Democratic Underground Latest Greatest Lobby Journals Search Options Help Login
Google

Is there a new spyware program out there?

Printer-friendly format Printer-friendly format
Printer-friendly format Email this thread to a friend
Printer-friendly format Bookmark this thread		 This topic is archived.
Home » Discuss » DU Groups » Computers & Internet » Computer Help and Support Group Donate to DU
 
catmandu57 Donating Member (1000+ posts) Send PM | Profile | Ignore Wed Apr-05-06 03:43 PM
Original message
Is there a new spyware program out there?
I've picked up something when I wasn't paying attention, it's some kind of search program, one that highlites keywords, even on user names.
I tried to download a spykiller, but this thing senses what I'm looking for makes me think of a keylogger, and I can't get any type of killer to download.
I've got ad aware, spybot s/d, spy blaster and nothing is finding it.
So far it's more of a nuisense, but I don't want carried off to search pages or product pages, how can I kill this?
Printer Friendly | Permalink |  | Top
Jersey Devil Donating Member (1000+ posts) Send PM | Profile | Ignore Wed Apr-05-06 05:25 PM
Response to Original message
1. Try ewido
Edited on Wed Apr-05-06 05:26 PM by Jersey Devil
They have a free version. I've used it and it found stuff others did not find.

http://www.ewido.net/en/
Printer Friendly | Permalink |  | Top
 
Berserker Donating Member (1000+ posts) Send PM | Profile | Ignore Wed Apr-05-06 07:33 PM
Response to Original message
2. Go here they will ask you
to post an HiJackThis log. It will all be explained in easy to follow directions. They WILL find the problem.
http://castlecops.com/f15-General_Security.html
Printer Friendly | Permalink |  | Top
 
catmandu57 Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Apr-06-06 03:37 PM
Response to Original message
3. Son of a bitch is still here
I can't download anything to kill it, I've tried ewido, it looked promising but I can't download the program, instead I get carried off to msn searchpage, and from there to some funky page.
This thing has some type of AI, it lies undetected and springs up, I'm going to buy the webroot software, and try loading it, if that doesn't work the only thing I can do is wait until someone much smarter than me comes up with a way to kill this monster.
Printer Friendly | Permalink |  | Top
 
Berserker Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Apr-06-06 04:57 PM
Response to Reply #3
4. Go to the link I put up
and they will show you how to post a Hijackthis log. This is one sure way of getting rid of that for free. It's very easy to do.
Printer Friendly | Permalink |  | Top
 
Berserker Donating Member (1000+ posts) Send PM | Profile | Ignore Thu Apr-06-06 05:00 PM
Response to Reply #4
5. Here is what it will look like
Logfile of HijackThis v1.99.1
Scan saved at 4:58:38 PM, on 4/6/06
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGCC.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGEMC.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGAMSVR.EXE
C:\PROGRAM FILES\ERASER\ERASER.EXE
C:\PROGRAM FILES\CREATIVE\SBAUDIGY\TASKBAR\CTLTASK.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE
D:\HIJACKTHIS\HIJACKTHIS.EXE

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O4 - HKLM\..\Run: SysTray.Exe
O4 - HKLM\..\Run: C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP
O4 - HKLM\..\Run: C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGEMC.EXE
O4 - HKLM\..\Run: C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE
O4 - HKLM\..\Run: C:\WINDOWS\scanregw.exe /autorun
O4 - HKCU\..\Run: C:\PROGRAM FILES\ERASER\ERASER.EXE -hide
O4 - HKCU\..\Run: C:\Program Files\Creative\SBAudigy\Taskbar\CTLTask.exe
O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\SSV.DLL
O12 - Plugin for .spop: C:\PROGRA~1\INTERN~1\Plugins\NPDocBox.dll
Printer Friendly | Permalink |  | Top
 
DU AdBot (1000+ posts) Click to send private message to this author Click to view this author's profile Click to add this author to your buddy list Click to add this author to your Ignore list Thu Dec 26th 2024, 05:32 PM
Response to Original message
Advertisements [?]
 Top

Home » Discuss » DU Groups » Computers & Internet » Computer Help and Support Group Donate to DU

Powered by DCForum+ Version 1.1 Copyright 1997-2002 DCScripts.com
Software has been extensively modified by the DU administrators

Important Notices: By participating on this discussion board, visitors agree to abide by the rules outlined on our Rules page. Messages posted on the Democratic Underground Discussion Forums are the opinions of the individuals who post them, and do not necessarily represent the opinions of Democratic Underground, LLC.

Home  |  Discussion Forums  |  Journals |  Store  |  Donate

About DU  |  Contact Us  |  Privacy Policy

Got a message for Democratic Underground? Click here to send us a message.

© 2001 - 2011 Democratic Underground, LLC