spyware protect 2009

  • Thread starter Thread starter sotc
  • Start date Start date
  • Replies Replies 24
  • Views Views 2K

sotc

Dormant hero!!
Joined
Dec 6, 2005
Messages
21,827
Location
So. Oregon
stupid virus loaded on my computer today. ive looked it up and managed to turn off the popups but cant make my internet work. some of the instructions ive found online dont make sence to me. if someone has dealt with this and could help me out id appreciate it:X
 
I can't help, but I wonder how you were able to post this if your internet doesn't work. :? :/:
 
<object width="425" height="344"><param name="movie" value="http://www.youtube.com/v/aclD1edW1lU&hl=en&fs=1&rel=0"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/aclD1edW1lU&hl=en&fs=1&rel=0" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="425" height="344"></embed></object>
 
  • Thread Starter Thread Starter
  • #8
brian, that vid wants me to download 4 programs to get rid of one. i cant access the net from that computer to do it. avg is an hour into the scan and has only 1 cookie rightnow, after that ill try leons deal
 
Try a scan in safe mode. Some A/V programs won't touch malware thats running in normal mode. You have to be careful what you d/l and do a search for reviews on spyware programs. Nod32 and Malwarebytes have caught everything nasty I've come across.
 
I watched part of that video, figured it might be more helpful than just written instructions. I have the 'super antispyware' program as part of my 'super ad blocker' program and it seems to work quite well. It actually blocks most of that stuff before I can ever see it, as a lot of viruses are distributed through ads.
 
  • Thread Starter Thread Starter
  • #12
not sure what i clicked on that gave me herpes:dur: avg is still scanning. im thinking leons deal is the only thing that may get it since i cant get a fix online direct:(
 
Blacksmith is right. If the regular scan doesn't get it then you should try rebooting it in safe mode, then scanning again. AVG is pretty good and hopefully can get it if it hasn't been corrupted by the virus.
 
Use the wifes computer and download Avast and CCleaner, both free. I swear by Avast! Download it, install it on the infected computer, internet OFF and see if that kills it!
Good luck, it'll make you want to pull your hair out!
 
Another trick of these things is to block access to anti-malware sites; and / or block the program's name from running. Band-aids hear are to download on other system, rename, then run in safe mode on target system. Safe mode good, some work with a linux boot to get around even deeper than safe mode/ rootkit level evils. going these paths also tends towards what you should do anyway, turn off other antivirus etc. and disconnect from internet while using these other scanners.

http://www.malwarebytes.org/forums/index.php?showforum=39 lists all kinds of nasties (mostly of zlob trojan origin) that malwarebytes is tested on as only thing needed.

i'd make a restore point, before doing anything as a bailout. Then make sure works, then consider turning off, then back on system restore, to delete the restore points (once sure nothing is wrong); to prevent reinfection. Then, again SystemRestore helps a lot of problems on it's own.

SysInternals.com (now part of ms) has a lot of free utilities by the Peter Norton of our times, Mark Russinovich. With his Process Monitor, TcpView and Autoruns, you can catch a lot with simple observation. With tcpview, you can watch all connections, and see if someone is connected to you is etc.

http://freefixer.com/ has a real good utility. but you have to manually pick thru stuff, but is easier to use than hijackthis. You can also check the logs of freefixer against google and http://www.bleepingcomputer.com/startups/.

This is a cat and mouse game, that you have to stay up on, the bad guys have many tools for free and for sale to automate producing attacks and lists of folks to attack.
 
  • Thread Starter Thread Starter
  • #19
i found the the nasty file but couldnt delete it. when i started in safe mode i renamed the nasty and then deleted it.
 
Twice already I've had to reinstall my OS and programs to clean up the virus and spy ware. It takes the better part of 3 full hours to do and still I lose some important data somewhere.

Those computer hacks ought to be hung. They're messing with my private files and life. Grrrrrrrrr.
 
I can say the same with AVG Free and SuperAdBlocker/SuperSpywareBlocker. The trick seems to be in having dual protection so that one backs up the other. The real problem is in trying to download the solution after you've already been infected.
 
Nothing is perfect, best is at least 2 to get what the other doesn't. If having to reinstall because of virus, it is best to wipe out all partitions, and slow format. A virus can hyde in a restore or diagnostic disk partition and reinfect after re-installation into the os(operating system) partition. Sometimes a quick format isn't 'deep' enough.

Another point is to always update virus definitions before scanning. Don't run 2 antivirus at once (turn one off, but can run 2 anti spyware etc. just not 2 firewalls or anti virus at same time) for they can set each other off, or even crash sys if both scan (anti-virus) the same file at the same time. http://www.threatfire.com/ is different,it is antiviral and can be run/is maid to run with av ware. It doesn't work on definitions so much, as behavior. So, can spot stuff that there isn't a definition for yet. To get a virus definition, so many people have to get infected, that are served by a company, that the virus is realized, defined, and deemed worth the time by the damage, speed and saturation they threaten, then a definition is written, then dispersed. Then the bad guy sees that, and tweaks his end a bit, and the cycle repeats. So av ware that can track virus by behavior before a threat is defined is good. So, things will get worse; the best protection choice may change. AVG is good, but is not as hailed for treating today's issues, as much as it was for yesterday's.

It can be really something to be running tcpview and see a bunch of connections hit a box when there is no internet window open etc. If you get familiar with it, process explorer and autoruns, you can pick stuff out that is suspicious and shut it down, research etc. It is best to do occasionally and become familiar before having problem of curse, but; that isn't when most of us start... Really want a lesson, take a sys that you are going to reimage/re-install and run process explorer and auoruns before and after; then try not to let the before happen again, by keeping it all skinnied down to look like the after (re-imaging).

A common statistic is that if you put an unprotected box on the internet, it is attacked in 15 minutes; some even say 'owned' in that amount of time. Some of the latest stuff is passed around by thumb drives though, just like it used to be on floppies before the internet.
 
You can run firefox to get to the internet. most viruses affect inernetexploer but firefox.
I ran into this problem. i was still able to down lowed fixes.
I do like the flash drive trick .
 
Back
Top