TechSpot

Win heur 32

By L1nk115
Apr 29, 2009
  1. hi sorry for the typos and grammatical errors. I am on my ipod at the moment
    Okay i was diagnosed with win 32 heur. And i cannot go on the internet. I would run the 8 steps program but i dont know what to do. Ajy ideas
     
  2. L1nk115

    L1nk115 TS Rookie Topic Starter

    here are the logs

    -Thanks
     
  3. touch

    touch TS Rookie Posts: 978

  4. L1nk115

    L1nk115 TS Rookie Topic Starter

    File: Updater.exe
    Status:
    INFECTED/MALWARE
    MD5: ebe8ef04b48770c06f19513480d7b941
    Packers detected:
    -

    Scan taken on 30 Apr 2009 07:44:03 (GMT)
    A-Squared
    Found Backdoor.Win32.Omega.a!IK
    AntiVir
    Found TR/Dropper.Gen
    ArcaVir
    Found nothing
    Avast
    Found nothing
    AVG Antivirus
    Found nothing
    BitDefender
    Found nothing
    ClamAV
    Found nothing
    CPsecure
    Found nothing
    Dr.Web
    Found nothing
    F-Prot Antivirus
    Found nothing
    F-Secure Anti-Virus
    Found nothing
    Ikarus
    Found Backdoor.Win32.Omega.a
    Kaspersky Anti-Virus
    Found nothing
    NOD32
    Found probably unknown NewHeur_PE (probable variant)
    Norman Virus Control
    Found nothing
    Panda Antivirus
    Found nothing
    Quick Heal
    Found nothing
    Sophos Antivirus
    Found nothing
    VirusBuster
    Found nothing
    VBA32
    Found nothing
     
  5. touch

    touch TS Rookie Posts: 978

    Please download Combofix:
    http://subs.geekstogo.com/ComboFix.exe
    And save to the desktop.


    Open notepad and copy/paste the text in the quotebox below into it:
    Name the file as CFScript
    and Save it on the desktop

    http://www.fromsej.saknet.dk/billeder/cfscript.gif

    Once saved, refering to the picture above, drag CFScript.txt into ComboFix.exe.

    Combofix will create a logfile and display it after your computer has rebooted. Usually located in c:\combofix.txt, please attach it to your next post

    Note:
    Do not mouseclick combofix's window whilst it's running. That may cause it to stall
     
  6. L1nk115

    L1nk115 TS Rookie Topic Starter

    here you go
     
  7. touch

    touch TS Rookie Posts: 978

    It looks clean :)

    Please attach fresh hijackthis log
     
  8. L1nk115

    L1nk115 TS Rookie Topic Starter

    thanks for all the help touch

    and how do i get rid of avg?
     
  9. touch

    touch TS Rookie Posts: 978

    My pleasure :)

    Uninstall your AVG Antivirus
    Run the AVGRemove Tool

    Install Avira Free AntiVirus, from here ->
    Avira
    Or: Avast

    Install, update it, run a complete systemscan.

    Attach fresh hijackthis log, and tell how things are running ?
     
  10. L1nk115

    L1nk115 TS Rookie Topic Starter

    AVS scanned but none of the files detected were removed
    also, i tend to have a sound driver problem when i play warcraft 3 and gives me a BSOD IF i play w/ sound on. (Otherwise, its perfectly fine). the error says its located in RTKhdaud.sys and i think its a sound driver problem, but I don't know what version I am and if I DO search it online or the realtek website i can't find it.

    computer is working fine now though. No signs of sluggish responses and Internet is working again.

    heres the hijack and AVS scan
     
  11. touch

    touch TS Rookie Posts: 978

    I'm sorry, but we do not support piracy. Due to the fact that your Avira logfile clearly shows you have atleast one known crack/keygen, we will not help you.

    This is the main reason your computer is infected. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk.

    When you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer.
     
     
  12. L1nk115

    L1nk115 TS Rookie Topic Starter

    k im sorry
    nonetheless thanks for the help
     
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.