Go Back   Technibble Forums > Technical Discussions > Security, Viruses and Trojans

  Technibble Sponsor

Reply
 
Thread Tools Display Modes
  #1  
Old 04-30-2012, 05:42 PM
Jsch38 Jsch38 is offline
 
Join Date: May 2010
Posts: 118
Jsch38 is an unknown quantity at this point
Cool SOUR virus removal help needed:

I Have the Sour internet redirect virus on a machine.
I would like some additional suggestions on removing the virus.
Here is what I have done.

1. Check host files-clean with no changes.
2. Checked Device Drives-no problems found.
3. Checked WIn system 32 drivers folder-no problems found.
4. Ran Malware Bytes-no issues found.
5. Ran Esung Reg. cleaner. Removed all errors found.
6. Ran CC Cleaner-removed all issues discovered.

Thanks in Adavnce,
Reply With Quote
  #2  
Old 04-30-2012, 05:45 PM
Slaters Kustum Machines's Avatar
Slaters Kustum Machines Slaters Kustum Machines is offline
 
Join Date: Jun 2011
Location: Iowa
Posts: 1,143
Slaters Kustum Machines is on a distinguished road
Default

Hitman Pro, check for 0 size drivers, GMER, TDSSKiller......
Reply With Quote
  #3  
Old 04-30-2012, 05:49 PM
Encrypted Existence Encrypted Existence is offline
 
Join Date: Aug 2011
Posts: 1,239
Encrypted Existence is on a distinguished road
Default

Quote:
Originally Posted by Jsch38 View Post
I Have the Sour internet redirect virus on a machine.
I would like some additional suggestions on removing the virus.
Here is what I have done.

1. Check host files-clean with no changes.
2. Checked Device Drives-no problems found.
3. Checked WIn system 32 drivers folder-no problems found.
4. Ran Malware Bytes-no issues found.
5. Ran Esung Reg. cleaner. Removed all errors found.
6. Ran CC Cleaner-removed all issues discovered.

Thanks in Adavnce,
Try scanning the infected HDD with a boot disc (Kaspersky rescue disc perhaps or any one that works). It sounds like you may have a rootkit. Other utilities such as TDSSKiller, GMER, and Hitman pro should help also. If you are going to scan from within the OS do it in safe mode. Also, now may be a good time to give D7 a look.
Reply With Quote
  #4  
Old 04-30-2012, 05:54 PM
iisjman07's Avatar
iisjman07 iisjman07 is offline
 
Join Date: Jul 2009
Location: South End Of The UK
Posts: 3,049
iisjman07 has a spectacular aura aboutiisjman07 has a spectacular aura about
Default

You'll be wanting to do an offline scan on that, I'd recommend using Kaspersky's live cd. If you're working remotely you could try using TDSSkiller or GMER, but offline scan would be best.
__________________
put that in your pipe and grep it
Reply With Quote
  #5  
Old 05-01-2012, 12:55 AM
HawkinsPC's Avatar
HawkinsPC HawkinsPC is online now
 
Join Date: Oct 2011
Location: Alabama
Posts: 283
HawkinsPC is on a distinguished road
Default

Give D7 a try. I love it.
Reply With Quote
  #6  
Old 05-09-2012, 05:09 AM
Majestic Majestic is offline
 
Join Date: Sep 2008
Location: Montreal, Canada
Posts: 609
Majestic is on a distinguished road
Default

Quote:
Originally Posted by Jsch38 View Post
I Have the Sour internet redirect virus on a machine.
I would like some additional suggestions on removing the virus.
Here is what I have done.

1. Check host files-clean with no changes.
2. Checked Device Drives-no problems found.
3. Checked WIn system 32 drivers folder-no problems found.
4. Ran Malware Bytes-no issues found.
5. Ran Esung Reg. cleaner. Removed all errors found.
6. Ran CC Cleaner-removed all issues discovered.

Thanks in Adavnce,
Combofix has literally never let me down ever for redirection viruses. I highly recommend it. Try it in safe mode w/networking if you have to.

Majestic
Reply With Quote
  #7  
Old 05-09-2012, 05:33 PM
Jsch38 Jsch38 is offline
 
Join Date: May 2010
Posts: 118
Jsch38 is an unknown quantity at this point
Thumbs up Follow-Up to suggestions

Thank You for all the help.
I did try to run combo fix in safemode.
Win Xp would not run in safe Mode. Got BSOD. CHKDSk and SFC commands did not fix the BSOD in safe mode.
I saved all data using Fab back-up and did a Nuke and pave on Win XP.
Turns out that machine runs faster then it did before.
Thanks Again
Reply With Quote
Reply

Tags
sour, virus trojan

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 09:27 AM.


Powered by vBulletin®
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Technibble.com is based out of MELBOURNE, AUSTRALIA.