1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Need help badly! I think my pc has been infected with malware or something

Discussion in 'BlackHat Lounge' started by rap8557, May 15, 2010.

  1. rap8557

    rap8557 Jr. VIP Jr. VIP Premium Member

    Joined:
    Sep 15, 2008
    Messages:
    1,086
    Likes Received:
    436
    after i've reformated my pc and installed all this software i got this annoying ads in every browser i used.
    here's the list of the software that i've installed
    AIm
    YM
    dreamweaver *
    google chrome
    kmplayer *
    imacros *
    proxy switcher *
    facebook friend adder *
    firefox *
    acrbat reader
    ms office *
    win zip *
    imacros addons
    java

    and this is the screenshots of the browser

    Firefox
    [​IMG]

    Google Chrome
    [​IMG]

    I've already scanned this with hitman pro as suggested by trophaeum in his thread
    http://www.blackhatworld.com/blackh.../178936-antivirus-read-me-guys-seriously.html but no result

    how can i get rid of this? thanks
     
  2. trevor1617

    trevor1617 BANNED BANNED

    Joined:
    Nov 12, 2009
    Messages:
    123
    Likes Received:
    64
    go into add/remove programs and look for a program called ad contextual or something with the word add in it...problem solved
     
  3. paulramsey20

    paulramsey20 Newbie

    Joined:
    Apr 27, 2010
    Messages:
    10
    Likes Received:
    2
    Yes, that's a good idea looking in Add / Remove Programs, but some programs may not show up there. You can also do Start - Run - msconfig (to start the system configuration utility) and click the Startup tab. Then look for programs that are not good. Doing this for first time may be tough, if there are is a long list, but you can search each item in google and see what they are. Sometimes this can reveal a malware program. Getting rid of it is another matter. If you find the path you can remove but if it's locked you can use unlocker or process explorer to unlock and delete. Much more can be said but I try to give you a summary, I am an IT specialist in security so I work with this stuff all the time. Best wishes in identifying and removing the crapwares.
     
  4. HoNeYBiRD

    HoNeYBiRD Jr. VIP Jr. VIP

    Joined:
    May 1, 2009
    Messages:
    5,902
    Likes Received:
    7,137
    Gender:
    Male
    Occupation:
    Geographer, Tourism Manager
    Location:
    Ghosted
    check your running programs and search for something unusual which shouldn't have been run, try to kill it (if you find any) in the task manager, it's even better if you quarantine it with security task manager (but be careful what you quarantine), after that run a full system scan with spyware doctor/malware bytes & your av software as well (which should be nod32 or kaspersky)
     
  5. Grizzy

    Grizzy Senior Member

    Joined:
    Nov 11, 2008
    Messages:
    919
    Likes Received:
    999
    Lots of good advice so far, try everything suggested so far. Once your clean, remember to change any passwords you have used since your PC started acting strange!

    If none of it works, download and run HijackThis and pm me the log file. I'll see if I can help :)
     
  6. wpbacklinks

    wpbacklinks Jr. VIP Jr. VIP Premium Member

    Joined:
    Mar 27, 2010
    Messages:
    3,397
    Likes Received:
    1,339
    Gender:
    Male
    Occupation:
    Affiliate Marketer
    Location:
    Everywhere
    Run>> msconfig
    Look your system configuration startup, and services (check hide microsoft service)
    clean your registry with RegistryBooster

    or the last way is backup your data, and reinstall your windows
     
  7. pewsingh

    pewsingh Newbie

    Joined:
    Mar 13, 2010
    Messages:
    8
    Likes Received:
    1
    Download and run spybot search & destroy. It's free and it works great.
     
  8. bobbylove321

    bobbylove321 BANNED BANNED

    Joined:
    Nov 8, 2008
    Messages:
    1,987
    Likes Received:
    2,198
    I had the same problem several weeks ago.

    You can get rid of it by downloading and running Hitman Pro. Go to download.com and find it.
     
  9. HoNeYBiRD

    HoNeYBiRD Jr. VIP Jr. VIP

    Joined:
    May 1, 2009
    Messages:
    5,902
    Likes Received:
    7,137
    Gender:
    Male
    Occupation:
    Geographer, Tourism Manager
    Location:
    Ghosted
    yes, it's free but you won't be spyware/adware free after you scan with ssd, it's guaranteed
    i used to use it but whenever i cleaned my pc with this tool and i thought my pc is clean, after that i run spyware doctor just to make sure, it always found a few spywares which spybot s&d couldn't, so i stopped using it

     
  10. WizGizmo

    WizGizmo Super Moderator Staff Member Premium Member

    Joined:
    Mar 28, 2008
    Messages:
    3,841
    Likes Received:
    55,442
    Are any of the programs warez downloads that you have installed. If so, that is most-likely the cause. Nowadays, most warez are loaded with keyloggers, malware, viruses, and trojans.

    I used to be a warez junkie, but nowadays, I wouldn't touch any of those warez apps.
     
  11. bertbaby

    bertbaby Elite Member

    Joined:
    Apr 15, 2009
    Messages:
    2,019
    Likes Received:
    1,496
    Occupation:
    Product marketing
    Location:
    USA
    Home Page:
    I agree with WizGizmo, no doubt some of your warez are the source of the infection or a favorite porn site is infecting you. Go to the hacker sites and its all about affiliate ad scams and infecting warez with rogue security software. There is no honor among thieves anymore when it comes to warez.

    Try scanning with malwarebytes as well, I usually run multiple copies of security software knowing that a given companies signatures may not include a given variation of a given virus or trojan. Reminds me to do a quick scan today.

    Also your backup may be the source of the infection and if you can ferret out the source then do a backup using a boot disk like the UltimateBoot CD which will leave the infection inactive but would give you access to your files.
     
  12. ericsson

    ericsson Elite Member Premium Member

    Joined:
    Apr 25, 2009
    Messages:
    2,642
    Likes Received:
    8,132
    Occupation:
    www
    Location:
    Swe
    Home Page:
    True.

    If you are downloading it from warez sites.

    Always run a virustotal scan after you downloaded it.
    And with torrents = Big No No.

    //J
     
  13. rap8557

    rap8557 Jr. VIP Jr. VIP Premium Member

    Joined:
    Sep 15, 2008
    Messages:
    1,086
    Likes Received:
    436
    Found the feaking problem :D It is in the proxy that i've used.. is that even possible?.. i used a high annon proxy when those adds appeared.. btw i've tried everything that you've mentioned but none of them detect a malware, spyware or virus.