a little killbox help please?

Discussion in 'Malware Help (A Specialist Will Reply)' started by DKSuddeth, Mar 6, 2005.

  1. DKSuddeth

    DKSuddeth Private E-2

    I've done all kinds of scans, it seems that theres something they can't rid of. heres my 'findit' file. I appreciate the help.
     

    Attached Files:

    DKSuddeth, Mar 6, 2005
    #1
  2. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Have you removed any files relating to VX2?

    Open VX2.BetterInternet Finder XP/2k and Click on the "Find Vx2.Betterinternet" button.

    Then click on these buttons in the right pane unless they are not enabled:

    UserAgent$ Button

    Guardian.reg

    Restore Policy

    Allow Machine to Reboot.
     
    bjgarrick, Mar 6, 2005
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    That's an old version of findit.bat that you are using. The old version does not show aspack and Qooligic problems, or Narrator trojans.

    Get the newer version here: Generic Detection Tool - NT/2000/XP

    But I do not see why you are running it anyway. No VX2 problems exist anyway.
     
    chaslang, Mar 6, 2005
    #3
  4. DKSuddeth

    DKSuddeth Private E-2

    ok, i ran the vx2 finder. not sure why i should have done that because I wasn't noticing any issues related to vx2.

    downloaded the new find it. heres my output.

    thanks for taking a look. it is greatly appreciated.

    FYI, it was reported to me from my workplace that my laptop is infected with the KORGO virus, yet i've been unable to track that down. Ran the korgo cleaner from norton anyway.
     

    Attached Files:

    DKSuddeth, Mar 7, 2005
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    The only thing I see in the new output.txt file is C:\WINDOWS\system32\iecustme.exe
    I believe this is bad! Why don't you start by trying to rename it?

    What is the reason for this thread anyway? Is it due to the Korgo virus you mentioned?
    If so, have you run the full READ ME procedure?
     
    chaslang, Mar 7, 2005
    #5
  6. DKSuddeth

    DKSuddeth Private E-2

    I have run the full READ ME. I do it on a montly basis pretty much. when the tech told me that i had the korgo virus I was stunned. There may not actually be anything on my system, but i'm looking for some confirmation from the board. I'm relatively knowledgable about virus's, just wanting some backup is all.
     
    DKSuddeth, Mar 7, 2005
    #6
  7. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    While running the READ ME can cleanup many problems, it is no guarantee that you are perfectly clean. That's why you see so many thread where we are still doing manual cleanups. Nothing works absolutely perfectly. That's why we have so many different tools and why we also added the Alternative Scans section to the READ ME.
     
    chaslang, Mar 7, 2005
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds