Solved

Remove Virusburst

Posted on 2006-10-20
8
383 Views
Last Modified: 2013-12-04
I have this little icon on the task bar that links to Virusburst.com that keep popping up with critical errors found.  I have scanned with everything I have and still cannot  get rid of it.  I have used, Adaware, SpyBot, ewido, AVG, Microsoft Defender and Norton Antivirus.

Any ideas of how I can get rid of this thing?
0
Comment
Question by:waytron
8 Comments
 
LVL 38

Expert Comment

by:younghv
Comment Utility
Hi waytron,
I would make sure all of you Security applications have updated definitions, then re-boot to Safe Mode and do a complete HD scan.

Vic
0
 
LVL 15

Expert Comment

by:Naser Gabaj
Comment Utility
Greetings waytron,

The best for such issues is Webroot spysweeper:

http://anti-spyware-review.toptenreviews.com/

Good Luck!
Naser
0
 
LVL 1

Author Comment

by:waytron
Comment Utility
Hi YKoungy,

Yes I updated all definitions and then disconnected from the internet and scanned in both normal and safe mode.
0
 
LVL 38

Assisted Solution

by:younghv
younghv earned 250 total points
Comment Utility
waytron,
Sounds as though you're making the right moves.

Try these two next and we'll get a deeper look at some stuff.

Vic

1. Systernals also has a 'rootkit revealer' program.
Give it a try: http://www.sysinternals.com/Utilities/RootkitRevealer.html


2. Author: rpggamergirl
http://www.experts-exchange.com/M_3598771.html

Get the newest version of HJT:

(an already renamed hijackthis)
http://danborg.org/spy/hjt/alternativ.exe

Open Hijackthis, click "Do a system scan and save a logfile" don't fix anything yet.

Then go to the below link and login using your Experts-Exchange username and password.
http://www.ee-stuff.com
Click on "Expert Area" tab
type or paste the link to your Question
"Browse" your pc to the location of your Hijackthis log and click "Upload"
Copy the resulting "url" and post it back here.

OR: paste the log to either of these sites:
1. http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here.

2. or at --> http://www.hijackthis.de/ 
and click "Analyse", click "Save".  Then post the link to the saved list here.

Then, if still nothing show up in the log, run other diagnostic tools.

Next, download and run this tool, this fixes most common malware and will also give us a log to look at.
Download this file - combofix.exe
http://download.bleepingcomputer.com/sUBs/combofix.exe
Double click combofix.exe & follow the prompts.
When finished, it shall produce a log for you.
Post that log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 
LVL 1

Author Comment

by:waytron
Comment Utility
Well, I am stumped...  I gave up on this machine last night and pulled it off the bench.

I just plugged it back in to work on it again and the problem is now gone.  Go figure....

I will let it run for a while and see what happens.

If it comes back I will continue with the above.

Thanks
0
 
LVL 38

Expert Comment

by:younghv
Comment Utility
While you're waiting, go ahead and review all of the Event Viewer logs for any Warning or Error messages - that may give you some clues to what was going on.

Look for 'Event ID' numbers that can be researched (they tend to be kind of cryptic).


Vic
0
 
LVL 47

Expert Comment

by:rpggamergirl
Comment Utility
If it comes back, let us look at your hijackthis log first.
Hijackthis log tells us what malware infection is in your system, we can then give you the exact tool to remove it, rather than trying so many different ones to see which ones works.

VirusBurst popups belong to smitfraud infection,  hijackthis log confirms whether you have smitfraud or not.
I wouldn't like to just suggest Smitfraudfix just incase it's not smitfraud because you will lost your desktop then and I don't want you to panic.

But usually VirusBurst comes with smitfraud.
0
 
LVL 62

Accepted Solution

by:
☠ MASQ ☠ earned 250 total points
Comment Utility
rpggamergirl is spot on, this is smitfraud

The fix can be downloaded here: http://siri.geekstogo.com/SmitfraudFix.php
plus instructions - basically you unpack it to a folder on your desktop, boot into safe mode and run it to clean your system.  It will reset your desktop wallpaper, internet home page etc so there's a bit of housekeeping to do afterwards but the annoying icon and its bubble will be gone for good!
0

Featured Post

Get up to 2TB FREE CLOUD per backup license!

An exclusive Black Friday offer just for Expert Exchange audience! Buy any of our top-rated backup solutions & get up to 2TB free cloud per system! Perform local & cloud backup in the same step, and restore instantly—anytime, anywhere. Grab this deal now before it disappears!

Join & Write a Comment

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
The term "Bad USB" is a buzz word that is usually used when talking about attacks on computer systems that involve USB devices. In this article, I will show what possibilities modern windows systems (win8.x and win10) offer to fight these attacks wi…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now