MSN Virus

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 10:30 pm

Alright, as some of ya'll know, Kelly's MSN has a gotten an e cold or something.

I've ended up with a virus that makes my MSN send out crap links to other people for some nefarious purpose, likely to give it to them as well. As of now, I'm using Mcafee to scan and I changed the password on my MSN account. If this doesn't yield any results, or if it still happens after doing this, a quick google search found a few downloads claiming to fix the issue. Macafee think they are okay, but I want to be sure I'm not going to be downloading another virus.

If anyone knows specifics of this, it would help a lot, thanks.

If you need more information on my computer, go ahead and ask.

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

well taking a look at what is running by using Procmon or a similar app will let us see what DLL files are being used by which process...although it normally involves.....thousands of lines of data...., after finding the rogue DLL files you can try booting something like Bart-PE off a CD and then manually remove the file... :grin:

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 10:45 pm

Yeeeeahhh.... I'm computer illiterate. I have no idea what you just said meant ( _ _)

avwolf · **Posted:** Thu Oct 02, 2008 10:48 pm

If McAfee can identify the culprit, they ought to provide a link to a fix file (search their website), and you should be able to trust that one is clean. When I've had this happen to me (the once), I did go out and download a fix on the tubes and it worked very well.

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

let's make make this simple for you then...does your computer use: Windows?Linux?Mac OS X?

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 10:51 pm

Alright, I'll keep that in mind for when MSN finishes scanning in the morning or so, thanks.

What I have found is this:
http://www.msnvirusremoval.com/

Which according to Macafee is not a virus I believe and a link:http://www.msnvirusremoval.com/ search found 1 site linking to it as a fix for it, so if all else fails, I can try this.

Edit: Oh, and windows XP Media Service Edition Version 2002.

I'm computer illiterate, not retarded XD

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

don't go to it yet, let me take a look, and download procmon from microsoft.com. Search for it with google.

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 11:02 pm

I was gonna wait till all clean avenues were looked upon, and that I will do.

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

I'm directly checking the source-code of the site and relevant links through AutoIt, safer than actually opening it...^_^

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 11:07 pm

Alrighty then.

http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx

This is what I want to get, right?

FastChapter · **Posted:** Thu Oct 02, 2008 11:09 pm

Already got you on block, buddy, XD

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

Alright, had a quick look and one of the first things I saw in the code is that an active script is loaded when the page is loaded, and the fore-mentioned script is a key and mouse logger.... :?

Keldoth Wolfram Dekel · **Posted:** Thu Oct 02, 2008 11:25 pm

Well then, that's not something I want.
Oh well, if I need another fix, I'll deal with it after Macafee is done and what not.

KitWiz4687 · **Joined:** Tue Sep 16, 2008 10:27 pm **Posts:** 99

Go to the start menu in windows, Program Files(or All Programs),Accessories,System Tools, and choose System Information.
After it opens, expand Software Environment and click on Running Tasks.
*EDIT*Then click on one task, press ctrl+a THEN press ctrl+c, then paste everything into a post in this thread so I can get a look at what is running.

FastChapter · **Posted:** Thu Oct 02, 2008 11:32 pm

Serves you right for downloading so much porn from that rapidshare site, XD

Twokinds ARCHIVE Forums

MSN Virus

Who is online