Comments on: PC Infected: kbppsysguard.exe http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/ my day to day thoughts! Mon, 09 Jan 2012 20:28:02 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: MBH http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/comment-page-1/#comment-4373 MBH Wed, 25 Nov 2009 21:18:19 +0000 http://www.bloggylife.com/?p=3693#comment-4373 Kaspersky isn't free. They offer a trial. A strong free for home-user AV is Avira. Not as good as Kaspersky Internet Security, but good enough. New generation worms bring in their cousins when they infect a box, so I wouldn't be surprised if there are others lurking silently. Kaspersky isn’t free. They offer a trial. A strong free for home-user AV is Avira. Not as good as Kaspersky Internet Security, but good enough.

New generation worms bring in their cousins when they infect a box, so I wouldn’t be surprised if there are others lurking silently.

]]> By: Bloggylife http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/comment-page-1/#comment-4371 Bloggylife Wed, 25 Nov 2009 21:14:14 +0000 http://www.bloggylife.com/?p=3693#comment-4371 MBH, 1st Thanks :D then about the keylogger, YUP, I knew this was a possibility so I copied pasted letters to form what I needed :P But do you mean even after I deleted it, there's a possiblity of residue I missed, I'm running the link you provided. I like AVG, except the shield feature, I'll give Kaspersky, it's free right. don't tell me I need to change them, I can barely remember the ones I have xo I didn't log in keys while I was infected, but I had saved passwords for some sites! But I've already disconnected myself from the Internet so I hope I covered everything ... you think I still need to change my passwords ... 3baid, I'm not sure how it all works, but I deleted all related files/registry entries. MBH, 1st Thanks :D then about the keylogger, YUP, I knew this was a possibility so I copied pasted letters to form what I needed :P But do you mean even after I deleted it, there’s a possiblity of residue I missed, I’m running the link you provided. I like AVG, except the shield feature, I’ll give Kaspersky, it’s free right.
don’t tell me I need to change them, I can barely remember the ones I have xo I didn’t log in keys while I was infected, but I had saved passwords for some sites! But I’ve already disconnected myself from the Internet so I hope I covered everything … you think I still need to change my passwords …

3baid, I’m not sure how it all works, but I deleted all related files/registry entries.

]]> By: MBH http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/comment-page-1/#comment-4370 MBH Wed, 25 Nov 2009 20:59:17 +0000 http://www.bloggylife.com/?p=3693#comment-4370 Consider the possibility of it having installed a keylogger and got your passwords. Make sure you change them. Consider the possibility of it having installed a keylogger and got your passwords. Make sure you change them.

]]> By: 3baid http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/comment-page-1/#comment-4369 3baid Wed, 25 Nov 2009 20:50:54 +0000 http://www.bloggylife.com/?p=3693#comment-4369 The proxy setting probably means that the trojan was running a local service to hijack all your browser activities :/ The proxy setting probably means that the trojan was running a local service to hijack all your browser activities :/

]]> By: MBH http://www.bloggylife.com/2009/11/25/pc-infected-kbppsysguard-exe/comment-page-1/#comment-4368 MBH Wed, 25 Nov 2009 20:40:01 +0000 http://www.bloggylife.com/?p=3693#comment-4368 Just because you don't see it, doesn't mean it ain't there. Run this tool (ComboFix): It cleans the computer and fixes whatever the worms broke: http://www.bleepingcomputer.com/combofix/how-to-use-combofix AVG stinks. After running ComboFix, remove AVG & install Kaspersky. It always helps to have a 2nd machine with an antivirus. When one gets infected, hook the disk directly to the 2nd machine & scan away. The only bad thing about this is that running the antivirus from a 2nd disk doesn't fix the problems caused by worms. It has to be run directly on the infected OS. Just because you don’t see it, doesn’t mean it ain’t there.
Run this tool (ComboFix): It cleans the computer and fixes whatever the worms broke: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

AVG stinks. After running ComboFix, remove AVG & install Kaspersky.

It always helps to have a 2nd machine with an antivirus. When one gets infected, hook the disk directly to the 2nd machine & scan away.
The only bad thing about this is that running the antivirus from a 2nd disk doesn’t fix the problems caused by worms. It has to be run directly on the infected OS.

]]>