New malware!! Help me - Page 3 - XTREME-SOURCE

XkW · 08-20-2008, 07:33 AM

You should probally do that, its not safe to have 2 Anti-Viruses running.

football-crusad · 08-20-2008, 01:50 PM

okay ive tired it and found nothing
should i just remove it from my startup list
and delete
winsup.exe
and
sleep.exe?

XkW · 08-20-2008, 02:53 PM

I'm pretty sure that sleep.exe is a needed windows file, or thats what I've heard, so I'm not sure. I'd first try to delete galle.exe, because we've confirmed that is infact malware. This is a nasty little bugger you got here, isn't it?

Lord Sesshomaru · 08-20-2008, 05:02 PM

Yeah I agree. Both those processes are confirmed windows processes. A good idea is to go into your system32 folder, find those two processes, right click them and click properties. Check through the version and publisher info to make sure they are both from Microsoft. If they are both from Microsoft you definitely don't want to fiddle with them. Remove the galle entry with HJT in safemode, then go all out scanning with Nod32, Webroot SpySweeper, Spyware Doctor, CounterSpy, Spybot S&D, and Ad-Aware 2007. You may also want to scan with AVG Anti Anti-Virus with Anti-Spyware, the old AVG Anti-Spyware was a great program, and I think Grisoft made a huge mistake by not continuing to offer it as a standalone.

XkW · 08-21-2008, 05:12 AM

I couldn't agree more with what LS just said. If that doesn't work, I don't know what will!

football-crusad · 08-21-2008, 05:00 PM

alright ill try that out
thx alot

football-crusad · 08-23-2008, 09:00 PM

yo i scaned galle.exe and i found nothing it was secure

Lord Sesshomaru · 08-23-2008, 09:20 PM

Not according to this: ThreatExpert Report: VirTool:Win32/VBInject.C, Trojan-PSW.Win32.LdPinch.xuy, PWS-LDPinch

What did you scan with? Download and scan with all the programs I mentioned. Remove that process immediately with HJT in safe mode and scan with all the anti-spyware programs I mentioned and a good AV like Nod32 or Kaspersky.

XkW · 08-24-2008, 05:28 AM

Bummer, Keylogger. When you get that thing out, I'd change all your passwords to secure your personal/financial safety.

lalaman · 08-25-2008, 12:13 PM

lol i wonder if those german or columbians know english

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Shoutbox
Loading...