Page 2 of 3 FirstFirst 123 LastLast
Results 11 to 20 of 28

Thread: malware that keeps coming back

  1. #11
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    ---------------------------------------------------------
    ewido anti-spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 2:26:56 PM 6/26/2006

    + Scan result:



    C:\Program Files\Cowabanga\Cowabanga.exe -> Adware.MediaTicket : No action taken.
    C:\WINDOWS\mtuninst.exe -> Adware.MediaTickets : No action taken.
    C:\Program Files\Common Files\Y1123OA.exe -> Downloader.PurityScan.cq : No action taken.
    C:\Documents and Settings\Drew\Local Settings\Temp\svrhost.exe -> Trojan.Pakes : No action taken.
    C:\WINDOWS\system32\oins.exe -> Trojan.Scapur.k : No action taken.
    C:\WINDOWS\system32\1024 -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld15EB.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld36B8.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld74C9.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ldF80B.tmp -> Trojan.Small : No action taken.


    ::Report end

    also i wanted to ask you about what would be the best antivirus software that you recomend? thanks

  2. #12
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    sorry for the numerous posts, but should i have ewido delete all the files or quarantine them, as of now it is set to quarantine. my other question is if i should to the kaspersky scan and delete all the files it selected as "infected"?
    thanks ~lostcause

  3. #13
    Security Expert little eagle's Avatar
    Join Date
    Nov 2005
    Location
    Texas
    Posts
    1,216

    Default

    should i have ewido delete all the files or quarantine them
    Delete them, quarantine them when not sure.

    Then clean out you system restore.

    To reset your restore points, please note that you will need to log into your computer with an account
    which has full administrator access. You will know if the account has administrator access because
    you will be able to see the System Restore tab. If the tab is missing, you are logged in under a limited account.

    1. Turn off System Restore.
    On the Desktop, right-click My Computer.
    Click Properties.
    Click the System Restore tab.
    Check Turn off System Restore.
    Click Apply, and then click OK.

    2. Reboot.

    3. Turn ON System Restore.
    On the Desktop, right-click My Computer.
    Click Properties.
    Click the System Restore tab.
    UN-Check *Turn off System Restore*.
    Click Apply, and then click OK.
    MS-MVP Windows Security 2006,2007,2008 & 2009
    ASAP member since 2004

  4. #14
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    OK, i did the system restore thing.

  5. #15
    Security Expert little eagle's Avatar
    Join Date
    Nov 2005
    Location
    Texas
    Posts
    1,216

    Default

    C:\Program Files\Cowabanga\Cowabanga.exe -> Adware.MediaTicket : No action taken.
    C:\WINDOWS\mtuninst.exe -> Adware.MediaTickets : No action taken.
    C:\Program Files\Common Files\Y1123OA.exe -> Downloader.PurityScan.cq : No action taken.
    C:\Documents and Settings\Drew\Local Settings\Temp\svrhost.exe -> Trojan.Pakes : No action taken.
    C:\WINDOWS\system32\oins.exe -> Trojan.Scapur.k : No action taken.
    C:\WINDOWS\system32\1024 -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld15EB.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld36B8.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ld74C9.tmp -> Trojan.Small : No action taken.
    C:\WINDOWS\system32\1024\ldF80B.tmp -> Trojan.Small : No action taken.
    You did delete them
    MS-MVP Windows Security 2006,2007,2008 & 2009
    ASAP member since 2004

  6. #16
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    so is my computer clean now? and what antivirus software do you recommend?

  7. #17
    Security Expert little eagle's Avatar
    Join Date
    Nov 2005
    Location
    Texas
    Posts
    1,216

    Default

    AVG is free if you would like to pay maybe Nod32.
    MS-MVP Windows Security 2006,2007,2008 & 2009
    ASAP member since 2004

  8. #18
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    well thank you for all your time and effort. i really appreciate it.

    ~ lostcause

  9. #19
    Junior Member
    Join Date
    Jun 2006
    Posts
    15

    Default

    i still get some popups! is there anything more i can do for those?

  10. #20
    Security Expert little eagle's Avatar
    Join Date
    Nov 2005
    Location
    Texas
    Posts
    1,216

    Default

    Follow the recommendations in Tony Klein's article
    So how did I get infected in the first place?

    And install google toolbar.

    And use firefox
    MS-MVP Windows Security 2006,2007,2008 & 2009
    ASAP member since 2004

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •