1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Backdoor.Boda Removal Advice

Discussion in 'Virus & Other Malware Removal' started by ep-p-two, Apr 28, 2015.

Thread Status:
Not open for further replies.
  1. ep-p-two

    ep-p-two Thread Starter

    Joined:
    May 4, 2013
    Messages:
    117
    Yesterday, I had what I think was Backdoor.Boda. A warning popped up, the external speakers were disabled and the built-in speakers started wailing like a smoke alarm (heart-stopping). The message used the name of my ISP and said that my browser and PC had critical security vulnerabilities, with instructions to call an 844 phone number. I removed the following file and registry entries

    • %UserProfile%\Application Data\googleupdate.exe
    • HKEY_CURRENT_USER\Software\Micorsoft\Windows\CurrentVersion\Run\"Update" = "%UserProfile%\Application Data\googleupdate.exe"
    • HKEY_CURRENT_USER\Software\Classes\"softbin" = "[BINARY DATA]"

    mentioned in the article at http://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=26595.


    Should I be doing anything else? Everything seems normal, now. Using Windows 7.
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1147406

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice