version if you want. FREE
ANTI VIRUS PROGRAMS
http://free.grisoft.com/doc/Get+AVG+FREE/lng/us/tpl/v5 - AVG
If you don't have an antivirus program and don't want to pay for one then get AVG . It is free and good. FREE
http://www.avast.com/eng/down_home.html - AVAST
To use the Home Edition, you should register it. After the installation you have 60 days to do the registration. The registration process is very easy and will take you only a couple of minutes.
http://www.free-av.com/ -ANTI-VIR another antivirus FREE
WINDOWS CLEANER
http://www.ccleaner.com/ - Crap Cleaner. Windows system cleaner like Window Washer FREE
HOST FILE INFORMATION
https://netfiles.uiuc.edu/ehowes/www/resource.htm - IE-SPYAD (IE Restricted zone list) Free!
If you dont have an antivirus you can do free scans at
Trend Micro - Free online virus Scan
http://housecall.trendmicro.com/
http://housecall.antivirus.com
McAfee Security - FreeScan
http://www.mcafee.com/myapps/mfs/default.asp
Panda ActiveScan - Free online scanner
http://www.pandasoftware.com/activescan/com/activescan_principal.htm
Computer Associates:
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
DialogueScience:
http://www.antivir.ru/english/www_av/
F-Secure:
http://support.f-secure.com/enu/home/ols.shtml
BitDefender
http://www.bitdefender.com/scan/license.php
Freedom Online scanner
http://www.freedom.net/viruscenter/index.html
ClamWin
http://www.clamwin.com/index.php?option=content&task=view&id=21&Itemid=56
All the downloaded programs need updating regularly.
I recommend you or anyone else who has a problem with hijackers go here http://help.lockergnome.com/ .Register. You will then be able to post. By post I mean post a HIJACKTHIS log. After you register click on "PROBLEM SOLVERS" forums. Then click on "HIJACKTHIS LOGS". Post your problem in the HIJACKTHIS FORUM. An expert will get to you within a few days to guide you to a clean machine :) This is where I trained to learn how to cleanup hijacked computers.
You may submit your HijackThis log files to any of the below Forums for
expert analysis. I personally like http://help.lockergnome.com/
Note that all Forums require Registration prior to posting
(http://aumha.net/viewforum.php?f=30)
(http://www.bleepingcomputer.com/forums/forum22.html)
(http://castlecops.com/forum67.html)
(http://forums.maddoktor2.com/index.php?showforum=17)
(http://www.spywarewarrior.com/viewforum.php?f=2)
(http://forums.spywareinfo.com/index.php?showforum=18)
(http://www.wilderssecurity.com/forumdisplay.php?f=24)
(http://boards.cexx.org/viewforum.php?f=1)
(http://www.malwarebytes.biz/forums/index.php?showforum=5)
(http://forum.gladiator-antivirus.com/index.php)
(http://www.dslreports.com/forum/security)
Lew/+Silat
-
Thanks, great stuff.......
I already use hijackthis and AVG but the hijackthis forum is new to me along with a few of the others. I was using the zonealarm anti virus....which did catch it after the fact. Niether housecall or the standalone (2007) even proberly installed....both were blocked. AVG loaded fine and is working but didnt find anything. I put Kerio personal firewall (best one I know) on since it shows every inbound and outbound action (active or passive) and all is clean in that regard....I didnt think to load hijackthis on the machine but will now.....
Thanks