I found this....W32.Sinnaka.A@mm

Discussion in 'Malware Help (A Specialist Will Reply)' started by theprofessor, Nov 19, 2005.

  1. theprofessor

    theprofessor Private E-2

    I was doing a scan on Microsoft Anti Spyware and this little box popped up beside it. Heres what I got from it.


    Attention! Your system is under control of remote computer with IP address 227.4.167.118. The remote computer has access to the following folders on your PC:
    - \WINDOWS\System32
    - \Program Files\Internet Explorer
    - \My Documents
    - Drive C:\ files
    Click here to download official anti-spyware software

    Your private info is collected by W32.Sinnaka.A@mm Your IP address:xxx.xxx.xxx.xxx
    Your Country:GU, Guam They know you're using:Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.7.10) Gecko/20050716 Firefox/1.0.6 Operation System:OS Windows Risk status for futher investigation:VERY HIGH RISK Time of investigation:Fri Nov 18 8:14:55 PST 200

    Funny thing is it never showed up as like 1 threat detected or anything at the end of the scan. I figured they just make that crap up to send you to the link of that page so you can buy their software. I also ran Spybot S&D/Adaware/Norton/and a Trend Micro scan. Nothing came up as having this. Everything was updated too.

    So if this is on there can someone please walk me through the steps on how to remove it.

    Hijack log posted above
     
  2. theprofessor

    theprofessor Private E-2

    • Edit by bjgarrick: Unrequested, Inline HJT log removed!
     
    Last edited by a moderator: Nov 19, 2005
  3. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    Welcome to MajorGeeks.com, please follow the steps below:

    http://www.majorgeeks.com/images/grenade.gif Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support

    • Make sure you check version numbers and get all updates.
    http://www.majorgeeks.com/images/grenade.gif Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

    http://www.majorgeeks.com/images/grenade.gifAfter doing ALL of the above and you still have a problem, make sure you have booted to normal mode and run the steps in the below thread to properly use HijackThis and attach the log:

    http://www.majorgeeks.com/images/grenade.gif Downloading, Installing, and Running HijackThis
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds