Sign In
Create Account
1
I am wondering if anybody is familiar with this roguespywarecease
I found it in a scan with mbam today. It was found in hkey local machine/system/current controlset/services/ Rkhit roguespywarecease
Mbam got rid of it no problem, but I am curious as to what it is. Maybe I can figure out where I picked it up. A second pc on our system also had the same thing.
Back to top
#2
Posted 31 March 2009 - 06:10 PM
-
- Moderators
-
- 1,935 posts
Forum Deity
- Gender:Male
- Location:Phx. AZ. USA
- Interests:Formula 1 Auto Racing, Computer Security, Entertainment, Sci-Fi, SuperHeroes
Obviously we're somewhat familiar with it as we detected it and removed it. 
As for where it came from, that's another story.
It could have popped up thru a banner ad or as a drive-by download.
You may want to check your history for recently visited URLS.
You can use IEHistoryView from the link below, it will grab all the history off the machine and display all the links:
http://www.nirsoft.net/utils/iehv.html
Great for tracking rogue sites, I use it whenever I visit a user who gets hit with a rogue.
As for where it came from, that's another story.
It could have popped up thru a banner ad or as a drive-by download.
You may want to check your history for recently visited URLS.
You can use IEHistoryView from the link below, it will grab all the history off the machine and display all the links:
http://www.nirsoft.net/utils/iehv.html
Great for tracking rogue sites, I use it whenever I visit a user who gets hit with a rogue.
1 user(s) are reading this topic
0 members, 1 guests, 0 anonymous users
