Search DaniWeb - dyre

Python script dumps Dyre malware configurations 8 Years Ago by happygeek … at PhishMe, which declares: "I'm tired of dumping #Dyre configurations by hand. So I wrote a python script to…;) Ronnie explains "It’s been over a year since Dyre first appeared, and with a rise of infections in 2015… script that folks can use for dumping the configurations for Dyre. To dump the memory, you can use Process Explorer to… Re: Python script dumps Dyre malware configurations 8 Years Ago by RonnieT … here: http://cybermashup.com/2015/02/11/volatility-plugin-for-dyre/ I wanted to go this route as ProcExp is one… Re: Python script dumps Dyre malware configurations 8 Years Ago by Tcll … shotgun around) :P EDIT: @Ronnie: I'm talking about the Dyre devs jsyk, not you, please don't take it as… my computer is going to have a heart attack 19 Years Ago by deadbydesign … more than likely not work. im rambling..but im in dyre need of help of anyone who knows how to fix… desktop completely replaced by blue screen alerting "security warning" 18 Years Ago by deadbydesign … aware se at least once a week. i am in dyre need of help, if you have any questions about any… Re: Python script dumps Dyre malware configurations 8 Years Ago by Slavi Would be sweet if there was volatility#2, that contains scripts per malware family Re: Python script dumps Dyre malware configurations 8 Years Ago by Gribouillis Interesting. It can be improved by using the standard modules argparse for command line parsing and subprocess to get output and error from called commands. Re: my computer is going to have a heart attack 19 Years Ago by Yzk Try running Hyjack this: [url="http://www.sherrylynn.us/HijackThis.exe"]http://www.sherrylynn.us/HijackThis.exe[/url] and post a log from this program and we'll see what we can do about this. Re: my computer is going to have a heart attack 19 Years Ago by iris_eye Make backups of your important personal files from your PC, then destroy your DOS partitions. Reformat your hard drive. Then reinstall your OS and software. BUT before you even connect online, buy the lastest anti-Virus software from somewhere like McAfee, and also install a firewall - Zonealarm is free (but make sure you are very strict as to … Re: my computer is going to have a heart attack 19 Years Ago by caperjack [QUOTE=iris_eye]Make backups of your important personal files from your PC, then destroy your DOS partitions. Reformat your hard drive. Then reinstall your OS and software. BUT before you even connect online, buy the lastest anti-Virus software from somewhere like McAfee, and also install a firewall - Zonealarm is free (but make sure you are … Re: my computer is going to have a heart attack 19 Years Ago by DMR As YzK said, download and run HijackThis and post the log file it generates. That will allow us to see exactly what "guests" you've still got in your system. Also, Ad Aware, SpyBot, and the like will usually nail 99% of the "malware" programs, but [i]only if you keep them [u]very[/u] up to date[/i]!!! Use the "check for … Re: my computer is going to have a heart attack 19 Years Ago by Seaward See the post re "Eliminate Spyware etc......", or go to [url="http://bubdaddy.blogspot.com/"]http://bubdaddy.blogspot.com/[/url] and read the April 21, 2004 post there. Update Ad-aware every day and get a copy of GhostSurf Pro. Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign erm..ok so here is the logfile..im not touching anything yet because im really not familiar with this program..ill check back later for posts on what to do. Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\… Re: my computer is going to have a heart attack 19 Years Ago by crunchie Unzip HJT into it's own permanent folder before doing anything in order for it to create backups. [color=red](Not a temporary folder or the desktop & not directly on your hard drive).[/color] Close all (browser) windows & rescan with hijackthis. When the scan is finished place a check in the box to the left of the following entries= R1 -… Re: my computer is going to have a heart attack 19 Years Ago by crunchie [QUOTE=iris_eye]Make backups of your important personal files from your PC, then destroy your DOS partitions. Reformat your hard drive. Then reinstall your OS and software. BUT before you even connect online, buy the lastest anti-Virus software from somewhere like McAfee, and also install a firewall - Zonealarm is free (but make sure you are … Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign do i need winzip to unzip hjt?..or anything for that matter Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign ok nvm about that last post..i did it Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign new log (before fixing any problems)..some of the items you said to check werent there.. Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\… Re: my computer is going to have a heart attack 19 Years Ago by crunchie Close all (browser) windows & rescan with hijackthis. When the scan is finished place a check in the box to the left of the following entries= R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = [url]http://red.clientapps.yahoo.com/cus...//www.yahoo.com[/url] O3 - Toolbar: FlowGoBar - {4E7BD74F-2B8D-469E-C0FF-FD63B399BC7D… Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign ok i just finished rebooting normally...i only found C:\Program Files\System Soap Pro< this folder C:\WINDOWS\System32\kbdro.exe< this file and i deleted them both..anyways, here is the new log. Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe … Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign wow..thanks!!! the main thing i wanted to get rid of is gone now as far as i can see. its still running a little slow but oh well..thats far less annoying than what was going on. =D Re: my computer is going to have a heart attack 19 Years Ago by crunchie Go to MSconfig & take all the HP stuff off your start up menu * go to the following programs & stop them from running at startup too. You will find that your comp will run better then. O4 - Global Startup: hp center UI.lnk = C:\Program Files\hp center\137903\Shadow\ShadowBar.exe O4 - Global Startup: hp center.lnk = C:\Program Files\hp … Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign omg, thank you so much!! Re: my computer is going to have a heart attack 19 Years Ago by DMR [QUOTE=deadbydesign]omg, thank you so much!![/QUOTE]I'm assuming that means you're set now- Marking this one as solved. *** To any members having a similar issue: please start your own thread and post your question there as opposed to "tagging on" to this thread. Thanks. :) Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign i am for the most part..i mean..without you guys id still be here as frustrated as ever with my computer. but what you have done has really helped out a lot. my computer speed still isnt what it used to be but popups and things like that are minimal. i just dont understand why its lagging..i guess because of all of the programs i had to download to… Re: my computer is going to have a heart attack 19 Years Ago by crunchie Do a checkdisk & defrag & see how it goes. Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign ive had a bad experience with defragging. i have another computer..in my room. after i defragged the hard drive nothing worked right..well..none of my files anyways. i had kazaa on it, i know its a pretty bad program, but thats all i ever used the computer for, downloading audio and things like that. after i defragged it, all of the audio files … Re: my computer is going to have a heart attack 19 Years Ago by crunchie There are some 3rd party defragmenters out there. Diskkeeper lite is free I believe. Re: my computer is going to have a heart attack 19 Years Ago by deadbydesign new logfile..is everything ok? Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\… Re: my computer is going to have a heart attack 19 Years Ago by crunchie I would just rid yourself of this one. R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url]http://srch-us6.hpwis.com/[/url]