Win heur 32
- Thread starter L1nk115
- Start date
- Status
touch
Posts: 976 +0
Hello
Please upload and have this file scanned:
C:\WINDOWS\system32\Updater.exe
Here
http://virusscan.jotti.org/ Or here: http://www.virustotal.com/en/indexf.html
Attach back the results
Please upload and have this file scanned:
C:\WINDOWS\system32\Updater.exe
Here
http://virusscan.jotti.org/ Or here: http://www.virustotal.com/en/indexf.html
Attach back the results
File: Updater.exe
Status:
INFECTED/MALWARE
MD5: ebe8ef04b48770c06f19513480d7b941
Packers detected:
-
Scan taken on 30 Apr 2009 07:44:03 (GMT)
A-Squared
Found Backdoor.Win32.Omega.a!IK
AntiVir
Found TR/Dropper.Gen
ArcaVir
Found nothing
Avast
Found nothing
AVG Antivirus
Found nothing
BitDefender
Found nothing
ClamAV
Found nothing
CPsecure
Found nothing
Dr.Web
Found nothing
F-Prot Antivirus
Found nothing
F-Secure Anti-Virus
Found nothing
Ikarus
Found Backdoor.Win32.Omega.a
Kaspersky Anti-Virus
Found nothing
NOD32
Found probably unknown NewHeur_PE (probable variant)
Norman Virus Control
Found nothing
Panda Antivirus
Found nothing
Quick Heal
Found nothing
Sophos Antivirus
Found nothing
VirusBuster
Found nothing
VBA32
Found nothing
Status:
INFECTED/MALWARE
MD5: ebe8ef04b48770c06f19513480d7b941
Packers detected:
-
Scan taken on 30 Apr 2009 07:44:03 (GMT)
A-Squared
Found Backdoor.Win32.Omega.a!IK
AntiVir
Found TR/Dropper.Gen
ArcaVir
Found nothing
Avast
Found nothing
AVG Antivirus
Found nothing
BitDefender
Found nothing
ClamAV
Found nothing
CPsecure
Found nothing
Dr.Web
Found nothing
F-Prot Antivirus
Found nothing
F-Secure Anti-Virus
Found nothing
Ikarus
Found Backdoor.Win32.Omega.a
Kaspersky Anti-Virus
Found nothing
NOD32
Found probably unknown NewHeur_PE (probable variant)
Norman Virus Control
Found nothing
Panda Antivirus
Found nothing
Quick Heal
Found nothing
Sophos Antivirus
Found nothing
VirusBuster
Found nothing
VBA32
Found nothing
touch
Posts: 976 +0
Please download Combofix:
http://subs.geekstogo.com/ComboFix.exe
And save to the desktop.
Open notepad and copy/paste the text in the quotebox below into it:
Name the file as CFScript
and Save it on the desktop
http://www.fromsej.saknet.dk/billeder/cfscript.gif
Once saved, refering to the picture above, drag CFScript.txt into ComboFix.exe.
Combofix will create a logfile and display it after your computer has rebooted. Usually located in c:\combofix.txt, please attach it to your next post
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
http://subs.geekstogo.com/ComboFix.exe
And save to the desktop.
Open notepad and copy/paste the text in the quotebox below into it:
Name the file as CFScript
and Save it on the desktop
http://www.fromsej.saknet.dk/billeder/cfscript.gif
Once saved, refering to the picture above, drag CFScript.txt into ComboFix.exe.
Combofix will create a logfile and display it after your computer has rebooted. Usually located in c:\combofix.txt, please attach it to your next post
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
touch
Posts: 976 +0
My pleasure 
Uninstall your AVG Antivirus
Run the AVGRemove Tool
Install Avira Free AntiVirus, from here ->
Avira
Or: Avast
Install, update it, run a complete systemscan.
Attach fresh hijackthis log, and tell how things are running ?
Uninstall your AVG Antivirus
Run the AVGRemove Tool
Install Avira Free AntiVirus, from here ->
Avira
Or: Avast
Install, update it, run a complete systemscan.
Attach fresh hijackthis log, and tell how things are running ?
AVS scanned but none of the files detected were removed
also, i tend to have a sound driver problem when i play warcraft 3 and gives me a BSOD IF i play w/ sound on. (Otherwise, its perfectly fine). the error says its located in RTKhdaud.sys and i think its a sound driver problem, but I don't know what version I am and if I DO search it online or the realtek website i can't find it.
computer is working fine now though. No signs of sluggish responses and Internet is working again.
heres the hijack and AVS scan
also, i tend to have a sound driver problem when i play warcraft 3 and gives me a BSOD IF i play w/ sound on. (Otherwise, its perfectly fine). the error says its located in RTKhdaud.sys and i think its a sound driver problem, but I don't know what version I am and if I DO search it online or the realtek website i can't find it.
computer is working fine now though. No signs of sluggish responses and Internet is working again.
heres the hijack and AVS scan
touch
Posts: 976 +0
I'm sorry, but we do not support piracy. Due to the fact that your Avira logfile clearly shows you have atleast one known crack/keygen, we will not help you.
This is the main reason your computer is infected. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk.
When you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer.
This is the main reason your computer is infected. Visiting cracksites/warezsites - and other questionable/illegal sites is always a risk.
When you install the cracked software, you are running executable files from these dubious, unknown sources. You are in effect giving these sources access to information on your hard disk, and potential control over the operation of your computer.
- Status
Latest posts
-
Nvidia GeForce RTX 3050 6GB Review: Quiet Release, Dodgy Name- captaincranky replied
-
These credit cards feature OLEDs that light up upon payment- Uncle Al replied
