TechSpot

My Malware Logs, google is gonna kill me

By kylevs
Aug 21, 2009
  1. Hello all:

    I was referred here by a friend who was having the same issues:

    1. clicking google search results links will almost always redirect me to a third party site.

    2. My website www(dot)standingwavesound(dot)com has apparently been flagged as a host for malicious software even though I haven't updated it in months. I was told that whatever is/was on my machine could figure out my passwords and do all this through the "back door". This is a site that I'm using for my business and as a reference when I'm applying for jobs trying to further my career.

    Any help or advice you have would be greatly appreciated. And if you ever need sound design or music for anything....it will be on me. I have attached my logs to this thread.
     

    Attached Files:

  2. raybay

    raybay TS Evangelist Posts: 7,241   +9

    Yup, you have some problems you are now sharing with the public... read those logs yourself... and explain them to yourself.
     
  3. kylevs

    kylevs TS Rookie Topic Starter

    well, thanks? i guess raybay.

    i thought this was the proper place to upload those log files to receive help. was i mistaken? and if so could you point me in the right direction.
     
  4. Kcircyrd

    Kcircyrd TS Rookie Posts: 216

    No, what we are suggesting is that what you need to know is posted. Malware bytes found some evil stuff.
    The other two files seem ok, so we assuming that MalwareBytes removed everything.

    But here is the info you need on files and infections from your own logs:
    C:\Program Files\Native Instruments\Pro-53\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Steinberg\Cubase SX\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Steinberg\Nuendo 2\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Steinberg\Nuendo 3\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\Camel\Cameleon5000Data\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\Camel\CamelPhat\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\Camel\CamelSpace\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\GMEDIAMusic\Uninstall\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\rgcaudio z3ta+\z3ta+Uninstall\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\Program Files\Vstplugins\SCARBEE\VKFX User Presets\UNWISE.EXE (Malware.Packer.Morphine) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\lowsec\local.ds (Stolen.data) -> Delete on reboot.
    C:\WINDOWS\system32\lowsec\user.ds (Stolen.data) -> Delete on reboot.
    C:\WINDOWS\system32\sdra64.exe (Trojan.FakeAlert) -> Delete on reboot.

    What you need to do now is run the scans again, preferably in SAFE MODE, as some evils hide in memory and return when you reboot.
    You can do a Google search on each of the infestations listed in your log to learn more.... generally
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...