PDA

View Full Version : Malware situation



linw
23-04-2014, 06:33 PM
Just been hooked up with TeamViewer to a laptop that has been BADLY infected. PUPs, backdoor.age, adware etc.

MBAM and ADWCleaner both stopped responding on the cleanup phase. Several times - same result.

But another thing that was really puzzling. Over half the installed programs, including a couple of the PUPs, had the same install date 21-4-2014. This was the date that the owner used iTunes to copy and restore her old phone data to her new phone. Comp was OK before that iTunes interaction, apparently, but loaded with crap afterwards. How would that happen?? (I'm not an ITunes user so am pretty ignorant with it).

Will get the laptop here for imaging and cleanup (hopefully!) but wondered whether anyone could throw any light on the possible iTunes source and the date problem.

Speedy Gonzales
23-04-2014, 07:21 PM
Do it in safe mode / networking , see whats in startup, and delete the suss entries. Look in task scheduler. And / or disable system restore first if youre doing it in normal windows. I doubt Itunes synced any malware

And use ccleaner to delete the temp files etc

linw
23-04-2014, 08:44 PM
Yea, couldn't see iTunes being the source. Maybe just a big coincidence.

But what about the common install date for over half the progs? (All but a couple definitely weren't installed two days ago). Seen that before? How would that happen??