Discussion in 'malware problems & news' started by jj, May 16, 2002.
Anybody recognize this file? windows/system/ntbadv.exe
Doesn't sound familiar at all. I presume you performed a deep scan (all files included) with a good and updated ant-virus and anti-trojan? If so, what software did you use?
Not on my w2k install or win98se install
google shows nada.
I experienced a few viruses recently, removed them with Norton. I then used ANTS and a recommended nimda AV prog...both deep scans, nothing else turned up. But I then experienced some machine hangups etc. and the file ntbadv.exe showed up in error several times. Zone Alarm (which I acquired after the attack) also flags it when I go online.
I use w98se and yes I too am unable to ID the file. It loads at startup.
Thank you for the response.
Don't give that ntbadv.exe any rights in ZA !
Is every thing with respect to internet-connection then still OK?
At the moment ANTS is outdated.
Download and install a trial version of TDS-3, download the latest definitions for it, and let TDS-3 run a full system scan, as deep as possible.
In case you need help with TDS-3, go to the special forum section for TDS-3 on this forum, and feel free to ask for help!
Well...TDS-3 confirmed it! ntbadv.exe was as follows:
DDos.RAT.Acebot and an associated registry entry.
Nothing else showed up. The Internet connection was just slow, the browsing was slow. Now it seems normal (i.e. faster). Thank you all.
What other AV type software do you consider not being online without?
WormGuard is a goody
And here is some Acebot description
=O THATS JUST NASTY WHO MAKES THIS STUFF MUST BE MORE BORED THEN ME I SUGEST A NEW LAW.
MAKERS OF THIS EVIL STUFF GET SHIPED TO THE PHILLOPINES AND TRYED THERE
A 25CENT BULLET SAYS IT ALL LOL
Who needs Star Wars when we've got Darth Blazer?
LOL YOU HAV FALED ME FOR THE LST TIM AMIRL LOL