Computer Support Forum

2016 Homeland Security - AppGuard Best Cyber Anti-Malware Solution

Question: 2016 Homeland Security - AppGuard Best Cyber Anti-Malware Solution

2016 WINNER

For immediate release:

2016 'ASTORS' Homeland Security Award Winners Announced - American Security Today

American Security Today?s comprehensive Homeland Security Awards Program was organized to recognize the most distinguished vendors of physical, IT, port security, law enforcement, and first responders, in acknowledgment of their outstanding efforts to ?Keep our Nation Secure, One City at a Time.?

Blue Ridge Networks AppGuard

Platinum Award, Best Cyber Anti-Malware Solution

Relevance 100%
Preferred Solution: 2016 Homeland Security - AppGuard Best Cyber Anti-Malware Solution

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: 2016 Homeland Security - AppGuard Best Cyber Anti-Malware Solution

U.S. Department of Justice
Executive Office of United States Attorneys
Department of Commerce
Department of Defense
Department of Homeland Security

Department of the Interior
Department of State
Department of Transportation
Army
Navy
All protected by Blue Ridge Networks products - past and present.

40 more replies
Relevance 82.41%

APRIL 4, 2015
Kaspersky Internet Security 2016 ver. 16 Review & Settings
Good malware detection rate.

Very good malicious website detection rate. internet explorer, Google chrome and Firefox web browser is supported. It is recommended that you only these three web browser

Good proactive protection from unknown malware. It takes most of the decision itself. Whenever kaspersky asks to do a scan

Light on system resources. Kaspersky does have high hard disk usage.

RAM usage around 200 MB

Read the help file in-order to better understand the security features and how to use that feature.


The main interface

Various types of scan available



Privacy cleaner tool




Trusted applications mode
When turn ON Trusted application mode only lets known safe application to run.
It is higly recommended that you ?Enable? it









Browser Configuration wizard




KASPERSKY INTERNET SECURITY SETTINGS










PARENTAL CONTROL

Assign a password so that only you can change the parental control settings

Slide the slider next to ?Control is enabled? to enable the parental control
Click ?Configure restrictions? to configure all the features

Computer tab restricts the access to computer to specified amount of time

Applications restricts access to certain applications and games

Internet tab restricts access to internet
You can block access to certain categories of websites




DETAILED SETTI... Read more

Answer:Kaspersky Internet Security 2016 by Cyber Raiden

Its outdated! They have a new interface now and the browser modification protection is now active too.

PS: Please use spoilers next time
 

2 more replies
Relevance 82.41%

I really need help with homeland security malware. I've read information on this but nothing seems to work. I have tried starting computer in regular safe mode, safe mode with command prompt, and safe mode with network. My computer won't let me. When I try these I see a list of files then it restarts my computer. I don't have a Windows 7 start up disk. I'm not sure what else to try.

Answer:Homeland security malware

Hello Artistico -
 
Please fully read and follow This Solution for your problem from our Help Pages.

 
Once you have followed it fully (it may take 2 or 3 attempts), please post back for more instructions -

1 more replies
Relevance 80.77%

I've tried every suggestion I could find.  I'm using Windows 8.  And none of the solutions I have found can get me the whole way through to resolution. The system won't restore to an earlier date. i tried using hitman from the usb i configured from another computer but nothing happened. I can't figure out how to boot from the CD or that supposedly holds the solution.  Windows 8 just stops me at every turn. Please, please, please help me.Edit: Moved topic from Windows 8 to the more appropriate forum.~ Animal

More replies
Relevance 78.72%

Emsisoft Anti-Malware & Emsisoft Internet Security 12.0.0.6844? with BETA updates enabled:

This update will require an application restart.

Improved: Behavior blocker detections.
Fixed: Installation issue for Emsisoft Internet Security.
 

More replies
Relevance 73.8%

Hi -I had this malware and per the suggestion in this topic: http://www.bleepingcomputer.com/forums/t/263016/cyber-security-malware/I ran Malwarebyte's Anti-Malware. The quick scan did not do the job, but the full scan seems to have. Would you mind taking a look at the log pasted below to confirm that all is well? I am running Windows Vista Version 6.0 SP2.ThanksMalwarebytes' Anti-Malware 1.41Database version: 2993Windows 6.0.6002 Service Pack 210/19/2009 11:12:00 PMmbam-log-2009-10-19 (23-12-00).txtScan type: Quick ScanObjects scanned: 86362Time elapsed: 5 minute(s), 46 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 5Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 2Files Infected: 11Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:HKEY_CLASSES_ROOT\CLSID\{35a5b43b-cb8a-49ca-a9f4-d3b308d2e3cc} (Trojan.FakeAlert) -> Quarantined and deleted successfully.HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{35a5b43b-cb8a-49ca-a9f4-d3b308d2e3cc} (Trojan.FakeAlert) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{35a5b43b-cb8a-49ca-a9f4-d3b308d2e3cc} (Trojan.FakeAlert) -> Quarantined and deleted successfully.HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearc... Read more

Answer:Cyber Security malware: is it gone?

I think its self explanatory "quarantined & deleted successfully" but its always good to have a second opinion so why not download SuperAntiSpyware and do another scan. Make sure you update it and do the full scan.

You might want to ask someone how to go about deleting the registry values left behind by your spyware but i am not the person to be giving you that kind of advice. Good Luck

4 more replies
Relevance 73.8%

Hello,

I would be grateful if you can help me.

I went to my comp today and found flashing virus warnings. I notice that there is a new Icon on my desktop called Cyber Security. I suspected that it must be a 'nasty' so tried to remove it with 'Remove programmes' It won't let me. I searched on google and found a site that gives instructions on manual removal but it involves changing the registry and all sorts, I'm not confident in doing that without guidance.

Can anyone help me get rid of it?

I am using XP home and have Avira free. Not sure what other info you may need.

Thanks in advance for any help you can give me.

Ruth

Answer:Cyber Security malware?

i have received the same icons and can't remove this from my system. When i go into remove programs, it says,"This version of cyber security is for evaluating purpposes only. The removal features are disabled."

22 more replies
Relevance 73.8%

hi bikash_ibat,

Your log is a few days old. If you still need help simply reply to my post and we can begin.

More replies
Relevance 72.98%

About two weeks ago whilst my son was looking for some images on the google site (not that google is in any way implicated here) a box popped up on the screen saying we had a virus called Cyber Security.  It outlined that there was a solution and of course when you followed those links the upshot was you had to pay for a download to fix it.Luckily we'd heard a segment on bbc radio about this virus and ignored it and started to hunt down a fix ourselves.After a number of what appear to be false starts (ie scans that tell you the virus is there but then demanding money to put it right!) and another reference to the bbc we found you guys.I've worked through the malware removal guidance and have hopefully correctly posted the three relevant logs below.It would appear that the "cyber security" rogue has now been removed but I'm following your advice and posting anyway - hope that's right and I look forward to hearing from you.lc[Saving space, attachment deleted by admin]

Answer:Cyber Security virus/malware

1) Have "HijackThis" fix the following items in the list below by placing a check in the appropriate boxes.Confirm that you have only the listed ones checked, then press <Fix checked> and close"HijackThis".Please close any open programs before doing this fix.QuoteR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://home.peoplepc.com/searchR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/defaults/sp/*http://www.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://home.peoplepc.com/searchR0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)O2 - BHO: Accelerator Plugin - {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\PROGRA~1\PEOPLE~1\PRPL_I~1.DLL (file missing)O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)O9 - Extra button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - http://www.sky.com (file missing)2) Next perform a full scan with malwarebyte antimalware as follows.Make sure it is updated before performing a scan.* Open Malwarebyte A... Read more

1 more replies
Relevance 72.98%

Hello,I'm hoping you can help me. I have a similar problem as earlier experienced by others...see the following forum link...http://www.bleepingcomputer.com/forums/t/263016/cyber-security-malware/I logged into my computer last night and after a couple of hours on it, I was getting flashing virus warnings. I notice that there is a new Icon on my desktop called Cyber Security. I may have picked up this malware from a download I did the previous day for a media converter called "SUPER". Before I downloaded it I googled around to be sure it was safe as it is freeware, no reviews I read reported problems with this software. After downloading it, I attempted to launch it, but nothing occured. This raised my suspicions and fears, so I immediatley uninstalled it. Possibly the site I got it from was bogus, or maybe I picked up the malware somewhere else. Now, a day later, I am experiencing this Cyber Security malware which can't be uninstalled or disabled. When trying to disable it, I get the message:"This version of cyber security is for evaluating purposes only. The removal features are disabled." My laptop is an HP Pavilion dv6449us, and Im running Vista SP2...I was able to generate the DDS logs and Attach.txt, but the Root Repeal would not complete after 5 hours, so no report here. Is this normal? How long should it take to complete and generate a report? It seemed to lock up when scanning the c:/Windows/system32/Gather^1.VBS, showing a scan status of "Locked to the wind... Read more

Answer:Cyber Security malware infection

One addtional thing, after attempting to run the but the Root Repeal, which never finshed (it just idled for several hours), explorer.exe seems to have gotten corrupted. I now get the "Windows Explorer Has Stopped Working" message box, followed by "Windows Explorer is Restarting". These two pop ups loop endlessly and prevent ny command, even in Safe Mode. I tried to restore my laptop to a previous restore point, back to October 4, but the explorer launch errors still occur!

20 more replies
Relevance 70.11%

----------------------------------------------------------------------
Account
Account Type: Admin Account
UAC: Max (Always Notify)
SmartScreen: Max (Require admin approval)
----------------------------------------------------------------------
Main AntiVirus/Anti-Malware/Suite
Local + Cloud: avast! Internet Security
Cloud: /
----------------------------------------------------------------------
Companion AntiVirus/Anti-Malware
Local + Cloud: /
Cloud: Zemana Anti-Malware Premium
----------------------------------------------------------------------
System Reinforcement
Anti-Exploit: Malwarebytes Anti-Exploit Premium
Anti-PUP: /
Anti-Spyware: /
Anti-Rootkit: /
Removable Media/USB Protection: avast! Internet Security
Apps Hardening : Malwarebytes Anti-Exploit Premium
Process Hardening: Malwarebytes Anti-Exploit Premium
System Encryption: /
File Protection: /
File Reputation: Zemana IntelliGuard Cloud
Document Protection: /
Registry Protection: /
Autorun Protection: /
Keystroke Encryption: Zemana Anti-Logger Premium
Banking/Shopping protection: avast SafeZone Pay Mode
Anti-keylogger: Zemana Anti-Logger Premium, avast! Internet Security and Zemana Anti-Malware Premium
Alternate Data Streams Scanner: /
----------------------------------------------------------------------
Firewall & Networking
Firewall: avast! Firewall
Intrusion Detection System: /
Packet Inspection: /
Protocol Filter: /
Certificate checker: Zemana Anti-Logger Premium
Network Protection: /
DNS Protection: avas... Read more

Answer:Anti-Malware Reviewer's Configuration 2016

Nice security setup.

Have a backup plan is essential to ensure data and PC security.
The best thing is to create a system image that can be restored in a few minutes to protect the personal information and the operating system from serious errors and/or malware infections.

Here's a guide to using the Windows 10 default features:

How to Use All of Windows 10?s Backup and Recovery Tools

Otherwise consider third parties tools as free Aomei Backupper Free:

Best Free Backup Software for Windows 10, Windows 8.1/8, Windows 7, Vista, XP
 

80 more replies
Relevance 69.7%

Hi,
I have Bitdefender Total Security 2016 but I wounder if I need "Malwarebytes Anti-Exploit"?

And also I would like to know what is best second defense software free or paid?

Thank you
 

Answer:Do you need an Anti-Exploit with Bitdefender Total Security 2016?

@WikiLeaks Mod Edit Notes: Post moved to new thread.

There are already similar questions with differing Poll results, but the comment I agree with was written by @hjlbx



hjlbx said:





If you keep your software and OS updated - and aren't a high-risk user, then the probability of an exploit is low - something like less than 2 % according to industry data. Therefore, anti-exploit protection isn't needed - statistically - for the vast majority of users.

If you want layered protection, then anti-exploit is one of the basic layers.

My attitude towards exploits that they are very unlikely - yet still possible (true 0-Day). Therefore, I run all commonly exploited programs - browsers, Adobe products, office suites, archivers, etc - with limited file system and registry access rights using AppGuard. AppGuard will not prevent an exploit, but it will block the post-exploit actions. I have seen it stop a nasty exploit payload from altering the system.Click to expand...

Read: Question - Should I use a Exploit Protection Software?




Read: Question - Malwarebytes Anti-Exploit- Should I use it?




I highly recommend creating your own thread at, Security Configuration Wizard so we can get a better assessment about your system, software used and settings.
 

1 more replies
Relevance 69.7%

Tip ST04-016
From
National Cyber Alert System Cyber Security US-CERT Cyber Security Tip ST04-016 -- Recognizing and Avoiding Spyware
. On the above link you wil learn:
What is spyware?
How do you know if there is spyware on your computer?
How can you prevent spyware from installing on your computer?
How can you prevent spyware from installing on your computer?
How do you remove spyware? .

Answer:Tip: National Cyber Alert System Cyber Security Tip ST04-016

Attached Poll to this Thread

5 more replies
Relevance 69.29%

Hello everyone, this is my configuration for my Smartphone, my laptop (main) configuration can be found in my signature
 

Answer:Anti-Malware Reviewer's Smartphone Configuration 2016

Excellent smartphone config!

There's no doubt about the effectiveness of avast! and Malwarebytes Mobile Security.

I personally am using AdGuard too (proxy mode), and it's so far been extremely effective at blocking advertisement and tracker domains! It truly is very powerful.

Solid config, overall!
Thanks for sharing it with us!
 

2 more replies
Relevance 69.29%

Hello.

I got a lifetime sub. for Malwarebytes Anti-Malware (MBAM) and i also have a sub. for Norton 2016.

Now, can i get rid of Norton and only use MBAM and still be completely safe from viruses? (as safe as i can be with a Anti Virus).

On Malwarebytes web page they state that they protect against "worms, Trojans, rogues, spyware, bots, and more",
but what about viruses?

The problem is that Norton now says that it is incompatible with MBAM and that i need to uninstall it if i want Norton to function properly.

Answer:Qustion: Norton 2016 Vs. Malwarebytes Anti-Malware

Hi:







Bohauo said:

Hello.

I got a lifetime sub. for Malwarebytes Anti-Malware (MBAM) and i also have a sub. for Norton 2016.

Now, can i get rid of Norton and only use MBAM and still be completely safe from viruses? (as safe as i can be with a Anti Virus).



No, not with the current release version of MBAM, version 2.2.1.1043.
As explained here, MBAM v2 is NOT an anti-virus.
It is intended to run alongside a real-time AV to provide complementary, layered protection against different types of threats often missed by AVs.

Does Malwarebytes Anti-Malware replace antivirus software?






On Malwarebytes web page they state that they protect against "worms, Trojans, rogues, spyware, bots, and more",
but what about viruses?

The problem is that Norton now says that it is incompatible with MBAM and that i need to uninstall it if i want Norton to function properly.




Malwarebytes Malwarebytes 3.0 is currently in public BETA testing.
That version is being marketed as an "AV replacement".
However, it is an unstable beta product that should not be run in a production environment.
And it's not quite clear whether or not version 3 really *is* a full-fledged AV suitable for use alone.

AFAIK there are currently no consistent compatibility problems between MBAM v2 and the major 3rd-party AVs (I run paid versions of 2 different AVs on my 3 boxes).
Having said that, there are isolated r... Read more

4 more replies
Relevance 69.29%

Hello.

I got a lifetime sub. for Malwarebytes Anti-Malware (MBAM) and i also have a sub. for Norton 2016.

Now, can i get rid of Norton and only use MBAM and still be completely safe from viruses? (as safe as i can be with a Anti Virus).

On Malwarebytes web page they state that they protect against "worms, Trojans, rogues, spyware, bots, and more",
but what about viruses?

The problem is that Norton now says that it is incompatible with MBAM and that i need to uninstall it if i want Norton to function properly.

More replies
Relevance 69.29%

Hello,

Is there any good anti vbs-malware out there?
 

Answer:What is the Best Anti-VBS-Malware solution?

VBScript is a programming language used to create small programs, or to automate a series of commands, but it is also used to write malware (for example the old "I LOVE YOU" malware and its variants).
I remember the Windows Scripting Host (WSH) which is used for the interpretation and execution of files written in VBScript (extension .vbs) and it was present on the older Windows versions, it is probably still used on Windows 10, but please correct me if I'm wrong.

However, the danger of the Windows Scripting Host is in the automatic execution of associated scripts without the intervention of the user, to have access to the Windows shell, to the system files and to the registry, and this of course can be critical if it is done with a VBS malware.

But usually, any good AV has a Script Blocking function that protects from the execution of VBS malicious codes.

I also remember a modification to the Windows registry to disable the WSH engine in the old Windows OS but honestly I can't be more precise.
 

5 more replies
Relevance 68.06%

Now! ESET has just released their newest security suite: ESET Smart Security 9 (2016 Edition). These products are on the top of security suites which are produced by giants on security companies. Most of them released 2016 editions of their products. I want to compare on their newest products with new features (such as on ESET: Banking Protection, Bitdefender: Ransomware Protection and new Firewall, etc...) and some enhanced features.

And now, which is your choose for your security? Please let me know your opinion!
 

Answer:Battle: Kaspersky IS 2016 vs ESET Smart Security 2016 vs Bitdefender IS 2016 vs Emsisoft IS 10

its hard choice choose between Eset,Kaspersky and Emsisoft.
in fact i never test Eset 2016, but i tested kaspersky and Emsisoft, Kaspersky 2016 really go lighter than Emsisoft(now i am Emsisoft useres)
by your budget and your interest u can choose Emsisoft or kaspersky.
 

46 more replies
Relevance 67.65%

Hi,

I have become one of the many with a PC infected by 2 fake security scams (Cyber Protection Center and Cyber Security). I purchased Spyware Doctor recently, thinking that this would get rid of it, since the free scan did identify them, or so I thought, but it has failed. Can someone possibly advise me on how to get rid of them please? My computer has slowed down a lot, and the constant pop-up messages are really annoying.

I have a HJT log file, below.

Many thanks in advance.

G

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:03:30, on 20/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Motive\McciCMService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton 360 Premier Edition\Engine\3.5.2.11\ccSvcHst.exe
C:\Program Files\Spyware Doc... Read more

Answer:Cyber Security and Cyber Protection Center

Welcome to TSG

Before i get started, i need you to remove all your Anti-Virus program except one. You have numerous programs installed. Running muliple AV programs will cause system slowdown and crashes. Thanks
 

3 more replies
Relevance 67.24%

Survey: What Anti-Virus, Anti-Malware, Web-Protection, Fully-Featured Suite would you consider to be the best when assessing it from a price per "quality/quantity of features" perspective?

(Consider that the user will be using it for a Windows 10 laptop and desktop, & a Windows 7 desktop -- more Win 7 and 10 systems if possible!)

More replies
Relevance 66.42%

In the past 24 hours I've been hit with:
Homeland Security Extortion virus(handled i think)
Antivirus Security Pro
I'm seriously struggling here, got into safe mode and ran Rkill, and then malwarebytes full scan. Found 7 thinks, said it deleted them. I no longer can access bleeping computer from my computer's web browser. As a college student this is debilitating.
I think i may be infected with a zero access rootkit as well. Any assistance would be super helpful!

Answer:I know I'm infected! Help! Homeland Security Virus and Antivirus Security Pro

Hello zpruitt I would like to welcome you to the Malware Removal section of the forum.Around here they call me Gringo and I will be glad to help you with your malware problems.Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!Please do not run any tools unless instructed to do so.We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same",... Read more

38 more replies
Relevance 66.01%

Which is the best anti-executable in terms of overall user experience:

interface
ease-of-use
features
compatibility
bugs
robust protection

Blue Ridge AppGuard (AG)
NoVirusThanks Exe Radar Pro (NVT ERP)
VooDooShield (VS)

My vote goes to NVT ERP.

AG - best (additional) protections
VS - features\innovation
NVT ERP - in day-to-day use, it has proven to be the most user/system friendly - especially on busy, changing system
 

Answer:Which Is Best Anti-Executable: AppGuard, NVT ERP or VooDooShield ?

I would take both NVT ERP and Appguard. ERP for its excellent support and as you said, for general use it is very good. Appguard because it does shield against threats that are able to bypass traditional anti executable.
 

19 more replies
Relevance 66.01%

I'm wondering if anyone could briefly explain the difference to me between two softwares users on the forums here have recommended me to defend against Ransomware.

One is WinAntiRansom and the other is an an anti-exe type program. I don't really want to use both, but I assume they operate a bit differently? I can't really figure out how WinAntiRansom is different from an anti-exe program though.

I was about to go with NVT ERP (I think its a good balance of usability/security and I like the GUI). But then I remembered I hadn't finished reading about WinAntiRansom... and so now I'm a bit confused again.

User @hjlbx posted this 'classification' schema below on a different post but I'm not 100% solid on the details here if this is correct. Further, I already use HitmanPro.Alert so if W.A.R. is the same mechanism (and indeed they do a comparison against HPA on their site) then maybe they conflict.


Anti-Cryptor (HitmanPro.Alert, CryptoPrevent, WinAntiRansom)
Anti-executable (NoVirusThanks Exe Radar Pro, SecureAPlus, VooDooShield)
Software Restriction Policy (AppGuard)
Virtualization (Shadow Defender, Sandboxie)

 

Answer:WinAntiRansom vs Anti-Exe Programs (AppGuard, NVT, etc)

I don't pretend to be an expert, so take what I have to say with a grain of salt. There's actually no harm in using an anti-executable AND anti-cryptor at the same time. The problem is when people have like 5, 6, even 7 real-time prots at the same time. If you pick the right software, you can reduce the amount of real-time protections down to like 3 or 4. You really don't even need an AV or Firewall, just a few select on-demand scanners. For instance, WinAntiRansom specifically targets ransomware -- that's its prime objective, and it's very good at it. But the buck really stops there. As such, it may be necessary to have an anti-executable, such as NVT, Voodooshield, Appguard, to prevent the execution of other processes that WinAntiRansom doesn't cover. Those two forms of protection will prevent most RANSOMWARE and MALWARE infections if you PAY ATTENTION AND READ BEFORE CLICKING.

Furthermore, you could logically also add HMPA, which covers most of your other bases: keyloggers, exploits, browser protection, solid real-time malware prot, some forms of ransomware, and more. Theoretically, that's all the protection you would ever need. It's really just a game of experimentation, and finding the right amount of protection that works for your personal needs. Virtualization (Shadow Defender, Sandboxie), IMO, are only necessary if you experiment with malware, visit questionable websites that have a history of infecting your PC with malware, o... Read more

1 more replies
Relevance 65.19%

Which is the best anti-executable in terms of overall user experience:

interface
ease-of-use
features
compatibility
bugs
robust protection

Blue Ridge AppGuard (AG)
NoVirusThanks Exe Radar Pro (NVT ERP)
VooDooShield (VS)

My vote goes to NVT ERP.

AG - best (additional) protections
VS - features\innovation
NVT ERP - in day-to-day use, it has proven to be the most user/system friendly - especially on busy, changing system
 

Answer:Best Anti-Executable in your opinion? - AppGuard, NVT ERP or VoodooShield ?

I would take both NVT ERP and Appguard. ERP for its excellent support and as you said, for general use it is very good. Appguard because it does shield against threats that are able to bypass traditional anti executable.
 

71 more replies
Relevance 65.19%

Which is the best anti-executable in terms of overall user experience:

interface
ease-of-use
features
compatibility
bugs
robust protection

Blue Ridge AppGuard (AG)
NoVirusThanks Exe Radar Pro (NVT ERP)
VooDooShield (VS)

My vote goes to NVT ERP.

AG - best (additional) protections
VS - features\innovation
NVT ERP - in day-to-day use, it has proven to be the most user/system friendly - especially on busy, changing system
 

Answer:Which Is Best Anti-Executable in your opinion?: AppGuard, NVT ERP or VooDooShield ?

I would take both NVT ERP and Appguard. ERP for its excellent support and as you said, for general use it is very good. Appguard because it does shield against threats that are able to bypass traditional anti executable.
 

40 more replies
Relevance 64.78%

Hello,
 
I'm an IT consultant for several small to medium-sized business.  I've mostly use Avast and Malwarebytes for my Anti-virus and Malware protection.  For the small offices it's easy to manage, but for bigger offices, keeping track of anti-virus expiration dates is ridiculous (since it will be different based on when they get a new computer) and this week it was proven that I can't rely on the staff to let me know when a registration is expiring.  One of the computers was infected with CryptoLocker because he ignored the 30-day daily reminders of Avast expiring.  Fortunately, I was able to minimize the data lost to 4 hours to 12 hours by using Shadow Copies and the previous nights backup for the database applications that got encrypted.  Please note, they also host their own exchange server (SBS 2011/Exchange 2010 or SBS 2008/Exchange 2007)
 
So, with that preface, I need a good business management solution that provides virus, malware, phishing, spam, web-content filtering and blocking of potentially harmful sites.  For one of the offices, I do have a Barracuda Anti-Virus/Spam firewall, but this is only for email not web-content filtering.
 
I am considering the following:
 
BitDefender Small Office Security
Untangle NG Firewall - would order the hardware from them
Dell SonicWall solution - debating between NSA or TZ series for the medium-sized businesses.
 
I also really like the Barracuda devices, ... Read more

Answer:Small Business Anti-Virus/Malware and Content Filtering Firewall solution

I have never personally used any of the software available for business environments but here is a list I compiled.Antivirus Enterprise Software for Business and Corporate EnvironmentsKaspersky Anti-Virus for Windows Servers Enterprise EditionVIPRE Business & Enterprise Antivirusavast! Endpoint Protection SuiteComodo EnterpriseSymantec Antivirus Corporate EditionSOPHOS Enduser Protection SuiteMicrosoft Security Essentials for small businesses with up to 10 PCsEmsisoft Business ProductsEmsisoft Anti-Malware for serverThese articles may be helpful in making your choice:How to Evaluate, Compare and Implement Enterprise AntivirusChoosing an Antivirus Solution for your OrganizationGuidelines for choosing antivirus software to run on the computers that are running SQL ServerFive enterprise-ready antivirus systemsMy Security Colleague, Didier Stevens, Microsoft MVP Consumer Security is an IT Security Professional who has a lot of experience in this area. Hopefully he will read this topic and follow up with more specifics for you to consider.

4 more replies
Relevance 64.37%
Answer:Bitdefender Total Security vs Emsisoft Anti-Malware vs ESET Smart Security

Emsisoft.
 

1 more replies
Relevance 63.96%

The cyber-risk for digitally active sports fans has more than doubled during the 2016 Euro soccer tournament.

According to the Allot Communications and Kaspersky Lab?s MobileTrends Q2 2016 report, mobile has changed the way we experience sporting events as fans flock to the digital arena to watch, record and share their reactions. Seventeen percent of mobile users who exhibited little or no use of sports apps or websites before the games became active sports fans during the games.

However, cyber-criminals are taking advantage of this to trick sports fans into downloading infected apps or clicking malicious links. Nearly 50% of these ?casual fans? transitioned into sports fans? behavior profiles, with high potential risk for malware.

"Cyber-criminals often use big events to lure users with phishing emails and fake websites, exposing fans to intensified and new potential cyber risks. Users should be aware of potential threats and lookout when clicking on links, entering their credentials on websites or making financial transactions,? noted Alexander Karpitsky, head of technology licensing, Kaspersky Lab. ?We at Kaspersky Lab recommend sports fans take a proactive approach to their online security, especially when mobile, safeguarding their devices with IT security solutions at all times.?

The total number of mobile sports fans at high risk for cyber-threats more than doubled during the games. And, increases in online sports betting and social networking a... Read more

Answer:Euro 2016 Fans Hit Hard by Cyber Threats

Malicious apps will be the wave of the cyber-crime future...
 

1 more replies
Relevance 63.96%

I have the Homeland Security Ransomeware.  Malware Bytes does not detect any problems.  I will not be with my computer / internet again until June 16.Thanks in advance for any help.Edit: Moved topic from Virus, Trojan, Spyware, and Malware Removal Logs forum to the more appropriate forum, due the absence of any malware logs included in the topic. ~ Animal

Answer:Homeland Security Ransomeware

Take a look here: http://www.bleepingcomputer.com/virus-removal/remove-ice-cyber-crime-center-ransomware

3 more replies
Relevance 63.96%

Acer Aspire 5733Z laptop, Windows 7 OS infected with Homeland virus. Now with problems connecting to the internet via ethernet cable. IP address reads 169.254... from forum searching i've gathered that is b/c it isn't receiving a network address. The other laptop I have is connected via the same cable fine. 
I'm running the infected computer in safe mode currently, i've done several system restores, I'm currently running malware bytes to see if anything pops up that I can remove. 
for the networking issue i've already tried the netsh reset stuff in the cmd prompts... nothing seemed to be working. 
Any suggestions on getting this virus off my laptop would be awesome and appreciated. 
 
thank you!! 
 
jknick

Answer:Homeland Security Virus: Please Help

So Malwarebytes located 2 infections one of which was trojan related naturally... i clicked remove but on reboot the virus was still present  

30 more replies
Relevance 63.96%

It's a Compaq presario running XPP w SP#
 
I was tooling around the inter net when all of a sudden a small official looking wnidow poped up asking if I wanted tp keep silver sheild ( I think that was it) up to date.  Since I don't having anything like that I closed the window by clicking the red X at the the upper right corner.
 
 

Answer:Homeland security virus got me.

Hi Wild Racing. Lets see what we can do. Can you please follow these instructions.
 
Please download Malwarebytes Anti-Malware from Malwarebytes.org.
Alternate link: Download Mirror
 
(Note: if you already have the program installed, just follow the directions. No need to re-download or re-install!)
 
Double Click mbam-setup.exe to install the application.
 
(Note: if you already have the program installed, open Malwarebytes from the Start Menu or Desktop shortcut, click the Update tab, and click Check for Updates, before doing the scan as instructed below!)
 

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Full Scan", then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. If you are prompted to restart, please allow it to restart your computer. Failure to do this, will cause the infection to still be active on the computer.
Please save the log to a location you will remember.
The log is automatically saved by MBAM and can be viewed by clicking the Logs t... Read more

28 more replies
Relevance 63.96%

Hi,

This morning I woke up to find that my computer is infected with the Homeland Security Virus which wants me to pay $300 via MoneyPak within 48 hours or my computer will be confiscted and I will be prosecuted.

PLEASE PLEASE help me because I have a lot of important data on this computer. I tried logging in using safe mode, safe mode with networking but for both of them the virus screen comes up as soon as I log on so I cannot run HijackThis.

I ran Malwarebytes in administrator mode and it found 7 trojans and I removed them. Now when I log in using administrator login, the virus screen comes up there too.

Please help me!
 

More replies
Relevance 63.96%

About 2 weeks ago. Started popping up a message about installing something on the computer. Cant remember exactly what it said. I kept clicking no but it just kept coming back over and over. I got aggrevated and shut it down. I tried daily for a while before my anger got the best of me and I suppose in a clicking fit I clicked on yes. The message went away but the next day when I started windows it popped up a screen saying my computer was locked by the Homeland Security National Cyber security division and wanted me to put a moneypak number in. As soon as I put in my password the Moneypak screen pops up. Windows will not start in safe mode or with networking or command prompt. I tried using the system restore method you listed on this website. That didn't work at all. Then I tried the most useful looking method of creating a Kaspersky rescue disk. I downloaded the file and the imgburn software and created a disk. I put it in the infected computer and shut it off and back on again. The computer did the exact same thing it has been doing the entire time. I created a new disk and tried it again but had the same results. Im almost ready to throw this thing out the window. Please help
 

Answer:U.S Homeland Security Virus

Hello,

They call me TwinHeadedEagle around here, and I'll be working with you.

Before we start please read and note the following:

At the top of your post, please click on the "Watch thread" button and make sure to check Watch this thread...and receive email notifications. This will send an email to you as soon as I reply to your topic, allowing me to solve your problem faster.
Please do not install any new software during the cleaning process other than the tools I provide for you. This can hinder the cleaning process. Please do not perform System Restore or any other restore.
Instructions I give to you are very simple and made for complete beginner to follow. That's why you need to read through my instructions carefully and completely before executing them.
Please do not run any tools other than the ones I ask you to, when I ask you to. Some of these tools can be very dangerous if used improperly. Also, if you use a tool that I have not requested you use, it can cause false positives, thereby delaying the complete cleaning of your machine.

All tools we use here are completely clean and do not contain any malware. If your antivirus detects them as malicious, please disable your antivirus and then continue.
If during the process you run across anything that is not in my instructions, please stop and ask. If any tool is running too much time (few hours), please stop and inform me.
I visit forum several times at day, making sure to respond to everyon... Read more

1 more replies
Relevance 63.14%

Hi,I have tried many ways to get rid of some Malware that has only recently infected my PV. I hope someone can help me as this is my work PC and I need to plug back into my office network in a few days, but think this would be a bad idea at the moment.The problem first showed itself by insisting I had many viruses etc, and I should install Internet Security 2010. I have installed Malware Bytes removal tool, and installed as instructed. It found the above, said it was removed, but still it appears to exist, although the name of the infection has changed a few times, and is currently redirecting my brower to a similar page to the above malware. A popup now shows that I should install Cyber Security to remove the infections. This is obviously another malicious antivirus/malware program.I have McAfee Enterprise installed (which I can't seem to disable)I have also run SuperAntiSpywarePlus, which did the trick removing a similar problem about a year ago on a different PC. However, although this program also finds problems, and supposedly removes t5hem, the problem is still there.Please help. I have shown Hijackthis log below.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 1:58:42 PM, on 29/12/2009Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16945)Boot mode: NormalRunning processes:C:\windows\system32\csrss.exeC:\windows\system32\winlogon.exeC:\windows\system32\services.exeC:\windows\... Read more

Answer:Cyber Security removal; Malware removal not working

Hi,I have tried everything I know of to remove this pesky piece of malware. It seems to keep changing names, starting out as Internet Security 2010, and redirecting me on a google search to a webpage trying to convince I was riddled with viruii and malware, and then trying to sell me thier software, which is really just a scam. I ended up here after a few days of tearing my hair out, almost beaten. I went through the tutorials, but unfortunately that was before I fired off a post in desperation. Please delete my previous post, as I have now followed the suggested path, and run the utilities to help diagnose my problems. The resulting files are attached.Please help. I hope the files uploaded can provide an insight into whats happening.Apologies for jumping right in and posting a Hijackthis log before I had read the tutorials.ntents belowDDS.txt contents pasted belowDDS (Ver_09-12-01.01) - NTFSx86 Run by Greg.Middleton at 15:30:23.26 on Tue 29/12/2009Internet Explorer: 7.0.5730.13Microsoft Windows XP Professional 5.1.2600.2.1252.61.1033.18.3063.2330 [GMT 9.5:30]AV: VirusScan Enterprise + AntiSpyware Enterprise *On-access scanning enabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}AV: Microsoft Security Essentials *On-access scanning enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}============== Running Processes ===============C:\windows\system32\svchost -k DcomLaunchC:\windows\system32\svchost -k rpcssC:\windows\Syst... Read more

3 more replies
Relevance 63.14%

Hello,

If you had to choose an antivirus, which you will take between two? And why ?

Thank you and good holidays!
 

Answer:F-Secure Internet Security 2016 VS Norton Security 2016

In my opinion, Norton gives you a better protection. He has SONAR( Behavior protection), very good feature.
Fsecure uses Bitdefender engine but isn't the best AV according AV Comparatives.
Norton is light, has strong firewall, good signatures and cloud reputation + Sonar protection for zero-day threats.
 

1 more replies
Relevance 63.14%

Nasty little thing won't let me boot in safemode (just restarts).. Last known good configuration doesn't do any good.. I tried to download Kaspersky 10 on a CD but when it hits graphics version my USB mouse doesn't respond. Don't currently have the option to boot from a USB either.I was unable to run DDS and obtain any logs because of the autorun that the ransomware pop up upon logging into the computer that tells me I have to pay a fine or the maws of hell shall open and a portal to the underworld shall be unleashed from my computer.

Answer:Homeland Security ICE Ransomware! Can't boot in anything!

Can you please close this topic.

2 more replies
Relevance 63.14%
Answer:U.S. Department of Homeland Security virus

Hi and welcome to the MalwareTips.com forums!

I'm Kuttus and I am going to try to assist you with your problem. Please take note of the below:

I will start working on your malware issues, this may or may not, solve other issues you have with your machine.
The fixes are specific to your problem and should only be used for this issue on this machine!
The process is not instant. Please continue to review my answers until I tell you your machine is clear. Absence of symptoms does not mean that everything is clear.
If you don't know, stop and ask! Don't keep going on.
Please reply to this thread. Do not start a new topic.
Refrain from running self fixes as this will hinder the malware removal process.
It may prove beneficial if you print of the following instructions or save them to notepad as I post them.
Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
Before we start:
Please be aware that removing malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to nece... Read more

3 more replies
Relevance 63.14%

Had it pop up when I fired up computer. Asks for $300 fine to unlock it or prosecution possible. Gives 48 hours to pay.
I tried a Safe Mode reboot but it still is popping up when I fire up laptop. Won't let me access anything else. Only option is shut down.
Clues as to what to do to fix it.
Thanks in advance.

Answer:ICE Dept of Homeland Security Scam

Hello I moved this from XP to the Am I Infected forum.Try using the instructions in this Guide and let us know.

1 more replies
Relevance 63.14%

I need help my tablet is locked completely and I'm scared because of the homeland security page. Need help to see if it can be removed .
 

More replies
Relevance 63.14%

) -- Hackers compromised dozens of Department of Homeland Security computers, moving sensitive information to Chinese-language Web sites, congressional investigators said Monday.
Investigators pointed a finger at a government contractor, saying the firm hired to protect DHS computers tried to hide the incidents from the department.
The FBI is investigating the incidents, a congressional staffer said, and two members of Congress have asked the department's inspector general to also launch an investigation.
"The results of our [committee] investigation suggest that the department is the victim not only of cyber attacks initiated by foreign entities, but of incompetent and possibly illegal activity by the contractor charged with maintaining security on its networks," Democratic Reps. Bennie Thompson of Mississippi and James Langevin of Rhode Island said in a written statement.
The lawmakers said committee investigators found dozens of DHS computers were compromised and the incidents "were not noticed until months after the initial attacks."
The extent of the damage is unclear, but a House Homeland Security Committee staff member said the hackers "took significant amounts of information."
"We know where it [the information] was taken from, but we don't know what was taken. We only know how many megabytes was taken," the staff member said. "Everything was on the LAN A, which was an unclassified network. To the best of our knowledge ther... Read more

More replies
Relevance 63.14%

So I got this virus about a week ago.  Thought I got rid of it myself, and about a week later it popped back (so I either never got rid of it and it laid dormant OR I got it again).
 
So, what I have done so far...
 
Re-booted in Safe Mode.
 
Ran rkill
Ran Spy-bot
Ran MalwareBytes
Ran HitmanPro (not the boot-up, just normal)
Ran Avast! (which is my main virus protection)
and finally... Ran ComboFix.
 
I just want to be sure this thing is gone (I think HimManPro really got rid of it, but just to be sure).
 
Attached is my ComboFix log (this was after I ran rkill)
 

Answer:Need help removing Homeland Security Ransomware

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/502818 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

2 more replies
Relevance 63.14%

I woke up this morning to this homeland security/money pak virus and cannot remove it.....everytime I go to run adware, avg it says its a virus and has been deleted.....I cannot run hijack this as it says the same thing............can someone possibly assist me with a reset, not a system restore.......and I do not have the disk either........please and thank you for your time.....
 

More replies
Relevance 63.14%

My Win XP laptop got hit with the Homeland Security Ransomware Trojan.

Desktop is blocked by a soon as I boot up laptop so no logs & working from back up machine...

I'm open to any help...

Doug

Answer:Homeland Security Ransomware Trojan - Help!...

Hello and Welcome to TSF.

If you haven't already, please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

------------------------------------------------------

See if you can download and run the tools in Safe Mode with Networking: Restart your computer.
After hearing your computer beep once during startup, but before the Windows icon appears, start pressing the F8 key.
In some systems, this may be the F5 key.
Instead of Windows loading as normal, a menu should appear.
Use the up arrow key to highlight Safe Mode with Networking and press 'Enter'.
Login on your usual account.
------------------------------------------------------
Download dds and save it to your desktop from here or here.
Disable any script blocker, and then double-click dds to run the tool.When done, DDS will open two (2) logs: DDS.txt
Attach.txt

Save both reports to your desktop.
-----------------------------------------------------

Please include the following logs in your thread:Contents of the DDS.txt posted as text in your reply.
Attach the Attach.txt to your post by clicking the Manage Attachments button under Additonal Options>Attach Files on the composition page. Browse to where yo... Read more

19 more replies
Relevance 62.73%

hello,i was referred to your site from friends you have helped.  I appreciate in advance for your assistance.  My computer is locked by a page that looks very official  "Homeland Security" with several other federal agency seals. It states I must wire $300 to a non descript site to unlock my computer. I would then enter a code given when I wired the money and my troubless would end.  It accuses me of copywrite violations, theft and child pornography which I have not done.  I fear it is trying to scare me into paying.  When I spoke with an IT person they told me it sounds like an FBI virus.  Help!  Should I just take it to my IT department?  I am embarassed to be honest. P.S. I was looking at utube videos.Edit: Moved topic from Windows 7 to the more appropriate forum.~ Animal

Answer:homeland security virus locked up my computer

Hello, 
 
This is a form of malware known as ransomware, and has been around for sometime.
 

Should I just take it to my IT department?

If this is a business machine, then yes, that would be the best course of action. 
 
If not, and this is a personal machine, please tell me the Operating System. 

8 more replies
Relevance 62.73%

From USA Today:Homeland Security is advising Americans not to use the IE browser until a fix is found for a serious security flaw.Windows XP, no longer supported by Microsoft, will not likely receive a patch if and/or when one becomes available.Users of all operating systems including Windows XP, should immediately *consider* switching to an alternate browser, (listed alphabetically, no preference given):*Chrome, by Google (http://google.com/chrome)*Firefox, by Mozilla (http://firefox.com)*Opera (http://opera.com)http://sdfox7.com

Answer:USA Today: Homeland Security: Don't Use Internet Explorer

Wow, MS have become really bad at playing their cards. Dumping XP when the latest alternative (Win 8) has been seen as bad news by so many - not brilliant.The dubiously named update to Win 8.1 (let's call it 8.1.1) has noticeably speeded up my PC and it was already fast before this. Not sure whether the re-emergence of the Start Menu (mooted for August or soon afterwards) might turn out to be too late for a system that has now gotten itself a bad name. Pity because Win 8.1 with the latest update is IMO a very good system.Always pop back and let us know the outcome - thanks

16 more replies
Relevance 62.73%

Hello,
My HP envy laptop is taken over by the Homeland security virus. I tried the Hitman kickstart pro. But it is not helping.
Can anybody tell me how to get rid of this malware please?

Answer:My HP envy laptop is taken over by the Homeland security virus.

Hello, and Welcome
 
You can  Contact HitmanPro Support and they will try to help you out.
 
If you still cannot get Hitman Pro to work, download Kaspersky Rescue Disk. Burn the iso file by double clicking it. Boot the disk and use the Windows Unlocker Option before doing a scan. If you connect via an Ethernet cable, you will be able to update the virus definitions before doing a scan.
 
Follow the steps here

2 more replies
Relevance 62.73%

The Department of Homeland Security has just issued a warning about security flaws in the latest version of Java. Homeland Security strongly suggests that Java be disabled. To all my friends at the Forum, I suggest that you heed this important advice. Java is required on a very few websites, most of us will not even miss it, I know that I don't

Answer:More Warnings About Java--This Time From Homeland Security

Is this forum the best place to get the most recent update as to when a fix is available? With Java disabled it will not seek a automatic update.

11 more replies
Relevance 62.73%

Mod Edit:  Moved from Am I Infected to Malware Removal Logs - Hamluis.
 
I have a reply to another topic posted - entry 3177203 - "Hitman Pro will not boot". I followed the following information:
"Please follow the instructions in ==>This Guide<==.
Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.
If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.
Once you have created the new topic, please reply back here with a link to the new topic."
 
This virus is, however, not allowing me any access to my pc for logging of anything
 
Also, I finally got the program Hitman Pro to run...however....I have a computer on a business network. Hitman Pro will not allow a free 30 day trial on a domain.
 
Should I purhcase hitman pro business license?
Is that the proper way to get rid of this?
If so, where do I verify that I am getting the correct program? I want to make sure the site is valid.

Answer:Homeland Security on business pc-hitman pro won't work

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/510239 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

2 more replies
Relevance 62.73%

Hello guys.
I was referred to your site from my friends you have helped. I appreciate in advance for your assistance.
My computer is locked by "Homeland Security " virus. Please , help me to rid of it.
 
I have a Windows 7 operating sistem.
 Unfortunately Iam not able to burn a CD at this time. I do have access to clean PC and flashdrive.
 

Answer:homeland security virus locked up my computer

Hi there,access to a clean PC and a flashdrive is enough:On a clean machine, please download Farbar Recovery Scan Tool and save it to a flash drive.Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.Plug the flashdrive into the infected PC.If you are using Windows 8 consult How to use the Windows 8 System Recovery Environment Command Prompt to enter System Recovery Command prompt.If you are using Vista or Windows 7 enter System Recovery Options.To enter System Recovery Options from the Advanced Boot Options:Restart the computer.As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.Use the arrow keys to select the Repair your computer menu item.Select US as the keyboard language settings, and then click Next.Select the operating system you want to repair, and then click Next.Select your user account an click Next.Note: In case you can not enter System Recovery Options by using F8 method, you can use Windows installation disc, or make a repair disc. Any Windows installation disc or a repair disc made on another computer can be used.To make a repair disk on Windows 7 consult: http://www.sevenforums.com/tutorials/2083-system-repair-disc-create.htmlTo enter System Recovery Options by using Windows installation disc:Insert the installation disc.Restart your comput... Read more

7 more replies
Relevance 62.73%

My husband has had the "joy" of coming across this thing twice! Once on IE a few months ago and now just yesterday on Firefox. I'm the computer geek so fixing it falls to me. I'm at a loss!
 
Each time the popup as appeared I've used ctrl+alt+del to shut down the internet so the computer wouldn't freeze (the only thing I could think to do really) and then ran a virus scan with McAfee. Nothing was found both times.
 
When we had Norton Internet Security this never came up to my knowledge or it was blocked right away if it did.
 
I want to make sure it's not lurking around the harddrive somewhere, my knowledge of computers only goes so far. I've run hijackthis and am including the results as an attachment.
 
Thanks in advance for any help.
 
Edit: Not a bump!
 
In case it matters I'm also including a hijackthis log run from his user account alone, The first one was set to Run as Admininstrator; so it may not show all that needs to be seen from his files.

Answer:possible infection with homeland security ransomware on IE and Firefox

Hi & to Bleeping Computer Forums!My name is Jürgen and I will be assisting you with your Malware related problems. Before we move on, please read the following points carefully: My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.Perform everything in the correct order. Sometimes one step requires the previous one.If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.If I don't reply within 24 hours please PM me!Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.Step 1Please run a FRST scan. This will help us diagnose your problem.Please download Farbar Recovery... Read more

20 more replies
Relevance 62.73%

I was browsing the internet when this virus popped up and started to ruin my day.  It was conning me into paying $300 using Moneypak or face prosecution, yada yada.  I performed a system restore and was able to get this system back to somewhat operational.  Should of seen something like this coming...  Had my email account send out random scam stuff the other week to people in my address book and my wife had the same issue a few days prior.  My VISA had fradualent charges on it a few months back.  Internet browsing with internet explorer and firefox has also been stubborn recently with frequent crashes and unresponsiveness.  I'm running Malwarebytes and Mc Afee with all updates and neither have picked up on anything.  To say the least I suspect that I'm still infected with some sort of virus

Answer:Homeland Security ransom ware virus

Hello Kneecromancer I would like to welcome you to the Malware Removal section of the forum.Around here they call me Gringo and I will be glad to help you with your malware problems.Very Important --> Please read this post completely, I have spent my time to put together somethings for you to keep in mind while I am helping you to make things go easier, faster and smoother for both of us!Please do not run any tools unless instructed to do so.We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the s... Read more

16 more replies
Relevance 61.91%

I used the bootable AV USB Hitman Pro to remove the Homeland Security Ransomware from my Acer aspire 5733Z Laptop. Now my network get stucks with the never ending spinner and an 'Identifying' status. The ipconfig says I have a 169.254 address and no default gateway. My ancillary function driver for winsock, and the HTTP drivers had exclamation points and a notice that said they were partially missing or corrupt. I uninstalled and restarted and now they seem to be gone from the device manager altogether. I have tried running sfc /scannow, I've tried the chkdsk /r, i've tried all the /refresh /renew cmd prompts I could find as well; to no avail. Nothing seems to be correcting the issue. I even set a static ip that did nothing, same response of identifying. I have had some help from other members on here and they've sent me to this forum so now i'm attaching the dds logs as instructed. Hopefully kind soul can help me resolve this! thank you. 
dds: 
 
DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 10.0.9200.16720  BrowserJavaVersion: 10.6.2
Run by Shawnn at 16:36:27 on 2013-11-30
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.3767.2710 [GMT -5:00]
.
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k ... Read more

Answer:Homeland Security Ransomware Removed but No Network Access

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Download this tool using a good computer and copy the file to the Desktop of the problem computer.Please download MiniToolBox to Desktop and run it.Check mark the following boxes:Flush DNSReport IE Proxy SettingsReset IE Proxy SettingsReport FF Proxy SettingsReset FF Proxy SettingsList last 10 Event Viewer logList content of HostsList IP ConfigurationList Winsock EntriesClick Go and copy/paste the log (Result.txt) into your next post.Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

15 more replies
Relevance 61.91%

I work as an IT Tech, and I am seeing more and more FBI/Homeland Security viruses on client PCs. To my knowledge, those viruses work as a trojan horse, seeming like a harmless image file, but hidden is the virus. Once that file is opened, it starts the virus.
My question is, if Hitman Pro is installed prior to any attack from these viruses, will it stop it before it activates and locks the PC?
I am really on the search for a viable solution to this problem, so clients will not even know the virus has hit them. Currently, we are doing as needed removal. Thanks in advance!

Answer:Can hitman pro stop the FBI/Homeland Security virus before it runs?

HitmanPro is considered a second opinion malware scanner by the developer and is able to remove what is detected after obtaining a 30 day license.HitmanPro offers you a Free Scan for a second opinion. It is designed to check if your security measures work. If nothing is found (and we sincerely hope so), then you will never need a license. When a virus is found, then you will receive a free 30-day license to remove the threat.HitmanProHitmanPro.Kickstart is an alternative to a typical Rescue CD for removing Ransomeware. It is designed to start from a USB flash drive so it does not need to be installed on your hard drive. You do not need to logon to Windows. HitmanPro.Kickstart will start automatically after a few seconds on the logon screen when Windows wants you to enter the logon information.HitmanPro 3.7 with KickstartHow to Create HitmanPro.Kickstart USB flash driveHitmanPro.Kickstart User Manual HitmanPro.Kickstart FAQsBC Ransoneware Removal Guide using HitmanPro to create a HitmanPro kickstart USB drive

6 more replies
Relevance 61.91%

Hello, I'm a computer tech, and a customer has a computer that was infected with the Dept of Homeland Security type of ransomware virus. I have since removed the virus, but while I was on site at their location, they were showing me the problem. I see these viruses all day every day, so it was nothing really new for me, until, the spot that normally activates a webcam connected to the computer, was actually streaming a surveillance feed from a surveillance system there at their location. First thing I thought was, it's hacking in to the feed through the internet, assuming they had their surveillance system set up for IP viewing, but they don't. There is no connection directly connected or even a shared connection of any type between the surveillance system, and the computer with the virus, except for the fact that they both share electrical power from, I'm assuming, the same outlet.

I have never seen anything like this, and I've been doing this a long time. How is it possible that it is pulling a live feed from their surveillance system, when they are two completely separate units that have no ties together what so ever, except power? I'm really baffled by this and the customer is very upset about this, because this feed needs to be very secure. I have removed the virus so now their priority has turned in to securing their, obviously unsecure, surveillance feed. What can I check on to rule out what is causing this? I'm really blown away by this.. It's really... Read more

Answer:Homeland Security Ransomware hacked surveillance system??

Also wanted to add a side note, when it's loading the camera picture, there's at least a 10-20 second delay before it pulls the picture. Two examples... When you turn the computer on, and the virus loads up, there's a black box where the camera feed will eventually be. It stays black/blank for the 10-20 seconds, then it loads the picture that is being displayed on the surveillance system monitor. We played around with it to try to figure it out a little more, and found that if you change the surveillance system to a different camera, the surveillance system of course works as normal and immediately changes the picture, but after the 10-20 seconds on the virus window, it will then change the picture there too, to whatever you changed it to on the surveillance system. There's about a 10-20 second delay. It's just so so weird...

2 more replies
Relevance 61.91%

Hi!

My computer has been infected by the homeland security virus. There is a screen that comes up which asks me to pay $300 within 48 hours or my computer will be confiscated and I will be prosecuted criminally.

Please help me remove this virus!

Thanks!
N

Answer:Homeland Security Ransomeware virus on my computer. Please Help me remove it!

Hi there!

First of all: Do not pay!
Second: Please tell us which version of windows you have in order to provide you suitable instructions.

Thank you.

19 more replies
Relevance 61.09%

Government Security News is pleased to announce the Winners and Finalists in its seventh annual Homeland Security Awards. As in previous years, the awards program was divided into three basic categories: Best Vendors of IT Security Products and Solutions; Best Vendors of Physical Security Products and Solutions, and acknowledgement of the Most Notable Programs, Projects and Initiatives of Federal, State, County and Municipal Government Agencies and Departments.

read more...Click to expand...

GSN announces Winners and Finalists In 2015 Homeland Security Awards | Government Security News

this is not some fancy amateur awards, they do it for government-grade softwares & applications.

and guess who are the best:



Best Anti-Malware Platform
Blue Ridge Networks -- Winner (aka Appguard)
Cylance -- Finalist
Malwarebytes -- Finalist
Click to expand...

no Kaspersky, symantec, Panda, Comodo and other "claim-to-be-the-best" vendors...
 

Answer:GSN announces Winners and Finalists In 2015 Homeland Security Awards

Wow malwarebytes, thats really interesting to see.
 

2 more replies
Relevance 61.09%

Aug. 11, 2006 &#8212; The Department of Homeland Security released a statement Wednesday advising Windows PC owners across the nation to update their computers or face a potential attack from hackers.

http://abcnews.go.com/Technology/story?id=2303485&page=1

Security Patch + More info from Microsoft
 

More replies
Relevance 61.09%

So I wanted to start a thread here with some helpful and relevant information on how to remove the Homeland Security ransomware virus (aka Cryptor) without needing safe mode or command prompt.  Took me a day and a half to remove the virus but I was able to do it without resorting to system restore and possibly losing data - this is how...

A friend was having some serious problems and brought me their computer...
 
Dell Vostro 200
Windows XP Pro SP3
 
 
I knew I had a fight ahead of me because I had seen this ransomware before - only this one was particularly nasty.
 
You typically will boot up, then after your computer logs in to windows you will see a screen that locks you out of everything else.
 
The image typically sais either "ICE" or "Homeland Security", something like that.
 
The program typically sais you've done something illegal and to fix it you must pay a 300 dollar fine through something called "Moneypak".  In actuality it is a virus.  Do not send any money to anyone!
 
This particular virus prevented me from loading safe mode, safe mode with networking, safe mode with command prompt, nothing would work.  After trying to load safe mode it would boot up, then immediately shut down and reboot in regular mode - which inevitably displays the image demanding money which locks you out of everything.
 
At one point in trying to load safe mode it rebooted and the virus crashed while windows was loading.... Read more

More replies
Relevance 60.68%

I understand its Free vs Paid product comparision but anyway
 

Answer:F-Secure Internet Security 2016 vs Panda Free Antivirus 2016

If a security soft ranks amongst the top performing AVs, it won't matter much if it does function correctly or causes problems on your specific system.

From lab test results F-Secure has an edge over Panda during testing the past few years in terms of detection (although higher false positives).

From users, it seems more prefer Panda - which is one of Neil Rubenking's (PCMag) favs (that don't mean much - but that is just my opinion).

I'd say, in terms of overall protection, Panda has a slight edge; it might protect your system in a few instances that F-Secure will not.
 

2 more replies
Relevance 60.27%

Hello Everyone @ Malwaretips!

Topic: Windows 8 Web Base E-mails Accounts with Emsisoft Anti-Malware Security!

For some reason within my Web Base E-mail Accounts. For example, Hotmail!When, I compose a an E-mail and cut and paste a link it become disable and/or dead link. So, when my friend received the link within his Hotmail Web Base E-mail it is disable and/or a dead link. Can anyone tell me how to able the link within my E-mail Accounts? Or Fix this headache?
Many many thanks!
 

Answer:A bug with Emsisoft Anti Malware Security?

Moose,

I don't think this issue is related to Emsisoft Anti-Malware. Emsisoft Anti-Malware will only block links if they're listed in the Host Rules. It would not disable links.
 

10 more replies
Relevance 60.27%

I have recently upgraded my laptop from Vista to Windows 7 to Windows 10.

I currently use 360 Total security (free version) and my anti-virus software.

In the light of the recent cyber attacks I wonder if i could also install Bitdefender or similar to run alongside 360 Total Security to protect against malware and ransom ware attacks.

Would appreciate any advice on suitable FREE software I could use, if that's possible
 

More replies
Relevance 59.86%

In-depth article in Information Age:

Security and privacy: necessary for the next generation of vehicle

????Blue Planet-works | Safety for the Connected World

TRUSTICA Technology | Blue Planet Works
 

More replies
Relevance 59.45%

Additional question: Can i run both
 

Answer:Emsisoft Anti-Malware vs Crystal Security

CS is free, lighter than EAM (EAM is also light) but lacks of BB.
EAM works well when offline while CS requires network to fully function.
Both are effective, easily to use and configure and lack of firewall (can be implemented with other free third-party ones).

Overall winner goes to EAM. You can use both since CS is designed to be used as a companion layer.
 

1 more replies
Relevance 59.45%

Hey guys,

I've been posting a lot today. Sorry if it's too much, let me know if I need to chill. I've started this thread to discuss software tools for security and regular computer maintenance. I'm running Windows 7, currently the software I'm using to try keeping my machine running efficiently and malware free is: Malwarebytes for virus and registry scanning, AVG LinkScanner only for browsing, and CCleaner for cleanup here and there with the occasional defrag through windows. I'm sure I'm probably missing something I should implement or use something different. Also I'm curious about the recommended frequency that these different tools should be run.

Answer:Security and Anti-Malware Software Combinations

im still using bitdefender av free ed. based off a 2013 av report. I was surprised to see a report in 2014 saying free AVG is back to being the best free av.

The Best Antivirus for 2014 | PCMag.com
AVG AntiVirus FREE 2014 is our current Editors' Choice for free antivirus. It shares the top score in my hands-on malware blocking test with four others, among them Avira Free AntiVirus (2014) and FortiClient 5.0 (also free).


I also have super antispyware loaded for manual malware scans.

I don't run as admin, but use admin password when its required. uac prompts me for input.

i avoid bad places on the internet. I uncheck any ad / spy / mal ware when installing software.

i use incognito mode when feeling frisky.

this usually keeps me safe


edit - also update windows, java, adobe flash, and adobe reader regularly

8 more replies
Relevance 59.45%

At the moment I have Microsoft security essentials as my security program on my windows 7 64 bit laptop, plus a free McAfee free scan. I read that one should not have too many anti virus programs but should I have a anti-malware program as well as those mentioned above?. If so, can you advise
what anti malware program is best on the free-be section. Thank You.

Answer:security programs versus anti malware.

Malwarebytes is compatible with MSE so try the free version

6 more replies
Relevance 58.63%

A recently disclosed vulnerability in Malwarebytes Anti-Malware (free, premium and enterprise) allows attackers to run man in the middle attacks against systems running the software.

Malwarebytes Anti-Malware is a popular second-opinion scanner, and the premium and enterprise editions of the program add real-time protection among other things to it which bring it more in line with traditional antivirus solutions.

The program is held in high regard by many for its malware detection and cleaning capabilities.

Google researcher Tavis Ormandy alerted Malwarebytes in early November 2015 to several security vulnerabilities that he found in Malwarebytes Anti-Malware.

Malwarebytes managed to patch several of these vulnerabilities server-side "within days", and is testing a new version of the client software internally which it plans to release in the next three to four weeks that patch the issue on the client side as well.

Ormandy discovered that the software fetches signature updates over http. While the data is encrypted, he discovered that it is easy enough for anyone to decrypt it using OpenSSL commands.

MalwareBytes fetches their signature updates over HTTP, permitting a man in the middle attack. The protocol involves downloading YAML files over HTTP for each update from http://data-cdn.mbamupdates.com. Although the YAML files include an MD5 checksum, as it's served over HTTP and not signed, an attacker can simply replace it.

Attackers have various option... Read more

Answer:Security Issues in Malwarebytes Anti-Malware disclosed

Did it already.



Av Gurus said:





Malwarebytes confirmed the vulnerability publicly in a recent blog post revealing that it is working on a fix. The company announced the launch of the Malwarebytes Bug Bounty program offering cash bug bounties of up to $1000 for reported issues in the application.Click to expand...

wow that awesome!!
 

0 more replies
Relevance 58.63%

My EAM license expired in 1 month and now i'm looking for an alternative.
My isp offers me norton for free and now i am thinking about to renew my eam license or take the free norton license.

How do you see this, how strong is norton in comparison?
 

Answer:Emsisoft Anti-Malware or Norton Internet-Security

in terms of Privacy: 100% Emsisoft is the winner
in terms of Protection: they are equal i assure you.
in terms of Support: none of them have your back in Urgent Situations ( Norton maybe )
 

49 more replies
Relevance 58.63%

I have eset smart security on ,my pc, i am thinking about using Emsisoft antimalware which was previously called a-squared Anti-Malware.I wanted to know whether both can be run simultaneously .
 

Answer:can i use eset smart security with Emsisoft Anti-Malware

14 more replies
Relevance 58.63%

This may seem like a simple question, but can you use ESET Smart Security 8 and Emsisoft Anti-Malware at the same time or are they contraindicated (2 real-time AV's at once). It appears that EAM is the equivalent of an antivirus without the firewall, but I could also perceive it being an addition to your current Security suite (such as Webroot or HitmanPro).

I am a bit unclear on EAM despite looking at their site and Google. I also searched the forums before I posted this.
 

Answer:Can I use ESET Smart Security 8 and Emsisoft Anti-Malware together?

Yes, you can. Emsisoft Anti-Malware provides both AV & AM protection, and is compatible with all AVs currently known on the market.
 

16 more replies
Relevance 58.63%

I have a relatives pc im working on. He was browsing a Harley Davidson website and got hit with this malware. Any help appreciated The process running is called AV.exe both dds logs are in that zip

DDS (Ver_09-12-01.01) - NTFSx86
Run by HP_Owner at 19:59:15.18 on Mon 02/08/2010
Internet Explorer: 7.0.5730.11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.959.590 [GMT -6:00]

AV: Norton 360 *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton 360 *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Documents and Settings\HP_Owner\Local Settings\Application Data\av.exe
C:\Program Files\Norton 360\Engine\3.8.0.41\ccSvcHst.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe ... Read more

Answer:[SOLVED] Xp internet security fake anti malware app

I think i got it with combo fix

1 more replies
Relevance 58.63%

I got the Security Tool virus, and following the steps on this link:http://www.bleepingcomputer.com/virus-remo...e-security-toolI'm on step twelve, and when I click on the Malwarebytes' Anti Malware program I just installed, nothing happens. (I'm in Safe Mode right now, so there is no Security Tool).Why won't it open? The pointer just turns into an hourglass for a split second, then nothing happens...If I run the computer in normal mode, Security Tool won't let me open Rkill, which won't let me get passed step 5.???I have no clue what to do? I'm double clicking on the red "M" icon that read "mbam", but nothing happens :/

Answer:Getting rid of Security Tool, how to open Malwarebytes' Anti Malware?

Hello, Savica.My name is aommaster and I will be helping you with your log.I apologize for the delay in response we get overwhelmed at times but we are trying our best to keep up.If you have since resolved the original problem you were having, I would appreciate you letting us know. If not please perform the following below so I can have a look at the current condition of your machine.ThanksShould you still require assistance, please take note of the points below:Please track this topic by either adding it to your favourites or clicking the Options button at the top of this thread and then Track this topic.Please disable word-wrap before posting logs. This can be done by clicking Format and un-ticking the word-wrap feature in notepad. The logs that you post should be copied and pasted directly into the reply. Only attach them if requested or if they do not fit into the post.If you do not reply within 5 days, I will have to close your topic. Should you not be able to meet this, please notify me so that I will leave the topic open.Please do not install, update, or run any programs for the duration of the fix.If you do not understand the instructions I provide, please don't hesitate to ask. That's what I'm here for Please continue to reply to this topic until I give you the all clean. Just because there are no symptoms of infection doesn't mean that the computer is clean.If you are running Vista, please run all the fixes as an administrator. This is done by righ... Read more

3 more replies
Relevance 58.63%

which is the Best Anti-Malware scanner along with KIS 2015?
 

Answer:Best Anti- Malware along with Kaspersy Internet Security 2015

Ajay123 said:





which is the Best Anti-Malware scanner along with KIS 2015?Click to expand...

Malwarebytes free as a on demand scanner would be a good choice..
https://www.malwarebytes.org/
 

17 more replies
Relevance 58.63%

hello i have been having problems with malware doctor and the like, it happened because i needed to download a pdf to doc converter to print and many of them are filled with spywares and such.do you want an hijackthis log? i followed some of the other thread, but i cant downlaod combofix for some reason because of the constant redirection, while doing hijackthis i removed the most obvious one but left the others there.here's the hijackthis logLogfile of Trend Micro HijackThis v2.0.4Scan saved at 10:37:05 PM, on 8/30/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16827)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Avira\AntiVir Desktop\sched.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Google\Update\GoogleUpdate.exeC:\Program Files\Google\Update\1.2.183.29\GoogleCrashHandler.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files\D-Link\Wireless G WDA-1320\AirGCFG.exeC:\Program Files\Winamp\winampa.exeC:\Program Files\Trillian\trillian.exeC:\WINDOWS\explorer.exeC:\WINDOWS\system32\notepad.exeC:\WINDOWS\system32\rundll32.exeC:\WINDOWS\system32\wuauclt.exeC:\WINDOWS\system32\rundll32.exeC:\Progra... Read more

Answer:anti-malware doctor problem and security tools

As this issue appears to be resolved I am closing the topic. Please send me (or any other Moderator) a Personal Message (PM) if you would like the topic re-opened.

1 more replies
Relevance 58.63%

This update will require an application restart.
Fixed: Occasional issue where behavior blocker alerted on a trusted program behavior.
Fixed: Occasional crashes related to: TUpdatesGUIHandler.LoadLocale?, ?TUpdatesGUIHandler.LoadLocale?, ?TRegistryProxy.CheckoutJournal?.
Fixed: Occasional issue where the license dialog was blocked by a firewall alert in Emsisoft Internet Security.
SOURCE: Beta updates ? 2015-12-29 - Changelogs
 

More replies
Relevance 58.63%

Emsisoft Anti-Malware & Emsisoft Internet Security 11.6.0.6267 released
Emsisoft Anti-Malware & Emsisoft Internet Security 11.6.0.6267 released. This is a maintenance release for improved compatibility, usability, speed, detection and stability.

This update will require an application restart.

Improved: Emsisoft Security Center startup speed.
Improved: Restore process of false positives after a Quarantine Re-scan.
Improved: Stability of import hosts file in Surf Protection.
Improved: A2CMD now processes ?/?? and ?/help? even if no valid key installed.
Improved: A2CMD now processes ?/k? and ?/u? combination in one commandline.
Improved: A2CMD /? wording.
Improved: Malware removal on reboot.
Fixed: Surfprotection now doesn?t show alert in Game mode.
Fixed: A silent scheduled scan now doesn?t open Emsisoft Security Center.
Fixed: Occasional crash ?TEmsiEdit.SetBounds?.
Fixed: Update percentage indicator in the tray icon hint.

 

More replies
Relevance 58.22%

hi

i want chang my internet security please help me

now bitdefender 2016 but very heavy

thanks
 

Answer:Kaspersky 2016 Vs Eset Smart Security 9 Vs Emsisoft internet Security 11 Vs Avira intent Security

If you come from Bitdefender then I would recommend you KIS2016, quite light; very effective. ESET is also a good option, Emsisoft same stuff. If you like smooth and less interactive protection ESET and Kaspersky would be better, Emsisoft is cool but a bit more interactive IMO.
 

6 more replies
Relevance 58.22%

Hello everyone!
I decided to give Emsisoft a try.

I am just a bit confused.
Should I go for the internet security or should I go for the antimalware + online armor?

I would like to have a good hips, that I can compare to comodo.
 

Answer:Emsisoft internet security or Anti-Malware + Online Armor

Emsisoft internet Security have no hips module, its not needed because the topnotch bb. When u want hips u can use antimalware with online armor. But online armor have not the same firewall as intenet security. it becomes outdated.
 

8 more replies
Relevance 58.22%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4668 released. This is maintenance release for improved usability, speed, detection and stability.

Fixed an occasional Eurekalog crash.
Fixed a memory corruption issue.
Fixed ?cannot connect to service? issue.
Fixed a disappeared icon in the notification area.
Fixed some issues with scheduled scans.
Fixed a permissions/password related issue.
Fixed an occasional issue where actions were being denied by the behavior blocker although they were explicitly allowed.
Fixed a memory corruption issue in a2cmd.
Fixed an issue in Windows Safe mode.
Improved signatures download speed during installation.
Improved surfprotection notifications and handling.
Improved Updating mechanism.
Improved Surfprotection for windows XP.
Improved icon ?last update? information.
Improved WSC integration on vista.
Improved a2cmd /L parameter parsing and related folder creation.
Improved a2cmd /wl and /q parameter parsing.
Stability improvements.
GUI enhancements.
Source
 

More replies
Relevance 58.22%

Emsisoft Anti-Malware & Emsisoft Internet Security 2017.5.0.7538 released. This release includes fixes, enhancements and stability improvements.

This update will require an application restart.
New: Anti-Ransomware component on Protection tile on overview screen.
New: Scan setting: ?Scan in email data files?.
Improved: Reduction of false positives.
Improved: Upload of attachments when contacting customer support.
Improved: Main program windows position when the program opens outside of the visible desktop.
Improved: Quarantine screen refresh when Emsisoft Commandline Scanner or Emsisoft Enterprise Console restores files from, moves files to, or deletes files from quarantine.
Improved: Additional warning before deleting or moving scanner detections, found inside of archives, to quarantine.
Improved: More clear default folder names for export- and scan settings.
Improved: USB insertion detection which did not start the scheduled scan on some computer systems.
Improved: Processing of the installer command line parameters related to customer care settings (URL verification).
Fixed: Occasional crash with Microsoft Word.
Fixed: Crash when importing a very large hosts list in Surf Protection.
Fixed: Address column values in the Firewall screen in Emsisoft Internet Security.
Fixed: Occasional issue wherein the Behavior Blocker monitor showed processes with an unknown reputation.

 

More replies
Relevance 58.22%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4985 released. This is a maintenance release for improved usability, speed, detection and stability.

? Update to 9.0.0.4985 requires a computer reboot.

New Emsisoft Protection Platform implementation.
New notification with scan statistics after boot, if PC was shutdown by ?Shutdown computer on scan completion?.
New scheduled scans button on scan dialog.
New context menu for application rules dialog.
Improved Behavior Blocker digital signature check on computer startup.
Improved update process.
Improved Automatic Update scheduler.
Improved logging details for Behavior Blocker/File Guard/Surf Protection.
Improved automatic refreshing of logs.
Improved ?Restore? and ?Save copy? from Quarantine now shows a dialog asking if you want to add the file to white-list.
Improved Restore from Quarantine now shows a dialog asking if you want to overwrite an existing file.
Improved Whitelist grid keyboard navigation.
Improved Installation Wizard now requires a reboot at the last step instead of after scan (when malware has been found)
Improved Installation Wizard now shows an error message when the service cannot be installed.
Improved support for TLS for Email notifications.
Improved loading of hosts file in Protection/Surf Protection.
Improved stability and GUI enhancements.
Fixed a possible install wizard hang after entering an incorrect license key.
Fixed an occasional issue where ?Application changed alert?... Read more

Answer:Emsisoft Anti-Malware & Internet Security 9.0.0.4985 released

What do they mean with this?:

New Emsisoft Protection Platform implementation.

 

19 more replies
Relevance 58.22%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.4799 released. This is maintenance release for improved usability, speed, detection and stability.

Improved GUI loading speed for other than en-us languages.
Improved license renewal behavior.
Improved functionality for all grid columns (auto-width, sorting).
Improved Behavior Blocker logging for application rules.
Improved behavior for Alert windows: no focused default button to avoid accidental confirmations.
Improved functionality for the Quarantine submission form (added ?Back? button?).
Improved column header sort indicators for all grids.
Improved functionality for detections from scan results: manual addition to the white list as ?file?.
Improved ?Add file? button on quarantine page now allows to add multiple files.
Improved stability and GUI enhancements.
Fixed a possible memory corruption.
Fixed an issue causing an ?SQLLite 5? error.
Fixed an issue with multiple confirmations in the factory defaults feature.
Emsisoft Internet Security:
additionally :

Improved Installer checks on required Microsoft patches and existence of Virtual Box.
Improved Firewall logging for application rules.
Improved Firewall application rule?s additions. (automatic).
Improved Firewall performance and stability.
Fixed a network blocking issue during raised Firewall Alert.
Fixed an issue where addition of a CIDR network rule caused a lockup.
Fixed a network shares being blocked issue.
Source

Emsisoft Internet ... Read more

Answer:Emsisoft Anti-Malware & Internet Security 9.0.0.4799 released

Seems very good and interesting.
 

11 more replies
Relevance 58.22%

Hi all!
 
After having reinstalled my OS (MS Win 10 Pro 64-bit) in conjunction with the AU, I am once again searching my computer with many Anti-Malware tools in order to subsequently clean it for malware, given that each tool has its own database and as such may pick up some malware which another will miss.
 
And meanwhile I stumbled upon Norton Security Scan, and hence, my question is:
 
What is your opinion on the Anti-Malware tool Norton Security Scan?
 
Thank you very much in advance!
 
Regards,
midimusicman79

More replies
Relevance 58.22%

http://translate.google.de/translate?hl=de&sl=de&tl=en&u=http%3A%2F%2Fwww.avira.com%2Fde%2Fpress-details%2Fnid%2F691%2Fnews%2Fkingsoft-integrates-avira
 

Answer:Kingsoft Internet Security anti-malware technology from Avira

I have a bad experince with it,when i uninstall it ,it can't remove properly kaspersky shows kingsoft exit finally i formet my pc
 

1 more replies
Relevance 58.22%

Hi I was wondering if Heimdal PRO is compatible with Emsisoft Anti-Malware? because I thought the behavior blockers might conflict with each other.

Thanks, Andrew
 

Answer:Internet Security Heimdal PRO compatible with Emsisoft Anti-Malware?

Heimdal PRO is not a standalone anti-malware program. It's thought as an additional layer of protection, so it shouldn't give any conflicts between these two programs.
 

3 more replies
Relevance 58.22%

Emsisoft Anti-Malware & Emsisoft Internet Security 9.0.0.5066 released. This is a maintenance release for improved usability, speed, detection and stability.

Note: Update to 9.0.0.5066 requires a computer reboot.

Improved: Occasional crash or guards not loading.
Improved: Occasional delays during system boot.
Fixed: Settings button on malware alert notification.
Fixed: Out of resources error.
Source
 

Answer:Emsisoft Anti-Malware & Internet Security 9.0.0.5066 released

yea they are really improve it!
ram usage on my system : 85-137mg(from 200mg)
boot time increaced from 2 min to 1:24 !


 

12 more replies
Relevance 58.22%

This update will require an application restart.
Fixed: Occasional issue where behavior blocker alerted on a trusted program behavior.
Fixed: Occasional crashes related to: TUpdatesGUIHandler.LoadLocale?, ?TUpdatesGUIHandler.LoadLocale?, ?TRegistryProxy.CheckoutJournal?.
Fixed: Occasional issue where the license dialog was blocked by a firewall alert in Emsisoft Internet Security.
SOURCE: Beta updates ? 2015-12-29 - Changelogs
 

More replies
Relevance 58.22%

hello guys i'm new here i see this websites many times when i was searching on Google so today i joined .

i have only one question i use avast internet security malwarebytes antimalware pro superantispyware pro and peerblock i am safe or i need anything else?
 

Answer:Security software (Avast IS + Malwarebytes Anti-Malware Pro + SAS Pro + Peerblock)

1. SuperAntiSpyware isn't needed as Malwarebytes is better overall.
2. Avast isn't that great, but malwarebytes will help you with that.
3. Peerblocks bad IPs from connecting to you.

It looks pretty good to me though.
 

49 more replies
Relevance 58.22%

Hi all!
 
After having reinstalled my OS (MS Win 10 Pro 64-bit) in conjunction with the AU, I am once again searching my computer with many Anti-Malware tools in order to subsequently clean it for malware, given that each tool has its own database and as such may pick up some malware which another will miss.
 
And meanwhile I stumbled upon Norton Security Scan, and hence, my question is:
 
What is your opinion on the Anti-Malware tool Norton Security Scan?
 
Thank you very much in advance!
 
Regards,
midimusicman79

Answer:What is your opinion on the Anti-Malware tool Norton Security Scan?

It doesn't remove any malware...it only checks for malware and other security software. Norton Security Scan is a software tool designed to help you understand if your computer is currently protected from known threats. Norton Security Scan performs a scan of your computer and displays if there are existing viruses, worms, spyware, unwanted adware, or Trojans residing on your computer. Norton Security Scan is used to check how protected your computer is currently...Norton Security Scan will check to see what security software is on your computer. It will not conflict with other security software that is installed.Norton Security Scan FAQsMajor software vendors like Adobe, Java and others have been bundling third-party software and utilities like this from McAfee and Norton in their download packages which allows users to perform a system checkup of their computers. Not everyone is happy about it.

8 more replies
Relevance 58.22%

I have both of these programs installed in my computer. I understood that both are well recommended here on this site, at least they have been to me. However, I found out yesterday (8/20) that both scan my computer differently. To give you an example and pose my question, let me explain what I mean:--Recently I got into watching free "youtube" movies, many time in fact, daily. While doing my routine scan of my computer I started with Microsoft Security Essentials which told me that I had no suspected or infections on my computer. Because I have learned that this Security scan is a very quick and unconvincing, as it only shows "no malicious infections found" as it ends its scan, I decided to do another immediately, using Malwarebyts. Wow!! I found almost twenty infections on my computer, mostly, as far as I could tell, malware. As you probably know, I could have all those infections removed by simply marking all for removal and rebooting...Because it is obvious to me that Security Essentials is sleeping on the job, I wonder if I should keep it installed in my computer. So my question is this: "Why did this happen?, at a time when I had relied on Microsoft Security Essentials for so long. I understand that I have the free programs, but to find out that my computer is vulnerable to virus with this programs bogged me. I will appreciate any advise. By no means however, will I remove Essentials today. As always guys, thanks in advance. P.S...Malwarebytes cl... Read more

More replies
Relevance 58.22%

VoodoShield
Does Voodoshield use virustotal.com to scan files when it set to smart mode or always on mode?
How long do you guys think i should put Voodoshield training mode on?
Is VoodoShield free good?
Does VoodoShield protect from exploit?

Zemana Anti Malware
How many engines does Zemana Anti Malware uses?
What are the engines name that Zemana Anti Malware uses?
Does Zemana have the latest updates for all the engines that been uses?

Security Setup Question
Do you guys think this security setup is alright? Windows Defender + Malwarebytes Anti Malware Premium + Zemana Anti Malware Premium + Voodoshield free? I think is redundant to have two anti malware running, but do you guys think Malwarebytes and Zemana running together will be a major issue?
 

Answer:Zemana Anti Malware,Voodoshield, and security setup questions

Zemana doesn't mention the engines used in the latest version but in the earlier versions they mentioned that they're using Avira, eset, Bitdefender, Quick Heal, MSE, Zemana & Clam Win engines. I guess they've dropped some of these.

Voodoshield works like the trusted applications mode of Kaspersky(kinda white listing security solution).
I think your security configuration is more than enough for security, but it seems too heavy on RAM.
 

0 more replies