Solved I need help with very strange Chinese SPAM/Malware

Hi Broni,
It's a crafty one, this malware. I Googled a lot of websites last night and a lot more today with no problems until now, at 2:35 am on Tuesday morning. Maybe I should just use Firefox, or since I don't have any saved work on C Drive maybe I should use a back up of it that I have saved on an external drive with Acronis, one from back in February before I got infected. What do you think?

 

Thanks Broni. Can malware like this attach itself to a router or a motherboard, and is it likely to know all my passwords?

 

Thank you, Broni. Do you think it could be a self-replicating Trojan or a Virus? That might explain why it keeps coming back.

 

Thanks again, Broni. I'll try to use a True Image backup and see if that does the trick. If not, I can always format the hard drive and reinstall everything. It's a very strange malware that can be that elusive.

 

You bet

 

Hi Broni,

I got all my apps and program disk out and ready to install, but I haven't decided to do it yet because I've only seen the malware twice since we last spoke. It doesn't seem to have done any harm to anything else that I can see, so I haven't felt pressured to format and reinstall everything.

Something you had me do has definitely slowed it down enormously. I only wish I knew what it was. I'll probably format and reinstall everything before long. Thanks for asking.

 

Hi Broni,

Thought I should update you as to what's going on with my malware problem.

I haven't reinstalled Windows 7 and all my programs and apps and updates yet, because the malware only pops up now and again. I haven't seen it for a couple of days and it doesn't seem to have caused any problems to my system.

I've Googled the web addresses of the Pop-ups I get. The web address on my version is www+Duba.com (I've replaced the dots with plus signs for obvious reasons There is another one, as well. Its web address is www+Duba.net. The Pop-ups on both are almost identical and are mostly fashion ads to appeal to young Chinese kids. In other words, they seem to be no more menacing than a lot of SPAM.

I also discovered that McAfee did a study on THE Duba.net one and they say that it is non-malicious malware. I didn't find anything they said about how to get rid of it though.

I'm in the process of trying to install Windows 7 and all my programs and apps onto a new hard drive, which I will then back up to an external drive with Acronis. The only back-ups I had done of my C Drive were done after I had been infected with the malware. Once I've done it, I will format my good C Drive and transfer all the files to it from my Acronis account.

I'm having a small problem with installing Windows 7 onto a new hard drive, which I won't bother you with. If I can't figure it out, I'll post it in the software section of WindowsBBS.

Thanks again, Broni,

bellisimo

 

Hi Broni.

Last week, I think I found it, but not before it had caused a few problems. I noticed some of my services had been disabled, so I went into Services in Administrative Tools and there it was under 'D' as Danger Driver, followed by a big long row of Chinese characters. I've since learned that Danger Driver is most likely a video game, and I am not a gamer. A lot of my services had been disabled and I deleted the Chinese one and re-enabled and started the ones that had been disabled. I can't be sure because I can no longer get online with C Drive. I reinstalled everything on an HHD drive for the time being.

I'm thinking of using my Acronis backup of the C Drive, which is on my external hard drive. I've been hesitant to do it though because I've never done it, and I'm not quite sure how. If I select recovery in Acronis True Image, does it just replace the existing C Drive files with the backed up ones?

Thanks again,

b

P.S. I stumbled upon this website the other day, which is 2 or 3 yeas old, but still, I find it pretty daunting. Check it out

http://www.techspot.com/community/t...us-programs-and-how-to-deal-with-them.161379/

 

Thank you, Broni.