| Page 1 of 1 |
|
|
 Posted: Sat, 31st Oct 2009 20:47 Post subject: Infected with trojan Windefence32.exe |
|
 |
Very bad one. Every time XP started, firefox encountered error. Uninstalled FF, then said IE has error. Both still worked fine though. But I can see multiple instances of each running. Also, I saw entry in msconfig>startup called windefence32.exe. Would not let me remove it even in safe mode. Installed spyware apps - they found it and said it was removed - but it was still there.
I have been running Eset Smart Security 4 for a long time - guess it missed this one?
Re-installed XP (was going to install windows 7 but decided to wait).
RYZEN 5 2600|RADEON 570| |ASRock X370 Killer|DDR4@2800Mhz||Corsair SPEC-05 Case|AOC G2590FX 24.5''144hz 1ms|
|
|
| Back to top |
|
|
LeoNatan
☢ NFOHump Despot ☢
Posts: 73196
Location: Ramat Gan, Israel 🇮🇱
|
| Posted: Sat, 31st Oct 2009 21:19 Post subject: |
|
|
Is it one of these:
If so, I had dealings with them, and range from mildly annoying to mega difficult to remove. Never got this on my PCs, but yeah, I have helped people deal with them, and some variants are pain in the ass, hooking themselves deep in the system to disallow any process initialization.
|
|
| Back to top |
|
|
|
|
| Posted: Sat, 31st Oct 2009 22:12 Post subject: |
|
|
Its on this list, looks like malware-
http://www.damnedspyware.com/remove-dangerous-malware-db-11.html
WinDefence\windefence32.exe
So, what exactly did this one do to me? It must have been on my PC for a few weeks as I noticed my surfing was slow - i blamed it on my cable company. Now its 100 times faster. I hope none of my passwords were stolen, etc.
I installed this spyware app called "Spyware Cease" mainly because I have a key that updates it OK. However, ESET Security said that was a trojan itself! Unreal, so I uninstalled Spyware Cease. Should I continue to look for another Spyware app along with using Eset 4?
** I installed Malwarebytes Anti-Malware - looks good. Ill be running that along with Eset since obviously Eset alone does not do the job.
RYZEN 5 2600|RADEON 570| |ASRock X370 Killer|DDR4@2800Mhz||Corsair SPEC-05 Case|AOC G2590FX 24.5''144hz 1ms|
|
|
| Back to top |
|
|
|
|
| Posted: Tue, 3rd Nov 2009 04:47 Post subject: |
|
|
Is Spybot: Search & Destroy no longer any good? Or just because its freeware? I've always used it and never had trouble.
Just be sure to get t from here and not a spyware pretending to be it.
CPU: AMD Athlon 64 X2 6400 Black Edition (3.2GHz)
Mobo: ASUS M3N78-VM
RAM: OCZ Gold DDR2-1066 2x2GB
GFX: XFX Radeon HD 4890 1GB
Audio: VT1708B (Integrated)
PSU: PC Power & Cooling Silencer 750W
OS: Windows 7 (x64)
|
|
| Back to top |
|
|
|
|
| Posted: Thu, 5th Nov 2009 13:44 Post subject: |
|
|
Also download spywareblaster, freeware and doesn't use any resources.
|
|
| Back to top |
|
|
|
|
| Posted: Thu, 5th Nov 2009 22:19 Post subject: |
|
|
http://en.wikipedia.org/wiki/Spywareblaster
Stops the spyware from installing.
CPU: AMD Athlon 64 X2 6400 Black Edition (3.2GHz)
Mobo: ASUS M3N78-VM
RAM: OCZ Gold DDR2-1066 2x2GB
GFX: XFX Radeon HD 4890 1GB
Audio: VT1708B (Integrated)
PSU: PC Power & Cooling Silencer 750W
OS: Windows 7 (x64)
|
|
| Back to top |
|
|
|
|
| Posted: Mon, 30th Nov 2009 12:05 Post subject: |
|
|
Hi,
You can also try this really good program....
http://www.malwarebytes.org/
It made wonders for me. i use it on my computer and also did on my friends and really cured alot of headaches with it otherwise would of brought me to the dark re-install/format process...lol...
Good luck
Lian-Li XL Dynamic ROG Black - EVGA 1000w - Lian-li Galahad 360 AIO - MSI X570 Meg Ace - Rysen 5950x - G.Skill 4x16GB CL14 3600@3800(14-15-15-34) - Samsung 960 Pro 512 - Samsung 960 Pro 1TB - Kingston HyperX SSD 120gb SATA 3 (6gb/s) - WD Black Caviar 2x 2TB SATA 3 (6gb/s) Raid 0 - WD Black Caviar 2 TB SATA 3 (6gb/s) - EVGA 3090 FTW3 - LG C1 48" 4k120hrz
|
|
| Back to top |
|
|
kalato
Posts: 1492
Location: Finland and UK
|
| Posted: Tue, 1st Dec 2009 23:52 Post subject: |
|
|
Malwarebytes does get rid of those shitty antivirus spoof programs.
I like bum.
|
|
| Back to top |
|
|
|
|
| Posted: Wed, 2nd Dec 2009 02:30 Post subject: |
|
|
lol I had this virus once that disabled anything and everything AV related. I could browse the net but as soon as I google anything about viruses or tried to get into symantec's site (was using symantec corp edition) it wouldn't let me connect lol.
Was a little bastard to get rid of.
|
|
| Back to top |
|
|
| Page 1 of 1 |
All times are GMT + 1 Hour |
