Sign In
Create Account
2
Got notified of this one via e-mail by an hpHosts user (would've posted it sooner but was working on an hpObserver update)
Host: malware-doc.com
IP: 193.138.172.5 (AS44245)
Family:
http://hosts-file.ne....5&view=matches
#1
Posted 18 February 2009 - 03:03 AM
-
- Moderators
-
- 4,232 posts
Forum Deity
- Gender:Male
- Location:Tyneside, UK
Back to top
#2
Posted 18 February 2009 - 01:38 PM
-
- Honorary Members
-
- 111 posts
Advanced Member
- Gender:Male
- Location:Malaysia
Please add this to the definitions..!!! Fast!! My clean virtual machine is now infected...!!
#3
Posted 18 February 2009 - 02:03 PM
-
- Malware Hunters
-
- 6,718 posts
Forum Deity
- Gender:Male
- Location:West Aussie
- Interests:Gardening and computers.
Azlan, on Feb 18 2009, 09:38 PM, said:
Please add this to the definitions..!!! Fast!! My clean virtual machine is now infected...!!
Surely you have Undo Disks - Enabled?
#4
Posted 18 February 2009 - 03:38 PM
-
- Moderators
-
- 16,155 posts
Malware BBQ'er
- Gender:Male
- Location:127.0.0.1
Azlan, on Feb 18 2009, 01:38 PM, said:
Please add this to the definitions..!!! Fast!! My clean virtual machine is now infected...!!
Please update and run MBAM quick scan
DB 1775 included defs to take down this rogue install.
http://www.malwarebytes.org/malwarenet.php...gue.MalwareDoc+
#5
Posted 19 February 2009 - 02:10 AM
-
- Honorary Members
-
- 111 posts
Advanced Member
- Gender:Male
- Location:Malaysia
Fatdcuk, on Feb 18 2009, 11:38 PM, said:
Please update and run MBAM quick scan
DB 1775 included defs to take down this rogue install.
http://www.malwarebytes.org/malwarenet.php...gue.MalwareDoc+
DB 1775 included defs to take down this rogue install.
http://www.malwarebytes.org/malwarenet.php...gue.MalwareDoc+
K thanks. I just deleted it with Hijackthis
#6
Posted 19 February 2009 - 11:01 AM
-
- Malware Hunters
-
- 188 posts
Advanced Member
- Gender:Male
People using Kaspersky should be protected from this threat as of Yesterday
Kaspersky Threat Name: not-a-virus:FraudTool.Win32.MalwareDoctor.a
Who reported this? Me
Kaspersky Threat Name: not-a-virus:FraudTool.Win32.MalwareDoctor.a
Who reported this? Me
#7
Posted 19 February 2009 - 11:13 AM
-
- Members
-
- 4 posts
New Member
Serious, on Feb 19 2009, 12:01 PM, said:
People using Kaspersky should be protected from this threat as of Yesterday
Kaspersky Threat Name: not-a-virus:FraudTool.Win32.MalwareDoctor.a
Who reported this? Me
Kaspersky Threat Name: not-a-virus:FraudTool.Win32.MalwareDoctor.a
Who reported this? Me
Congratulations!! You won a sweet
#8
Posted 22 February 2009 - 09:38 AM
-
- Experts
-
- 1,549 posts
Malware Researcher
- Gender:Male
- Location:United States
Our defs automatically kill it, but just to make sure, I've added the latest rendition of it's executables...
#9
Posted 02 March 2009 - 10:19 PM
-
- Members
-
- 2 posts
New Member
What if you are caught inbetween? I did not install this malware but my IE pages are still stuck to IP BLOCKED BY XYZ (Yahoo, Google, MSN) due to Malware install this to fix.... , trying to get me to install MALWARE DOC, I have run Malwarebytes with db 1814. But I am still being reditrected. Malware Bytes (Quick and Full scans) and SPYBOT both show clean bills of health.
#10
Guest_remixed_*
Posted 02 March 2009 - 10:42 PM
Guest_remixed_*
-
- Guests
#12
Posted 03 March 2009 - 01:17 AM
-
- Moderators
-
- 4,232 posts
Forum Deity
- Gender:Male
- Location:Tyneside, UK
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
