1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Virus.org /for fucks sake.asp.=googleredirect please help

Discussion in 'Black Hat SEO' started by DebbieSprules, Aug 22, 2009.

  1. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    Right - Google redirect virus remover???

    Since using rapidshare, even though I scan stuff my machine is fucked with viruses - i cant sleep, its been in the shop twice...

    I now have google redirect. which cannot be fixed by

    Mcafee
    spyware dr
    Malwarebytes
    Trend micro housecall
    registry dr
    avg
    spyhunter

    I have run these in safe and normal mode.

    Each time I reboot and run Macafee it finds something, cleans it and then its back again.
    -
    I went for a rapidshare version of x rumer ( ironic ) and first it took my machine down, and stopped many of my apps from working. The above got rid of most of it, but the google redirect I have is the worst version I have had which interfers with my net connection.

    1/ can anyone lend me something to help?
    2/ can you recommend what I do?
    3/ what tool apart from virustotal do you use for scanning rar.
    4/ can you get a virus just VISITING a page where a rar. is publushed?

    AHHHHHHHHHHHHHHHH I am dying with anxiety my business at a halt.
     
  2. trophaeum

    trophaeum Senior Member

    Joined:
    Dec 21, 2007
    Messages:
    1,189
    Likes Received:
    706
    mcaffee is shite, go get kaspersky internet security and set it up and get it going, it combined with malwarebytes antimalware should do the job
     
    • Thanks Thanks x 1
  3. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    I am trying the Kaspersky at the moment, it doesnt seem to be working, online, it seems that every scanner seems to claim to be able to reinvent the wheel...and then never does... at this rate I will have purchased 5 scanners :( At least trend micro housecall is free.

    How much is kasper..? they normally say @oo we found 1000000 viruses, pay us to remove them...
     
  4. oxonbeef

    oxonbeef BANNED BANNED

    Joined:
    Jan 4, 2009
    Messages:
    2,242
    Likes Received:
    7,872
    Virustotal only scans files at scantime and not runtime. Alot of malware is not activated until
    you actually execute the program. If you have any doubts about a download you should
    always execute it in a virtual machine like VMware or sandboxie that way you can reverse any changes made to your pc and it holds the running process in a virtual enviroment.
    have a good firewall running with tcpview which should show you if and where the
    process tries to connect to an external ip. Alot of malware is writen to bypass firewalls
    and will not open in a virtual enviroment. Avoid any program that does this. Another
    tool to use is "all seeing eye" which will ask permision before any registry changes can be
    made this way you can see if the program is behaving in the way it's supposed to.
    What you should do now is download HijackThis run it and it will save a log as a text file.
    Upload the text file to one of the many HijackThis forums and they will point you to the
    root of your problem along with a solution to it. And as trophaeum said get a decent
    antivirus although all of them are useless against malware crypted with a newly writen
    crypter.

    Download the trial versions of Kaspersky or eset nod32 you will find working serials online
    best free AV's= Avira and comodo
     
    • Thanks Thanks x 1
    Last edited: Aug 22, 2009
  5. trushafty38

    trushafty38 Regular Member

    Joined:
    Jul 24, 2009
    Messages:
    208
    Likes Received:
    99
    Occupation:
    I have many Hats, Including a black one.
    Location:
    My rep is ruined! lol
    ccleaner, hijackthis, and malwarebytes is all that is needed. Use trusted downloads as much as possible.
     
    • Thanks Thanks x 1
  6. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    hm i kow nothing about hijakc this its mentally hard... plus you have to wait until someone wonderful is going to help you free on the forums they speak of which could take ages if at all. :( completely immobilised by this annoyance having juts got 8 new seo tools -

    the last thing i read about hijack was a list of manual instructs on how to amend the registry....

    as for rapid share, there are no such trusted sites right? so one cannot win.

    cc cleaner I will need to have a look at too -

    I would buy a mac if I knew seo tools etc worked on mac platforms but I doubt they do.
     
  7. r00t

    r00t Regular Member

    Joined:
    Dec 27, 2008
    Messages:
    310
    Likes Received:
    889
    Location:
    Mighty Europe
    Format your PC, install a new AV and firewall.

    Check this website for a AV comparative:

    Code:
    http://www.av-comparatives.org/
    And yes, you can be infected by simply visiting a website =/
     
  8. oxonbeef

    oxonbeef BANNED BANNED

    Joined:
    Jan 4, 2009
    Messages:
    2,242
    Likes Received:
    7,872
    Do you have teamviewer and would you trust me to remotely access
    your pc? I have a bit of sparetime.
     
    • Thanks Thanks x 1
  9. keinehabe

    keinehabe Supreme Member

    Joined:
    Nov 4, 2008
    Messages:
    1,207
    Likes Received:
    472
    Gender:
    Male
    Occupation:
    -= CEO =-
    Location:
    Heaven
    Home Page:
    mcafeee isn't shite :) lol usually and most of the time it's working like a clockwork , thing is ... peoples don't understand differences between outside virus/malwares attacks and self opened attacks , versus second thing none and never will can do nothing , if you or anyone with their own hand click on the mcafee exception allow tag and the trojan/bot it's installed on the machine , only way to take it off it's to rewrite the OS . Most of the time mcafee giving an small popup when he see some of the FUD's trying to be intalling on the machine and asking you to allow exception or to stop them , if the OP was enough dumb to still looking for cracked version about xrumer (* witch every noob from here know it's made by the russians and they most probably never will allow to have their shiets cracked ) lol ... :) anyway ... only one advice for the OP .. get an backup about your files on some dvd's format and reinstall , try and use some advanced ways for formatting things since normal format most probably will not clean the trojan's if they are good :)
     
    Last edited: Aug 22, 2009
  10. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    yous fuckiing joking right???????????????? And yes, you can be infected by simply visiting a website =/ !!!!!!!!!!!!!!!!!!!!!

    So if I do a search for xyz rapid share from zyz site where I download all my hed Kandi albums and slutty sluts and then visit the page and end up with a trojan?? OH MY F GOD So this means for software ONLY stick with my boys on BHW or what? NOOOOOOOOOOOO

    I spent hours telling my mum she was a paranoid fool and could not get viruses from just a page and what an idiot i now look.......

    As for formatting....... Not an option at all no way cant, far too much warez on there.
     
  11. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    "oxon....@ why not, what can he do remotely? besides if he fucks me, he looses rep ont he forum which he needs :)

    I can grab teamviewer i guess. And could owe you one..
     
  12. oxonbeef

    oxonbeef BANNED BANNED

    Joined:
    Jan 4, 2009
    Messages:
    2,242
    Likes Received:
    7,872
    Do you know when you were Infected and by what file?
    Has it disabled your system restore?
     
  13. keinehabe

    keinehabe Supreme Member

    Joined:
    Nov 4, 2008
    Messages:
    1,207
    Likes Received:
    472
    Gender:
    Male
    Occupation:
    -= CEO =-
    Location:
    Heaven
    Home Page:
    NO you can't get infected by visiting a page until you don't click an run the activeX control / javas / and some one few more ways ... anyway it's need a real click from the users to have the malware to start to work . Some versions of unpached OS (* windows ) , and some versions of browsers are more vulnerable , and can execute automatically those scripts even on silence mode , BUT that's only your own fault since you don't protect your assets , none can force you to install the .net updates lol for example , and trust me :) ... you can have an real nightmare if someone smelling your computer it's vulnerable lol .

    ps . system restore it's again one more piece of crap made by the folks from microsoft , thing is even those restore points can be infected :) ... anyway ... one more word ... everything depend only by the guy who infected you . if you know your computer it's infected try and don't log too much on your online accounts since you are losing them all :)
     
    • Thanks Thanks x 1
  14. r00t

    r00t Regular Member

    Joined:
    Dec 27, 2008
    Messages:
    310
    Likes Received:
    889
    Location:
    Mighty Europe
    Not true. There are several types.

    You won't necessarily be infected by the website.

    It generally has an iframe with an exploit pack. If you have a certain software that can be exploited by the pack, it'll download and execute an exe chosen by the iframer. Certain times the best way to avoid that is to update the software in your computer, such as acrobat reader.

    And it can be any site, not just the warez ones.

    There are certain live cds that will format and write over in your hard drive dozens or hundres of times, so it'll most probably delete everything, not being able to recover.
     
    Last edited: Aug 22, 2009
  15. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    jesus christ of the pentecost this is ridiculous.

    i have to say although my heart is in my mouth. coming on hear today has cheered me up 14% nothing like a bit of love when your machine goes down and you feel like shit for being a grubby internet theif too poor to buy software like a big issue seller
     
  16. Pyronix

    Pyronix Junior Member

    Joined:
    Feb 2, 2009
    Messages:
    100
    Likes Received:
    120
    Location:
    Gone To The Dark Side
    try spybot to remove it removes most things
     
  17. oxonbeef

    oxonbeef BANNED BANNED

    Joined:
    Jan 4, 2009
    Messages:
    2,242
    Likes Received:
    7,872
    I actually like spybot search & destroy but wouldn't rely on just that.
     
  18. DebbieSprules

    DebbieSprules Senior Member

    Joined:
    Mar 20, 2009
    Messages:
    821
    Likes Received:
    80
    tried that too....!!!!!!!!
     
  19. ruler0fall

    ruler0fall Power Member

    Joined:
    May 17, 2009
    Messages:
    565
    Likes Received:
    263
    didn't read the thread but try combofix, and if that doesn't help make a hijackthis log (google for it) and post it on one of the log analysis forums.
     
  20. trophaeum

    trophaeum Senior Member

    Joined:
    Dec 21, 2007
    Messages:
    1,189
    Likes Received:
    706
    you are talking to the admin on the ppi forums, mcaffee is shit, kaspersky + malwarebytes is the best solution currently

    kis will give you a 30day trial, just download and install it and run it, it'll do what it needs to to clean up the mess youv got