GBDialer Spyware/Virus

Discussion in 'Computer Security' started by Ally, Jan 11, 2006.

  1. Ally

    Ally Byte Poster

    127
    1
    22
    Urgent help required please if anyone can?
    Went to fix a friend of the familys computer. Porn sites constantly popping up, hijacked home page and Internet explorer renamed to exsplorer and another instance appears called e1xplorer. They are not clued up with computers and so only had norton 2003 installed with the definitions obviously out of date.
    Have god rid of all trojans etc apart from this gbdialer (another dialup connection is also present called connessione predefinita, same idea)
    Adaware picked the dialer up and said its deleted but it is not.
    Have tried running many programs such as spybot, adaware, stinger etc in normal and safe mode but the problem persists. HAs anyone come accross a similar problem?
    Have tried searching and trying out methods i have found but stil no luck! Keep seeing references to a program called hijack this but have never used it myself!!
    Any help greatly appreciated :(
     
    Certifications: 70-270, 70-290, 70-291 & 70-294
    WIP: 70-293
  2. ffreeloader

    ffreeloader Terabyte Poster

    3,661
    106
    167
    Try ewido.

    It works against memory-resident malware. I haven't used it on the specific malware you're up against, but it will kill memory resident stuff and that's what you're up against if it's reinstalling itself every time you reboot.

    It is a free download and will continue to work after the 15 day trial period, but on a more limited basis.
     
    Certifications: MCSE, MCDBA, CCNA, A+
    WIP: LPIC 1
  3. Ally

    Ally Byte Poster

    127
    1
    22
    Thanks i will download and give it a try. HAve never had so much trouble trying to remove anything
    Thanks, let u know how it goes :D
     
    Certifications: 70-270, 70-290, 70-291 & 70-294
    WIP: 70-293
  4. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,878
    181
    256
    Here is a link where a highjack this expert also recommends Ewido. He gives a very detailed step by step for how to run the scan and configure the software.

    Okay Freddy, I am downloading Ewido now to add to my already long list of malware removal tools 8)

    http://forums.thetechguys.com/showthread.php?t=20918
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)
  5. ffreeloader

    ffreeloader Terabyte Poster

    3,661
    106
    167
    The reason I tried it in the first place was because I had seen at least a half-dozen guys who do malware removal on a regular basis on different security and user forums recommend it while they were talking someone through cleaning their systems.

    It's a pretty good product. It finds things Adaware and Spybot leave behind every time.
     
    Certifications: MCSE, MCDBA, CCNA, A+
    WIP: LPIC 1
  6. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,878
    181
    256
    So far apart from a few cookies and a false alarm both the systems I have scanned are clean. That's not suprising with all the anti-malware apps I have installed.

    Microsoft Anti Spyware beta
    Lavasoft Adaware
    Spybot S&D
    Javacool's SpywareBlaster
    Xosftspy
    Spywareguard
    Latest - Ewido 8)

    Plus I also run McAfees superdat
    AVG 7
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)
  7. ffreeloader

    ffreeloader Terabyte Poster

    3,661
    106
    167
    Do you have any resources left to run applications? :twisted:
     
    Certifications: MCSE, MCDBA, CCNA, A+
    WIP: LPIC 1
  8. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,878
    181
    256
    lol no mate, none at all. Even the 20Gb HDD is full up on my lappy :eek:
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)
  9. Ally

    Ally Byte Poster

    127
    1
    22
    Thanks for the help people, i used ewido and ms antispware in conjunction with spybot and adaware etc and think it has done the trick!Ewido found 267 objects that the previous 6 or 7 spyware programs had not including around 40 instances of the dialer!!
    I will be takin the computer back to its owner tonight or tomorrow so will know for sure then. Think its ok tho. Thanks for the advice
    :D
     
    Certifications: 70-270, 70-290, 70-291 & 70-294
    WIP: 70-293
  10. ffreeloader

    ffreeloader Terabyte Poster

    3,661
    106
    167
    Ally,

    Glad it worked. Ewido is the best malware remover I've come across. It's one that is worth buying. It will not only remove existing infections it will also prevent new ones if the full product is installed.
     
    Certifications: MCSE, MCDBA, CCNA, A+
    WIP: LPIC 1
  11. simongrahamuk
    Honorary Member

    simongrahamuk Hmmmmmmm?

    6,205
    136
    199
    Glad that you got it sorted Ally. :thumbleft

    Freddy, perhaps you should post a link to that Ewido software in this thread? So that it doesn't get lost. 8)
     
  12. Jakamoko
    Honorary Member

    Jakamoko On the move again ...

    9,924
    74
    229
    Freddy - what makes ewido so special ? I'd never even heard about it before you started praising it on here, and I'd like to think I'm security-conscious enough to know about the main ranges of available products (clear not !! )
     
    Certifications: MCP, A+, Network+
    WIP: Clarity
  13. ffreeloader

    ffreeloader Terabyte Poster

    3,661
    106
    167
    Gav,

    Here is the list of features for the Ewido Suite. And, it really is a suite of malware products. It covers a lot of different malware problems.

    The fact that it stays memory resident allows it to catch a lot of stuff. It does use up some resources, but I think it does a great job.

    I ran across this being recommended to clean up some really severe infestations on a couple of different security forums. The computers were cleaned with nothing but Ewido and HijackThis, and HijackThis was used mainly as a tool for analysis--make sure the system was clean. I was pretty skeptical until I had used it a time or two and found out how good it really was.

    The fact that it's "suite" really bothered me at first, but it really isn't all that bloated and is highly compatible with anti-virus products.

    It auto-updates itself daily. That in itself is pretty impressive. There is a lot of effort going into this product. The Ewido web site says it has more than 220,000 signatures in their database, plus, Ewido uses heuristics for detecting behavior. It doesn't rely on just signatures.
     
    Certifications: MCSE, MCDBA, CCNA, A+
    WIP: LPIC 1
  14. Jakamoko
    Honorary Member

    Jakamoko On the move again ...

    9,924
    74
    229
    Thanks for that Freddy - off to investigate further now.
     
    Certifications: MCP, A+, Network+
    WIP: Clarity
  15. Ally

    Ally Byte Poster

    127
    1
    22
    yeah ffreeloader i totally agree that ewido is a great piece of software and worth buying. Found an unbelievable amount of malware that all other programs had missed
    Thanks for the advice :D
     
    Certifications: 70-270, 70-290, 70-291 & 70-294
    WIP: 70-293

Share This Page

Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.