|
| Hi all,
My colleague at work received an email with a link that contained a virus. He opened it, then realised it was probably dodgy and closed out of it before the page finished loading. Was that too late? He does have AVG on his computer and it didn't come up with a warning when he clicked on the link. He's got the week off now and we need to start his pc up to look at some ordering info but I'm not sure what to expect, thanks for your help! |
Follow-Up Postings:
|
| We just ran a scan and all seems fine |
|
- Posted by ravencajun (My Page) on Fri, Aug 3, 12 at 0:43
| Run full updated malwarebytes scan immediately and then run a full superantispyware updated scan, both are free. You might also run an online antivirus scan like eset free. Let us know if you need to have links or help. And report back what is found. |
|
| Could you please send me the link for these scans? Thanks very much! |
|
- Posted by ravencajun (My Page) on Tue, Aug 7, 12 at 13:19
| Malwarebytes' Anti-Malware (Win) - Detecting and Removing Malware FREE version SUPERAntiSpyware select FREE edition RED button be sure to update each program prior to running the full scan. you can keep these and run them weekly or monthly for a good layered protection for your pc. They will not interfere with your Antivirus program since they do not run until you run them. |
|
| Thank you very much, I'll let you know what we find, if anything |
|
| I haven't run the scans on my colleagues computer yet but decided to try my own first. So the malwarebytes scan came up clean and the SUPERantispyware scan came up with some cookies and 2 trojans? This is the log: SUPERAntiSpyware Scan Log Generated 08/08/2012 at 12:17 PM Application Version : 5.5.1012 Core Rules Database Version : 9025 Scan type : Complete Scan Operating System Information Memory items scanned : 626 Adware.Tracking Cookie Trojan.Agent/Gen-Koobface[Bonkers] ------------------------------------------- I'll try the free online scanner next as well. |
|
| The free online scanner cleaned up 1 more file but I'm not sure what that was because I accidentally closed out of it |
|
- Posted by ravencajun (My Page) on Wed, Aug 8, 12 at 2:01
| Oh that's not good you had koobface, facebook backwards, it usually comes from facebook. Is part of a botnet. Very nasty bug, I would use another clean machine and change all your passwords because part of what it does is get all that info. You can google koobface and read the wiki on it. I think you should go to LzD forum and run some special scans to make sure you are fully clean. You need to go there, register, and post your own new thread in the malware removal area. The team will help you step by step. Post your logs there as you did here. I am there also, if you need assistance let me know. With this kind of infection it is best to be overly through. |
Here is a link that might be useful: LzD
|
| Will do, see you there. Just a quick question: we have 4 computers at work; all connected. Is it possible this trojan came from one of the other pc's because it's a network? |
Please Note: Only registered members are able to post messages to this forum. If you are a member, please log in. If you aren't yet a member, join now!
Return to the Computer Help Forum
Instructions
- You must be a registered member and logged in to post messages on our forums.
- Posting is a two-step process. Once you have composed your message, you will be taken to the preview page. You will then have a chance to review the contents and make changes.
- After posting your message, you may need to refresh the forum page in order to see it.
- It is illegal to post copyrighted material without the owner's consent.
- HTML codes are allowed in the message field only.
- No advertising is allowed in any of the forums.
- If you would like to practice posting or uploading photos, please visit our Test forum.
- If you need assistance, please Contact Us and we will be happy to help.