pest trap ? [Archive] - Safer-Networking Forums

View Full Version : pest trap ?

ctfla

2007-03-30, 18:36

I've just been assaulted by pest trap which also unleashed a number of other things. I immediately updated spybot to version 1.4 and ran a fix. Spybot 1.4 found the pest trap as well as the other things and seems to have removed them. Do I still need to boot up in safe mode and run spybot again to completely remove this nuisance? Is there anything else I should watch for or look for to make sure it's gone? Trend Mico caught the following two virus that pest trap unleashed, us26.exe and us26info.exe, and quarantined them.
Thanks for your help.

tashi

2007-03-30, 18:48

Spybot 1.4 found the pest trap as well as the other things and seems to have removed them. Do I still need to boot up in safe mode and run spybot again to completely remove this nuisance? Is there anything else I should watch for or look for to make sure it's gone? <snip>

A Spybot-S&D scan in 'safe mode' is a good idea. :) You can see more about the so called, Smit family of pests, here: Rogues:VirusBurst, PestTrap & other desktop type hijacks; commonly known as Smitfraud (http://forums.spybot.info/showthread.php?t=4015)

As Spybot appears to have removed the infection, don't run the fix in that topic; but if you would like to have a HJT log checked:

"BEFORE you POST" -Preliminary Steps (http://forums.spybot.info/showthread.php?t=288)

You would then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22)

ctfla

2007-03-30, 20:19

Thanks, Tashi. I'll run spybot in safe mode just to be safe. Would doing a system restore in xp prof. undo everything that this pest trap did? Also does the spybot immunization setting prevent this family of threats?
Thanks again.

tashi

2007-03-30, 20:55

Hi there.

That particular infection releases new variants all the time, so detections are on-going and the reason other tools are sometimes necessary.

Using System Restore at the moment is not a good idea, it's best to see if the infection has been eliminated.

Also one's previous restore point could have nasties residing there.

If you have any concerns the computer may still be infected, and to be on the safe side, produce a log and have it analysed. :)