I am not sure what is it… I got a spyware that adds some nasty JavaScript code to html webpages in browsers… also on one site it switched the picture and put its own… I attached the pic.
also, here’s the logfile of Hijack this:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:54:15 AM, on 6/20/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Double-click VundoFix.exe to run it.
When VundoFix re-opens, click the Scan for Vundo button.
Once it’s done scanning, click the Remove Vundo button.
You will receive a prompt asking if you want to remove the files, click YES
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed, it will prompt that it will reboot your computer, click OK.
Note: It is possible that VundoFix encountered a file it could not remove.
In this case, VundoFix will run on reboot, simply follow the above instructions starting from “Click the
Scan for Vundo button.” when VundoFix appears at reboot.
A log will be produced which you can post in your next response.
Some info on Vundofix. I don’t know if it applies here. They are attempting to correct this
Vundofix has some issues with Asian versions of the Windows Operating system. Use of vundofix may delete critical system files and Windows may not be able to boot after use.
thanks all… but since Vundofix is not avaialable for download now, I had to reformat c drive and put winXP again… It’s a new computer anyways so…
I am using Avast and ZoneAlarm… Can somebody tell me or point me in the right direction about which other software I should be running in order to be protected from SPyware/malware etc… ?
"...I am using Avast and ZoneAlarm.... Can somebody tell me or point me in the right direction about which other software I should be running in order to be protected from SPyware/malware etc.... ? "
Avast! and ZoneAlarm is a good combo to protect yourself . Additional programms I would suggest and worth looking into would be , [url=http://www.javacoolsoftware.com/spywareblaster.html] Spyware Blaster [/url] , [url=http://www.mvps.org/winhelp2002/hosts.htm]MVPS HOSTS file [/url] , [url=http://www.superantispyware.com/] SUPERANTIspyware
[/url] , and as you've just re-installed Win XP , go Windows update , and also update all your drivers and visit[url=https://psi.secunia.com/] https://psi.secunia.com/[/url] as FreewheelinFrank suggests .
Common sense when browsing is always a great defence against " SPyware/malware etc " ;)
Hi zoki123 . From your previous post I gathered you had installed Avast! and Zone Alarm .
I am using Avast and ZoneAlarm....
Avast! is a Resident Anti Virus . ZoneAlarm is a Firewall . I hope this is the case as of this moment , that you have Avast! Home or Pro installed and running , all the time , as a resident (Active always) protection ; and ZoneAlaram Firewall .
I Installed Winpatrol, SuperAntispyware and Secunia.
Winpatrol will notify you if certain changes occur within your Computer . These may include changes to start up programs , Hosts File , File associations , etc. Winpatrol will alert you of system changes, not protect you from a virus . Read about what you have installed so you know how best to utilise the tools which are designed to help you .
SuperAntispyware can be used as a Resident (Active always) AV , but if you have Avast! installed , and Active , you do NOT run SuperAntispyware ..."all the time?" as it will conflict with Avast! . You can use SuperAntispyware to Scan your computer on a regular basis though , after updating to its latest virus database .
Should I run Secunia all the time?
No , just each week or so to make sure the programs it detects are up to date . Some programs you will need to check manually for updates .
I hope this clarifies things for you zoki123