Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

wut do i do


  • Please log in to reply
2 replies to this topic

#1 l3o1112

l3o1112

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 29 August 2009 - 01:36 AM

i have an hp dv6 1030 us 320gb 4 gb ram. i purchased in june. i hade Norton Internet Secuirty trial for maybe two months and it expired. i then foolish tried to get Antivirus software off internet and may have gotten a virus because of it. i downloaed free AVG i ran it and found>>>

"Infection";"Trojan horse Generic12.BMFB";"C:\Users\leo\AppData\Local\Temp\Temp1_Norton 360 keygen[1].zip\keygen.exe";"";"8/27/2009, 1:48:05 AM"

"Infection";"Trojan horse Generic12.BMFB";"C:\Users\leo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XAJU09DV\Norton 360 keygen[1].zip";"";"8/27/2009, 1:47:05 AM"

this was from the site i went to trying to get Norton 360 off net. i placed both in AVG's Virus Vault they didnt come up in anymore scans so im assuming they are blocked from attacking computer. i also found several tracking cookies,NIS also found them. not too worried aboiut them thought.

i then downloaded Malwyrebytes and found

Vendor Rogue.link" category file Infection";"Trojan horse Generic12.BMFB";"C:\Users\leo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XAJU09DV\Norton 360 keygen[1].zip";"";"8/27/2009, 1:47:05 AM"

"Infection";"Trojan horse Generic12.BMFB";"C:\Users\leo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XAJU09DV\Norton 360 keygen[1].zip";"";"8/27/2009, 1:47:05 AM"

"Infection";"Trojan horse Generic12.BMFB";"C:\Users\leo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\XAJU09DV\Norton 360 keygen[1].zip";"";"8/27/2009, 1:47:05 AM"

i also found a ADYC trojan....

the same trojan that AVG detected

here are the Malwarebytes logs

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Files Infected:
C:\Users\leo\Favorites\cheap software.url (Rogue.Link) -> Quarantined and deleted successfully.

i DO NOT WANT these things ANYWHERE on my computer wether they are quarantined and deleted , im considering running system recovery wiping out everything.
i want to purchase Norton 360 and delete AVG but keep Malwyrebytes cuz Norton supposedly doesn't check for Malware

what shud i do shud i be worried

BC AdBot (Login to Remove)

 


#2 harrythook

harrythook


  • Security Colleague
  • 4,152 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Philadelphia
  • Local time:07:49 PM

Posted 29 August 2009 - 07:47 AM

Please read the information at the beginning of THIS forum. The information there should give you an idea of where to start.

You might want to stay away from downloading keygens or cracks, they often come bundled with additional software that will infect your machine.

Veni Vidi Vici
THE FIGHT AGAINST MALWARE

Become a BleepingComputer fan: Facebook

#3 l3o1112

l3o1112
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:49 PM

Posted 30 August 2009 - 02:08 AM

my computer seems to be running okay. but im considering doing a system recovery so that i KNOW FOR SURE the virus is completly gone. ill back up my photo's and other stuff. question i have a hp dv6 windows vista it has two disk a hard drive C:' and a recovery disk im assuming that if i do a system rescovery the programs that are on the recovery disk are the one's that will be on it.?? ANYYYY help wud be GREATLY appreciated. i had Sony Viao that was slow i think it was cuz of overheating and the motherboard waas frying i ranm a system recovery it seemed to run okay, maybe still slow but better then before then a few days later the computer turns on but the screen is black (THIS WAS A WHILE AGO MAYBE A YR AGO,Comp hasnt been used since.) i was told it wud be better to just buy a new computer if the motherboard was messed up but im not gonna keep doing that. i might try to get it fixed. put a antivirus on it and get it running up again...




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users