Solved

HTML Files Infected and redirected to krvkr.com

Posted on 2007-11-18
8
1,151 Views
Last Modified: 2013-11-22
All HTML files in my computer (and those of some other computers in the network) have been infected. At the end of the file there is a tag redirecting the browser to www.krvkr.com/worm.htm.

Please help me fix this.
0
Comment
Question by:doraiswamy
  • 3
  • 3
  • 2
8 Comments
 
LVL 11

Accepted Solution

by:
bsharath earned 250 total points
Comment Utility
download and scanning with AVG Anti-Spyware 7.5 in Safe Mode.

scan with SUPERAntiSpyware, the Free home user version.

0
 
LVL 11

Expert Comment

by:bsharath
Comment Utility
0
 
LVL 8

Author Comment

by:doraiswamy
Comment Utility
Sorry Sharath, that did not help.
SUPERAntiSpyware did not even detect the virus.
AVG detected it but was unable to heal the files.
0
 
LVL 11

Expert Comment

by:bsharath
Comment Utility
What antivirus do you have.

Try installing Sophos Antivirus....
0
Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

 
LVL 20

Assisted Solution

by:IndiGenus
IndiGenus earned 250 total points
Comment Utility
It would help if we could see what was going on with your computer. I suggest that you download, run, and post a HijackThis log from the link below.

http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php

NOTE: Do not fix anything with HJT at this point, upload the log to the link below and just post the link to it back here.

http://www.ee-stuff.com
0
 
LVL 8

Author Comment

by:doraiswamy
Comment Utility
Indi, already tried Hijackthis. Does not show any threats.
0
 
LVL 20

Expert Comment

by:IndiGenus
Comment Utility
Hmm...file infectors as you probably know can be difficult to clean. Have you tried Dr. WebCureIt on this one? Certainly worth a shot.

http://www.freedrweb.com/cureit/

0
 
LVL 8

Author Closing Comment

by:doraiswamy
Comment Utility
Sorry chaps. Nothing I tried removed the virus.
Finally, I booted in safe mode, and manually edited the HTML files to remove the offending line.
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

Suggested Solutions

OVERVIEW This guide provides information on the process performed when the Symantec Endpoint Protection (SEP) client checks in with the Symantec Endpoint Protection Manager (SEPM). AUDIENCE Information Technology personnel responsible for suppo…
UPDATE - 6/15/2011 Added support for Release Update 6 Maintenance Patch 2 Point Patch 1 (RU6 MP2 PP1). Fixed a defect in the username field that was hard-coded to look for a specific domain (left over code from testing). This release will be the …
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now