moblog uk

Alfies Moblog

by Alfie

user profile | dashboard | imagewall | contact user

« older newer »

Powered by Django.

I make things on the web, mobile and in the actual world.

I've done lots of bits and bobs over the years, and right now I'm mostly working on this.

I enjoy speaking about things I like, most recently this. You can email me if you'd like, and I'm on twitter.

Creative Commons Attribution-NonCommercial-ShareAlike License

Search this moblog

Recent visitors

Seriously infected

(viewed 750 times)
Bookmark and Share
I can't believe this has happened (well, I can actually, Im running
windows XP). Im running ESET NOD32 antivirus and adaware/ad watch all
with the most up to date libraries and the craziest shit is happening.
Explorer.exe is trying to modify the registry about once per second, and
I simply cannot perform google searches, access amazon or facebook,
whilst most other sites are fine. Does anyone have any idea of what this
might be and how I can fix it?
29th Apr 2008, 14:26  

seaneeboy says:

Nasty. I'm having the pain of a thousand crashes trying to install AVG Free 8.

29th Apr 2008, 14:34

Alfie says:

I was running AVG Free 8 and then this happened without me knowing about it. I suspect it's also injecting malicious ads where it sees google ads being served on web pages :(

29th Apr 2008, 14:40

Alfie, just sent you this by twitter but not sureif it is actually doing anything :/

Try downloading the trojan remover from and running that..

29th Apr 2008, 14:41

nige says:

i'm thinking complete reinstall there, baby.

29th Apr 2008, 14:50

mat says:

What nige said. If you must run windows, I've seen XP Black edition being rather nice, there's a version around now with SP3 on it too.

The latest ubuntu (only a week old) might be worth a try, they might have sorted out the wifi driver thing.

29th Apr 2008, 15:04

Dhamaka says:

ah.... that might be what's happening on my other machine
let us know what fixes it and I'll copy you

29th Apr 2008, 19:06

goode says:

yeah full reinstall...

Windows Black like Mat said.... Or Crystal if you can find it online?!

29th Apr 2008, 19:34

Alfie says:

I really dont want to have to do that. Also, the only issue I now have after finding the trojans (Thanks SFG!) is that I can't access certain sites on firefox, but can on IE.

29th Apr 2008, 19:42

Alfie, just sent you a PM with a link in for something that might fix that for you as well

29th Apr 2008, 19:55

mat says:

You really should reinstall. Reinstalling isn't that much work, and it's the only way you can be sure you've got rid of everything nasty, Of course, if you don't care about losing any or all of the stuff you've got on your computer, or sharing your personal details with criminals - feel free to carry on running a compromised operating system.

For example - how do you know that you removed the keylogger trojan that's reporting your credit card number and banking details to the russian mafia? You know, one of the new polymorphic ones that most AV software can't see? That's the kind of thing I'd want to be certain about.

You should also stop using IE for anything whatsoever except downloading Firefox. My windows installs never suffer from trojans and viruses. That is, in large part, because I run IE once, and once only. I hit one website with it - - then I put it away for ever.

Honestly, you should re-install. It'll take a few hours, and then you'll have a system that you know is clean and safe. There's a chance, for example, that your machine is part of the Kraken botnet right now - most AV software just can't detect the Kraken payload.

30th Apr 2008, 10:06

Alfie says:

You're totally right Mat. I've re-installed using a slimmed down version of XP black. Bastard thing.

30th Apr 2008, 15:43

Dhamaka says:

this blog is scary reading - lucky I use firefox!

1st May 2008, 01:33

Mandy says:

scary reading, but that trojan remover sfg recommended is absolute aces. I < 3 its utilitarian good looks and fast scanning.

1st May 2008, 05:31

Alfie says:

I use firefox too Dhamaka, I have *no* idea how this got onto my machine, but I'm protect to the hilt now. Mandy's right, that trojan remover is a good un.

1st May 2008, 11:07