i have a really odd trojan. not sure how i got it i run no script in firefox, avg,and routinely run ad aware, but i got it none the less and it disabled task manager so i couldnt just end the processes. It kept giving me bogus windows alerts like "you have spware!!!"It tried to redirect my internet explorer, which i never use its just there so i can do windows updates. No firefox or chrome redirects, but i found the processes in safe mode and they were obd.exe and 3607z. the fake windows messages said it was win32.trojan. banker and i did a lil research and it had similar symptoms. Even in safe mode the virus scans didn't do any good,but i tried system restore to a month ago and it works fine now. im currently scanning it with avg and adaware again, but my question is should i trust system restore? or go ahead and reformat? Thanks
weird trojan
- Thread starter boggs
- Start date
try downloading Spybot Search and Destroy ( http://www.safer-networking.org/en/download/index.html ).
I've had to clean out a number of computers.... and so far SBS&D is one of the few programs that actually works.
Until last month, I put AVG on everyones computers... I wouldn't waste my time, every computer with AVG seems to get hammered with bugs. Ad aware is like throwing a bandaid at a broken arm, it works, but it's not very powerful.
try the spybot before you re-format it, having to reload all of sp2 and sp3, plus all your programs is purely just a waste of your life.
I've had to clean out a number of computers.... and so far SBS&D is one of the few programs that actually works.
Until last month, I put AVG on everyones computers... I wouldn't waste my time, every computer with AVG seems to get hammered with bugs. Ad aware is like throwing a bandaid at a broken arm, it works, but it's not very powerful.
try the spybot before you re-format it, having to reload all of sp2 and sp3, plus all your programs is purely just a waste of your life.
ger87410
How did I get here?
- Location
- Fort Worth
I've been using AVG on 30+ computers for 8 years without anything like a bug. Found a virus Mccafee missed.
Don't blame AVG for it. More likely, blame the OS.
Don't blame AVG for it. More likely, blame the OS.
You should be fine with that sys restore.
It sounds like you got the one from the "you need this plugin" which appears VERY legit. You click on it expecting to see which plug in you might be missing and bam it is to late. It never even shows you what plug in you needed because you didn't need one. LOL. Evil!!!!
Even I clicked that dang thing once. That is why I know that virus does not root itself to deeply at first and the sys restore should work.
I have had to run avast, avg, adaware and spybot on one machine in the past, I was bored because usually I just capture data and reimage.
It sounds like you got the one from the "you need this plugin" which appears VERY legit. You click on it expecting to see which plug in you might be missing and bam it is to late. It never even shows you what plug in you needed because you didn't need one. LOL. Evil!!!!
Even I clicked that dang thing once. That is why I know that virus does not root itself to deeply at first and the sys restore should work.
I have had to run avast, avg, adaware and spybot on one machine in the past, I was bored because usually I just capture data and reimage.
And even the best antivirus software/user set ups can't stop or remove some things.
It has been a while since a virus really impressed me but lately I am seeing some simple yet impressively slippery ones!
That fake "you need this plug in " one kinda shocked me because they had to hi jack some pretty highly protected links to get that through. And it looks totally legit!
When in doubt boot to a OS cd and make sure no hidden partitions have been added to the hard drive!!! Talk about NASTY!!!
It has been a while since a virus really impressed me but lately I am seeing some simple yet impressively slippery ones!
That fake "you need this plug in " one kinda shocked me because they had to hi jack some pretty highly protected links to get that through. And it looks totally legit!
When in doubt boot to a OS cd and make sure no hidden partitions have been added to the hard drive!!! Talk about NASTY!!!
I've seen one on a few computers lately that calls itself Windows AV 2009 or some variant of that. Incredibly hard to get rid of. Not sure if that's what you've got or not but I found Malwarebytes to work pretty good for getting rid of it. Spybot is awesome too.
Yea thats the one I see infecting people from legitimate links. It even changed from "Xp anti virus 2008" to "XP anti virus 2009" after the new year.
Supposedly they are actually getting people to pay and have made millions. And of course it is a virus so it is never removed anyway and then they come to me and have to pay again. It sucks.
ger87410
How did I get here?
- Location
- Fort Worth
Big Kahuna
Administrator
- Location
- Tuscaloosa, AL
2 of our computers at work have been hit. Joker just pops up, both people saw it, thought they were suppose to click it...........Bam...........
ger87410
How did I get here?
- Location
- Fort Worth
Well, they've gotten tricky on just what you can click on.
It used to be safe to just click on the X of the window, but even that's gotten more sneaky for the uneducated.
It used to be safe to just click on the X of the window, but even that's gotten more sneaky for the uneducated.
Big Kahuna
Administrator
- Location
- Tuscaloosa, AL
Anybody had the one that when you go to "Click" on something, it pops up right as you click, by then it is too late for most, One computer here got hit with that one, I almost did. It is like it sits hiding waiting for you to click.
ger87410
How did I get here?
- Location
- Fort Worth
:scared:
No, I've never heard of that! Sounds like it infected whatever site you were visiting.
Either that or something got slipped in through a microsoft hole.
No, I've never heard of that! Sounds like it infected whatever site you were visiting.
Either that or something got slipped in through a microsoft hole.
The malware & Viruses are coming in through advertising. They embed it, and it gets passed along quite effectively.
well my cousin told me he clicked it while using stumble and nothing came up so he turned off no script and then it told him he needed to update. i dont seem to have any problems now. avg totally missed it though. i rarely run any anti virus because they just seem to bog down my computer. i'm running avast now because i am paranoid, but generally with noscript on i'm able to avoid most anything since i don't look at porn or download any torrents. I'm really hating how avast is running 3 processes though. i wish antivirus programs would only run when i want to scan. i dont need their weak firewalls or other bs. i've tried to just kill the adwatch and other bs processes but then the scanner decides it doesn't want to update. What is a good light weight antivirus program?
dbrutherford
Parts Whore
- Location
- Fairmont, WV
I just had my work computer nailed with a virus today. It was called Spyware Guard 2008 It was pita so I called IT. It took the guy most of the day but I guess it is fixed for now. He said he got it from an Excel template/file he downloaded from Miocrosoft even! As soon as it happened, I immediately backed up my work/data/files and called IT. I never click X's anmore. If it looks fishy, I just CTRL+ALT+Delet. Yesterday I installed an updated version of Java. I think that si where it came from. It was also trying to redirect Windows Explorer too when I went ot the internet to try and google the problem. Damn hackers, why not just leave people alone. I just bought a new laptop being built now and almost wanted to say F it and just not get it. That is all I really do anymore anyways. Who's in for a reformat of the internet? I think it is time!
That sounds nasty. If it did some from Sun (java) then that is pretty friggin bad!!
The funny thing is a properly set up install of Windows behind a configured router NEEDS no updates ever that I have seen. Yes service pack 1 and 2 are nice but I can install good old XP and get some stuff manually and the machine will fly and go to every site I go to and play every game I play. And it will not get a virus any easier than a fully loaded machine that clicks a highjacked link.
I think the only thing I HAD to dload and install manually is direct X 9.0c.
Hell I have seen maybe one place I even needed java ever. I like my machines stripped but i realize some environments need junk.
The funny thing is a properly set up install of Windows behind a configured router NEEDS no updates ever that I have seen. Yes service pack 1 and 2 are nice but I can install good old XP and get some stuff manually and the machine will fly and go to every site I go to and play every game I play. And it will not get a virus any easier than a fully loaded machine that clicks a highjacked link.
I think the only thing I HAD to dload and install manually is direct X 9.0c.
Hell I have seen maybe one place I even needed java ever. I like my machines stripped but i realize some environments need junk.
dbrutherford
Parts Whore
- Location
- Fairmont, WV
The website my deparment has at my work needs java to run it. All i know is I don't surf bad stuff at work, surfing the X stress me out enough that someone is going to say something. But needless to say I got it. It might not have been the Java but it and a software update for a program I use for work were the only things I installed yesterday.
Some lady who knows everything at work swore up and down to me today that I should have bought a mac book because they don't get viruses. I wanted to tell her to email you haha. That Steve Jobs article on dickipedia about made me spit out my drink the day I read it.
Some lady who knows everything at work swore up and down to me today that I should have bought a mac book because they don't get viruses. I wanted to tell her to email you haha. That Steve Jobs article on dickipedia about made me spit out my drink the day I read it.
ger87410
How did I get here?
- Location
- Fort Worth
I subscribe to CERTS security bulletins sent out when they discover new holes in software.
After reading some of the many holes they find in microsoft's stuff and how they're exploited, I'd have to strongly disagree.
If you don't ever use the computer, U don't ever have to update.
Then there's the performance issue of updates.....