Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Malware?


  • Please log in to reply
2 replies to this topic

#1 CrisGer

CrisGer

  • Members
  • 306 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Colorado and California
  • Local time:03:30 AM

Posted 05 April 2008 - 12:07 AM

Tonight as i was browsing, all of a sudden my computer shut down and rebooted. Then i got a request from my Outpost firewall for BRAVIAX.EXE to run. That made me alert right away. Then i got a little pop up from my windows firewall, a seemingly offical Windows pop up with a little red circle with a white x in it, and the same button appeared on my botton bar. the nessage pops up repeatedly every time i browse and says:

You computer is infected

Windows has detected Spyware infection

It is recomended to use special antispyware tools to prevent data loss.
Windows will now download and install the most up-to-date antispyware for
you.

Click here to protect your computer from spyware

I am suspicous of this, and have run Spybot and it found 9 entires all involvilng turning off the Windows firewall and anti spyware alerts, told Spybot to go ahead and fix the problem but i suspect there may still be something in my system as the alerts keep happening and I dont think that the windows firewall would download and install antivirus stuff, it sounds like a malware fake to me...but i would like help with this pls.

I am running AVG 7.5, AdAware did not find anything but the definitions are no longer updated.

so far AVG has not found anything.

looks like BRAVIAX is still trying to get an outgoing connection i will go hunting for it now :trumpet:

any suggestions very welcome :thumbsup:

Just as i was posting this, i had an alert that a program was shutting down and did i want Wndows to make an error report?
the little red circle with the white x didappeared from the bottom bar. I hope maybe it is gone? not sure yet. Any info on this will be helpful :flowers:

I found BRAVAX hiding in my Windows Wystem 32 folder and trashed it. :inlove:

Edited by CrisGer, 05 April 2008 - 12:22 AM.

Game Researcher and Designer
http://3dworldandgamedevelopers.blogspot.com//
Admin
3D Worlds and Game Developers Group Linkedin

BC AdBot (Login to Remove)

 


#2 ruby1

ruby1

    a forum member


  • Members
  • 2,375 posts
  • OFFLINE
  •  
  • Local time:11:30 AM

Posted 05 April 2008 - 11:00 AM

may one ask if you still have the adaware se version on your computer as this has been superseeded by adaware 2007

http://www.lavasoftusa.com/products/ad_aware_free.php
assuming you are running XP(?)
you may wish to uninstall the adaware se and install the adaware 2007, fully update its definitions and run a scan?

you may also wish to run a scan with superantispyware http://www.superantispyware.com/superantis...efreevspro.html
its free exe is http://www.superantispyware.com/downloadfi...ANTISPYWAREFREE

I suggest you download this, fully update the definitions, reboot into the computers safe mode and run a full system scan ; see what it finds?

if you are on XP one assumes all your windows updates are up TO date including SP2 and that system restore is enabled?

#3 CrisGer

CrisGer
  • Topic Starter

  • Members
  • 306 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Colorado and California
  • Local time:03:30 AM

Posted 05 April 2008 - 11:53 AM

Hi,
yes still running the previous version of AdAware SE, it has worked great and been very useful. I have heard difering reports of the replacement and need to do some more research before installing it.

I did scans with Sypbot, AVG which removed nine items, and AdAware which also corrected things. so the three of them seem to have controlled this invasion. I am not sure how that program got past my firewall, but it did, and installed itself in my WIDOWS system folder. Luckily my Outpost firewall caught it, i shut it down and removed it. I will check on the new adaware 2007 and also look at superantispyware and see about running it too.

I do run XP SP2 all the details of my system are on my profile here :thumbsup:

thanks for the reply.
Game Researcher and Designer
http://3dworldandgamedevelopers.blogspot.com//
Admin
3D Worlds and Game Developers Group Linkedin




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users