WARNING!! must read!!

-
by running Spybot and AVG pro full time I have been able to thwart numerous attempted attacks , I use Yahoo as my primary mail server and download a couple of TV shows a week from a couple of P2p sites with the only successful attack that got by AVG being the rootkit attack that led to me getting Spybot in the first place and was removed by Spybot using the method I described above , as Trailbeast said sometimes you won't be able to boot in safe mode and will need to download your preferred program to a flash drive from a safe computer then install or run it from that drive to kill what is ailing your computer , most important is to remember to update these programs regularly ,this is an ongoing battle not a one time fix and your done .
 
You can't install a program if the computer will not boot or run windows.
The reason the Rootkit got by AVG is because AVG does not scan for them for the most part.

Your info is good, just out of date by a few years.

Sorry, as I mean no bad intent


The new info:

For most Rootkit infections these days the drive will have to accesed with a clean boot system (Like off the windows CD) and then scanned for infections, or the drive needs to be removed and scaned with a clean system with the right tools.
These are TDSSKiller from McAffe.com, Combofix from Majorgeeks.com, RKill from Grinler, and there are a few more but these are the Bad Boyz of the group that are most widely used that can run in DOS mode boot.
With Rootkits that affect the boot sector and /or boot.ini as in rewrite them, you cannot boot the infected operating system to remove it.
These newer infections will not allow it, as they will kill a program that could remove it before the program can even run.
Some even remove the repair program completely.

If interested in the current events and want more info on these infections one could go to www.majorgeeks.com, www.stopbadware.org/
Both are very informative sites.



cannucky said:
by running Spybot and AVG pro full time I have been able to thwart numerous attempted attacks , I use Yahoo as my primary mail server and download a couple of TV shows a week from a couple of P2p sites with the only successful attack that got by AVG being the rootkit attack that led to me getting Spybot in the first place and was removed by Spybot using the method I described above , as Trailbeast said sometimes you won't be able to boot in safe mode and will need to download your preferred program to a flash drive from a safe computer then install or run it from that drive to kill what is ailing your computer , most important is to remember to update these programs regularly ,this is an ongoing battle not a one time fix and your done .
Click to expand...
 
I'm sorry to hear about your computer troubles memike, but it looks like U & some members here have U well on the way to recovery.

I hate being without my computer too :banghead:
 
no worries Trailbeast as I said in the last line of my post "this is an ongoing battle" , so far so good for me but i know the evolving threat will rear it's ugly head again sometime .
 
We used to use AVG as well, and a lot of our customers did too and the rootkits were getting by it in a lot of cases.
We now use Comodo Internet Security, and I can go out on a service call to repair/clean up a system, then when I come back to the office Comodo had told me it had blocked the exact same infection attempt on my own system.

As of about a year ago we have used three really good protection programs.
Ccleaner to remove the temp files where some infections hide until a reboot, Malwarebytes Antimalware and Comodo Internet Security with firewall.
Every time I walk away from the computer I run Ccleaner and remove those pesky, possibly dangerous temp files.
Honestly though, we never really even need Malwarbytes any more because Comodo is that good at gettin em, and we use the free version.
People always tell me "I paid 50 bucks for that program" Norton, McAffee or whatever, and I say "Well if you bought a tank of bad gas would you leave it in the car, or take it out and put good gas in it?"

That usually does it.

Kinda pisses the wife off though, because we get less infection appointments.:D

"the evolving threat will rear it's ugly head again sometime"
Thats what I tell the wife, but it does'nt come around fast enough for her.:banghead:




cannucky said:
no worries Trailbeast as I said in the last line of my post "this is an ongoing battle" , so far so good for me but i know the evolving threat will rear it's ugly head again sometime .
Click to expand...
 
TrailBeast said:
We used to use AVG as well, and a lot of our customers did too and the rootkits were getting by it in a lot of cases.
We now use Comodo Internet Security, and I can go out on a service call to repair/clean up a system, then when I come back to the office Comodo had told me it had blocked the exact same infection attempt on my own system.

As of about a year ago we have used three really good protection programs.
Ccleaner to remove the temp files where some infections hide until a reboot, Malwarebytes Antimalware and Comodo Internet Security with firewall.
Every time I walk away from the computer I run Ccleaner and remove those pesky, possibly dangerous temp files.
Honestly though, we never really even need Malwarbytes any more because Comodo is that good at gettin em, and we use the free version.
People always tell me "I paid 50 bucks for that program" Norton, McAffee or whatever, and I say "Well if you bought a tank of bad gas would you leave it in the car, or take it out and put good gas in it?"

That usually does it.

Kinda pisses the wife off though, because we get less infection appointments.:D

"the evolving threat will rear it's ugly head again sometime"
Thats what I tell the wife, but it does'nt come around fast enough for her.:banghead:
Click to expand...

But I bet all those people tell other people how great you are and you end up with more referal calls. In the end you will have a bigger customer base. That is what happened with my tech.
 
TrailBeast said:
These semi new Rootkits are nasty little devils Stroker, due to the ability they have to move and change thier names, or just temporarily hide themselves.
This got started in 2002 to the point that it was taking down systems, and has only gotten worse as the Marketing people pay more for codewriters to design nastier subversive tactical abilities to try to force a sale of crap software by taking your computer hostage (Literally).
ANYTHING that says your computer is infected and wants money is the first clue the average user will see, and by then the average user is not capable of doing anything about it.

Sucks for the public, but it makes me a living.:prayer:
Click to expand...
I hear that. My wife saw a popup that her antivirus 2011 was ready and not knowing its not my program she clicked it. I found out a week later when i went unstable and black screened. I had to beat it to safe mode blind. Run my program on a flash drive and erase every stinking registry entry so it couldnt phone home and start its crap again. Took me a week. My neices husband is an i t tech and he told me to erase the system and start over but i kicked its ***. Saved all my pics and documents. Now about once a month i copy my pics and documents to disc in case i ever do have to erase the system and start over.
 
I never really thought about the temp file deal , but I do regularly run a program that clears out all the temp folders and cleans up the registry as well it's called 1click cleaner and is part of Yamicsoft's Vista Manager program , maybe that's part of my luck so far that and being able to run spybot-sd resident at the same time as AVG , I have never had any luck with Norton which came with my system and was a real pain to root out . another little tip I follow is to keep my firewall closed to everything and never leave my system open to network discovery .
 
I'm happy to first report it wasn't from me Mike.

My yahoo business email account was hacked a few months ago. "I" invited about two dozen past and current customers to try a male enhancement product ... got a few funny phone calls in response asking if it was a personal observation on my part. :-D

Ever since then, I've run SuperAntiSpyware every night with great success.

Good luck with the hacker Mike!
 
Superantispyware is right up there with Malwarbytes.
Exellent program.

I know a ton of people that got thier email hacked that used Yahoo.
Another ton that use facebook regularly.

Looking up celebrities can get you infected pretty fast too.
And recipies, and sports, and, and, and.
It's just going to get worse until either the laws are inforced or everyone goes to Mac's.



CudaChick1968 said:
I'm happy to first report it wasn't from me Mike.

My yahoo business email account was hacked a few months ago. "I" invited about two dozen past and current customers to try a male enhancement product ... got a few funny phone calls in response asking if it was a personal observation on my part. :-D

Ever since then, I've run SuperAntiSpyware every night with great success.

Good luck with the hacker Mike!
Click to expand...
 
hate to be the one to tell you but your government is the primary reason the hackers exist in the first place . In the early nineties an international group {the origional group known as Safe Hex}put together a truly secure protocol , unfortunately for the 2 Americans on the team the NSA charged them with treason for creating something they couldn't backdoor and intercept , this led to a rewritten version of the program known as PGP , since them every security program has had a "back door " for the Intelligence community to exploit . The Blackberry is the latest example of what happens when you ignore uncle sam and create a secure system , they were pressured by India and Pakistan { as proxies for the US Government } and forced by the international community to provide source code that would enable the creation of "back door " software and well we know where their stock has gone since , It's not about enforcing the different laws of the world or imposing one nations laws on another nation , it's about 1 nation getting it's nose out of everybody else business and since I don`t see that happening in my lifetime we`re just going to have to accept this crap as part of the game so to speak.

PS I still have a copy of the uncrackable protocol for AmigaDos but don`t currently have an Amiga up and running .

PPS I probably should have directed this post to the politics forum- sorry mods
 
daredevil said:
I hear that. My wife saw a popup that her antivirus 2011 was ready and not knowing its not my program she clicked it. I found out a week later when i went unstable and black screened. I had to beat it to safe mode blind. Run my program on a flash drive and erase every stinking registry entry so it couldnt phone home and start its crap again. Took me a week. My neices husband is an i t tech and he told me to erase the system and start over but i kicked its ***. Saved all my pics and documents. Now about once a month i copy my pics and documents to disc in case i ever do have to erase the system and start over.
Click to expand...

I lost all my pictures and my computer is now up and running with extra protection added... Treva said she will do the photo back up like you are doing.
 
If you tell Avast to do a boot scan, it will. Even the free one. My laptop got hit, wi-fi? it stopped everything, and told me to let it scan boot found 6.
 
You must log in or register to reply here.
-

Back
Top