Feck

Mar. 12th, 2010 06:45 pm
[personal profile] arwen_lune
PC infected. Feck! I think there may have been a 'you must reboot to update AVG' today - which I did, stupidly, but AVG doesn't need rebooting I think. Then there was an authenic looking AVG popup that said 'this site is not safe' or however it words it. While I was in fact on a perfectly legit site I visit often. I clicked OK. It directed me to a tredols.com site with an spl.php and now does that every time I go to that site.

It's this shit

Halp! AVG is not finding it and neither is Hitman Pro. What do I doooooo *wail*

Edit: four different scans haven't found anything. The site that had the problem is down 'due to problems' now so I suspect it may be a problem on their side. Thanks for the suggestions.
Tags:
Flat | Top-Level Comments Only

(no subject)

Date: 2010-03-12 05:49 pm (UTC)
From: [identity profile] damanique.livejournal.com
I searched for it and my Avast virusscanner picked it up and broke off the connection. (I love Avast's real-time scanner, it detects a problem before you're even on the webpage with LOUD NOISES too, so you can break it off before you go to the site.)

So, yeah, maybe try Avast?

Also, a huge help in stopping malware sites is to use a custom hosts file: http://someonewhocares.org/hosts/

To stop this site from being accessed by your browser, add the following line to your hosts file:

127.0.0.1 tredols.com

Now, when you're redirected by the virus to tredols.com, you'll end up at 127.0.0.1 instead (which is your computer) and not actually the malware site. It should at least stop the site from doing more damage.
Edited Date: 2010-03-12 05:52 pm (UTC)

(no subject)

Date: 2010-03-12 06:05 pm (UTC)
From: [identity profile] miss-corinne.livejournal.com
If you can get on the web maybe through a different browser there's this http://housecall.trendmicro.com/

(no subject)

Date: 2010-03-12 06:07 pm (UTC)
From: [identity profile] hobnobs.livejournal.com
1. ) Install and run MalwareBytes Anti-Malware.
http://www.malwarebytes.org/mbam.php

2. ) Run ComboFix.
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
(Guide at http://www.bleepingcomputer.com/combofix/how-to-use-combofix )

3. ) Re-run ComboFix.

4. ) Re-run MalwareBytes as a full scan.

5. ) If it is still in there, I'll be on channel.

Usually I find most things depart after the initial mix of MalwareBytes/Combofix.
Flat | Top-Level Comments Only

Profile

arwen_lune

July 2011

S M T W T F S
     12
3456789
10111213141516
17181920212223
242526 27282930
31      

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Top of page