What is this?

Discussion in 'Malware Help (A Specialist Will Reply)' started by wesburnsco86, Nov 12, 2005.

  1. wesburnsco86

    wesburnsco86 Private E-2

    lockx.exe
    I have read and followed Read this before posting,still no results in finding or deleting this.
     
    wesburnsco86, Nov 12, 2005
    #1
  2. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Please post a HijackThis log as an ATTACHMENT.
     
    Shadow_Puter_Dude, Nov 13, 2005
    #2
  3. wesburnsco86

    wesburnsco86 Private E-2

    here it is
     

    Attached Files:

    wesburnsco86, Nov 16, 2005
    #3
  4. bjgarrick

    bjgarrick MajorGeeks Admin - Malware Expert

    This file belongs to the W32/Sdbot-ADD WORM. SPD will assist you in the removal of this baddie.
     
    bjgarrick, Nov 16, 2005
    #4
  5. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Please make sure System Restore is OFF.

    Make sure you have done the following:
    How to view hidden, system files & folders!
    Searching for Hidden Files on WinXP

    Scan with HijackThis and fix the following:
    Reboot to Safe Mode.

    Using the Search function in the Start Menu, search for the following:
    Delete every occurance of the file.

    Rebbot to Normal Mode and post a fresh HijackThis log.
     
    Shadow_Puter_Dude, Nov 16, 2005
    #5
  6. wesburnsco86

    wesburnsco86 Private E-2

    I think its history....
     

    Attached Files:

    wesburnsco86, Nov 17, 2005
    #6
  7. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Your HijackThis log is clean.

    You should install SP2 and run Windows Update to bring your OS Up2Date; as it is now represents a serious security risk to your computer. SP2 patches many holes in the Windows OS, as well as adds some security features.
     
    Shadow_Puter_Dude, Nov 17, 2005
    #7
  8. PhilliePhan

    PhilliePhan Guest

    Hey Shadow,

    There are likely additional components of this rootkit remaining on the machine constituting a possible security risk. You might consider using Blacklight to track them down, if they remain.

    Just a thought, sorry to butt in! :)
     
    PhilliePhan, Nov 17, 2005
    #8
  9. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Just incase you do not know what PP was referring to, see: http://www.f-secure.com/blacklight/cure.shtml
     
    chaslang, Nov 17, 2005
    #9
  10. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    That looks like a good idea. wesburnsco86 click-on the above link, download backlight and run it.
     
    Shadow_Puter_Dude, Nov 17, 2005
    #10

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds