| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 64103 | 2005-12-03 05:38:00 | Spyaxe and | Tim_Northland (9353) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 409704 | 2005-12-03 05:38:00 | Has anyone had any experiance with Spyaxe and Spytrooper malware? Both of these malwares set up fake security alerts that look like genuine windows alerts and prompt download of other malware. Spybot Search and Destroy and Adaware fail to detect them, Norton Antivirus intercepts a downloader trojan asociated with them and deletes it. I did however find somesort of help here http://noahdfear.geekstogo.com/ after reading this thread www.experts-exchange.com I'm not certain the remnants of the Malware are gone, as I still see websites blocked by fake internet explorer security alerts such as the favourites link I had to this PressF1 page. (Rewriting the URL closer to its root seemed to fix that though.) also I see ocasional fake windows security alerts. These may still be being cleaned by SmitRem (downloaded from the url above) as they popup. If anyone has been successful in killing Spyaxe I'd be grateful to hear how in case I'm havent been succesful. I was dubious in downloading teh fixes I've mentioned above but there seems to be no result returned in searching this forum or Symantec's site. regards Tim |
Tim_Northland (9353) | ||
| 409705 | 2005-12-03 05:53:00 | Get this (www.merijn.org) Unzip it into its own folder. And then scan, and then copy and paste the log here. Or try this (dl.filekicker.com) Download it, update it then click on scan. See if it removes it. Then go to the utils menu and select option 3 to 7. In another forum it says to use system restore, and go back a few days, if u use XP/Me. BUT this may depend on whether you've installed quite a few things recently. Or follow this posting (www.castlecops.com) |
Speedy Gonzales (78) | ||
| 409706 | 2005-12-03 09:22:00 | Tim Northland. If you have a virus or any kind of malware I suggest you let professionals help you fix it. Download HijackThis (www.cyberanswers.org) as already suggested. It will create a directory folder for you in C\Program files. Run a scan and save the log file. Post the whole log file here at www.cyberanswers.org .Do not fix anything since most of them listed there are harmless (some are system required). This program will help determine what,if any, spyware/malware is on your computer. |
Pancake (6359) | ||
| 409707 | 2005-12-03 10:47:00 | Pancake I suggest you look back at Speedy's older posts, you will see that he has fixed many, many spyware infested computers on this site by doing what he has suggested above. In short he is a HijackThis expert. | zqwerty (97) | ||
| 409708 | 2005-12-03 10:51:00 | I agree with zqwerty here :), Speedy Gonzales knows what he is doing ;) | stu161204 (123) | ||
| 409709 | 2005-12-03 11:41:00 | Like every other thread on this forum, many will reply with their opinions of how problems should be handled and Pancake is entitled to his. His opinion makes perfect sense. Get off his case, if you're not posting an offer of help to Tim Northland, don't post at all. My opinion: Download ewido from www.ewido.net update it after installation, then turn off system restore, run ewido and your problem should be gone |
bartsdadhomer (80) | ||
| 409710 | 2005-12-03 11:54:00 | Being a bit new to the forum I was not aware of that.I to am also an HJT expert as you may or may not have seen by my signature. :) | Pancake (6359) | ||
| 409711 | 2005-12-03 12:18:00 | No reason for me to help I knew Speedy had it sussed. Posting the log at a HijackThis analysis site is not as easy for anyone unfamiliar with the program as following Speedy's advice. | zqwerty (97) | ||
| 409712 | 2005-12-03 12:54:00 | If you want to run HJT paste your results here (http://hjt.iamnotageek.com/) and see if you can figure it out your self, its the only way to learn, hands on. Secondly, if you think the piece of software you are installing to save you from spyware is the best in the best in the world, check here (www.spywarewarrior.com) first. My opinion: If they had been running NOD32 in the first place there wouldnt be any issues to deal with now |
Rob99 (151) | ||
| 409713 | 2005-12-03 13:15:00 | Trying to fix one own HJT log without any experiance can ,in some respect,be fatal if you dont know what you are doing.In the three years that I have been cleaning logs I have seen some take this path and just clearing the log is no enought.Many of the files lay buried.A lot of the new malware can still run from hidden files and needs to be weeded out.Only fixing half of the virus/trojan is as bad as not fixing it at all....As Rob99 has said You can beat having good protection in the first place.. | Pancake (6359) | ||
| 1 2 3 4 | |||||