Trojans, Keyloggers, Malware, and Backdoors Galore!

#1
I discovered that the kids had managed to switch off the firewall on their computer last night, so obviously I did a quick anti-virus and spyware check.

It found one virus (the 'this-is-not-a-virus' virus!) and a few tracking cookies and so on, but what really worried me was what I could see of the files that were being checked (as the scans were run).

It looks like win32 is absolutely chock full of trojans, keyloggers, malware, backdoors, a fun program called Theif 2.0, another called Theef, and so on......

I've tried doing a manual search, so I could delete them, but the computer can't find them.

How in Hell do I get rid of all this crap? Is formatting the computer my best option?

Thanks in advance for any help.

Regards
T_T
 
#5
TT,

Yes you can use AVG free edition, this only gives you the anti virus part if you want a complete solution I would recommend AVG 8.


Stilts

P.S PM inbound
 
#7
grumpyoldb said:
Spybot S&D will find all the spyware and trojans on you system and delete them, and it's free.

http://www.safer-networking.org/en/index.html

I wouldn't run a PC without it.
Good call, nice bit of software


Do remember some bits of software miss bits and others pick it up...

I run..

Spybot

Toni arts easy cleaner

Ad adware se personal
 
#8
Tartan_Terrier said:
I discovered that the kids had managed to switch off the firewall on their computer last night
Stop looking at animal porn :lol:

Tartan_Terrier said:
Is formatting the computer my best option?
Probably your last option..you should be able to sort it...

Try above options and let us all know how it goes!
 
#9
Hi again guys,
I've tried all of the above without anything being found, but when I run a scan I can still see that it's checking files with interesting names like keylogger, thief, watcher, and so on.

In the meantime (in fact yesterday) I got a new laptop from my missus (surplus from her work) and supposedly wiped and re-loaded with Windows by the IT guy at her work.

The first thing I did was to install a firewall, and antivirus. I then looked a few websites (Arrse, yahoo, and a couple of Danish sites) before running a scan.

It found nothing, but once again I could see that the same dodgy file/program names were cropping up.

I'm using the same copy of Zone Alarm as I have on the other computer, and not only that but both computers are surplus from my missus's work.

So the questions are;

Is it a corrupt copy of Zone Alarm I have?

Is the reboot disc the IT guy is using dodgy?

Or is one of the few sites I mentioned boobytrapped?

Any ideas guys?
 
#13
I did the online Blacklight scan and it found nothing.

Is there any other program that's likely to find all this stuff?
 
#15
BiscuitsAB said:
anyone got a free registry cleaner? I'm facing the option of a format and restore unless i can clear some of the crap out of the registry. nothing nasty just 4 years of cr@p on the laptop.
If you get a July (!) copy of PCPro, there's a 'limited' edition of Ashampoo Winoptimiser on the freebie DVD, which has sucked all the rubbish out of my registry nicely.

One or both of Spybot and AdAware (both free) this week got rid of a CiD infection on my computer which it picked up from a site advertising anti-spyware!
 
#16
Tartan_Terrier said:
Hi again guys,
I've tried all of the above without anything being found, but when I run a scan I can still see that it's checking files with interesting names like keylogger, thief, watcher, and so on.

In the meantime (in fact yesterday) I got a new laptop from my missus (surplus from her work) and supposedly wiped and re-loaded with Windows by the IT guy at her work.

The first thing I did was to install a firewall, and antivirus. I then looked a few websites (Arrse, yahoo, and a couple of Danish sites) before running a scan.

It found nothing, but once again I could see that the same dodgy file/program names were cropping up.

I'm using the same copy of Zone Alarm as I have on the other computer, and not only that but both computers are surplus from my missus's work.

So the questions are;

Is it a corrupt copy of Zone Alarm I have?

Is the reboot disc the IT guy is using dodgy?

Or is one of the few sites I mentioned boobytrapped?

Any ideas guys?
I'm not familiar with the software but are you sure you aren't watching a list of filenames that is being used to direct the search?

I have always used Windows Explorer to track down "interesting" filenames. But switch on hidden files and folders in \Tools\Options\View first.

Litotes
 
#17
I have just performed a background earch for "thief" and my heart stopped when it found two files....

Luckily, they are the Oxygen Thief .gifs used on this site!

Litotes
 
#18
Litotes said:
Tartan_Terrier said:
Hi again guys,
I've tried all of the above without anything being found, but when I run a scan I can still see that it's checking files with interesting names like keylogger, thief, watcher, and so on.

In the meantime (in fact yesterday) I got a new laptop from my missus (surplus from her work) and supposedly wiped and re-loaded with Windows by the IT guy at her work.

The first thing I did was to install a firewall, and antivirus. I then looked a few websites (Arrse, yahoo, and a couple of Danish sites) before running a scan.

It found nothing, but once again I could see that the same dodgy file/program names were cropping up.

I'm using the same copy of Zone Alarm as I have on the other computer, and not only that but both computers are surplus from my missus's work.

So the questions are;

Is it a corrupt copy of Zone Alarm I have?

Is the reboot disc the IT guy is using dodgy?

Or is one of the few sites I mentioned boobytrapped?

Any ideas guys?
I'm not familiar with the software but are you sure you aren't watching a list of filenames that is being used to direct the search?

I have always used Windows Explorer to track down "interesting" filenames. But switch on hidden files and folders in \Tools\Options\View first.

Litotes
Most malware hides its self from explorer.

If you can spare an hour watch the video I posted ^^
 
Thread starter Similar threads Forum Replies Date
fltpilot Gaming and Software 8
S Gaming and Software 22
CutLunchCommando Gaming and Software 3

Similar threads

New Posts

Latest Threads