PPRuNe Forums

Go Back  PPRuNe Forums > Misc. Forums > Computer/Internet Issues & Troubleshooting
Reload this Page >

SDRA64.EXE threat found via f-secure scan

Register
FAQ
Calendar
Wikiposts
Today's Posts
Search
Vendor Directory
Computer/Internet Issues & Troubleshooting Anyone with questions about the terribly complex world of computers or the internet should try here. NOT FOR REPORTING ISSUES WITH PPRuNe FORUMS! Please use the subforum "PPRuNe Problems or Queries."

SDRA64.EXE threat found via f-secure scan

Thread Tools
 
Search this Thread
 
Old 12th May 2009, 11:59
  #1 (permalink)  
Thread Starter
 
Join Date: Feb 2004
Location: birth onwards
Posts: 47
Likes: 0
Received 0 Likes on 0 Posts
SDRA64.EXE threat found via f-secure scan
Hi techie boffins!

When I recenty logged on to my internet banking site, the log on page asked for waaayy too much personal information. I alerted my bank and the online account has been disabled.

The bank advised me to run an f-secure.co.uk scan - and the result shows a windows\system32\SDRA64.EXE threat which cannot be cleaned. (I've googled the threat and it appears to capture sensitive information particularly regarding online bank accounts).

So, what do I do now? My bank advised a PC specialist look at my computer - but do you have any suggestions on how I can remove the threat/virus myself?

Help very much appreciated
fly babe is offline  
Reply
Old 12th May 2009, 12:05
  #2 (permalink)  
 
Join Date: Jan 2008
Location: The Land of Beer and Chocolate
Age: 56
Posts: 798
Likes: 0
Received 0 Likes on 0 Posts
http://mrmusicmaker.b l o g s p o t.com/2009/04/how-to-remove-sdra64exe-yourself-for.html (remove obvious spaces in link, this place doesn't like that name for some reason)

Manual Removal Guide for Win32.ZBot - Safer Networking Forums
hellsbrink is offline  
Reply
Old 12th May 2009, 12:20
  #3 (permalink)  
Spoon PPRuNerist & Mad Inistrator
 
Join Date: Sep 2003
Location: Twickenham, home of rugby
Posts: 7,390
Received 247 Likes on 165 Posts
I would also remove all system restore points once you have eliminated the malware, as they are likely to be infected (and as you don't know exactly when it happened, you don't know which are, so safest to delete the lot).

SD
Saab Dastard is offline  
Reply
Old 12th May 2009, 12:22
  #4 (permalink)  
Hippopotomonstrosesquipidelian title
 
Join Date: Oct 2006
Location: is everything
Posts: 1,826
Likes: 0
Received 0 Likes on 0 Posts
Trend Micro's free online product, Housecall, should also fix this. Housecall is good but can take a long, long time to scan.

This trojan's a real nasty. Don't skip any steps during the removal process.
Bushfiva is offline  
Reply
Old 12th May 2009, 12:31
  #5 (permalink)  
 
Join Date: Jan 2008
Location: The Land of Beer and Chocolate
Age: 56
Posts: 798
Likes: 0
Received 0 Likes on 0 Posts
SD

You just nailed the very reason I do not use System Restore on the head.
hellsbrink is offline  
Reply
Back to Subforum
Computer/Internet Issues & Troubleshooting
View Next Unread
iphone users checkout FlightControl

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



Advanced Search

Contact Us - Archive - Advertising - Cookie Policy - Privacy Statement - Terms of Service

Copyright © 2024 MH Sub I, LLC dba Internet Brands. All rights reserved. Use of this site indicates your consent to the Terms of Use.