Computer Support Forum

QUESTION _Sticky: How to Protect yourself from malware!

Question: QUESTION _Sticky: How to Protect yourself from malware!

QUESTION _Sticky:" How to Protect yourself from malware! "

In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?

Thanks!


"6) Adjust Active X security settings

* In Internet Explorer, click Tools, Internet Options, Security. Click on the Internet globe. Then select Default Level, then click OK. Now select Custom Level and scroll down to the ActiveX controls and plug-ins section (some may already be set correctly):
o Set Download signed Active X controls to Prompt
o Set Download unsigned Active X controls to Disable
o Set Initialize and Script ActiveX controls not marked as safe to Disable
o Set Installation of desktop items to Prompt
o Set Launching programs and files in an IFRAME to Prompt
o Set Navigate sub-frames across different domains to Prompt
o Set Allow paste operations via script to Disable (see: http://support.microsoft.com/kb/224993 )
o Click OK and OK again. "

Relevance 100%
Preferred Solution: QUESTION _Sticky: How to Protect yourself from malware!

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

Answer: QUESTION _Sticky: How to Protect yourself from malware!

Re: QUESTION _Sticky:" How to Protect yourself from malware! "



jilter said:





In the below instructions, Is it necessary if I *NEVER* use IE, only Firefox?Click to expand...

Yes! Some applications will automatically launch IE sessions since that may be all the can use. Also you need to use IE to be able to get all of your Windows Updates. And some websites (just like some applications) do require IE.

1 more replies
Relevance 64.78%

I just got my degree and have not been able to find work so I can only thank all the people at MajorGeeks.
I am 'Gunk Free' but was reading the chaslang's post "dated 10-10-04, 21:52, How to Protect yourself from malware! - MajorGeeks Support Forums"; and under the firewalls to use "Outpost Firewall Free" is listed when I went to download it, it is Dated: 2009-05-08 is it still a good firewall to use?
Thank you in advance for your help.

At a point in time I was 01 of them that understood some binary.
 

Answer:How to Protect yourself from malware! post question

Yes, it is still a good firewall. Just make sure you keep it updated as you would with all other protection software.
 

1 more replies
Relevance 52.48%

Ok this is weird. I run Ntl netguard, and Spyware Doctor. A few days ago, SpyDoc refused to auto update. Nothing strange thought I, site must be down.

Well its been four days now. Then I noticed I couldn't connect to Microsoft to do updates either. On further investigation, I found I can't connect to ANY legit malware sites. I have run Spybot, Ntl netguard, Malware Byte's anti malware, and Norton AV, none found anything wrong.

However, I tried setting up a proxy within Firefox, and CAN connect to the sites I couldn't otherwise. (albeit incredibly slowly).

As things stand, I can't update any malware software, and assume my poor PC must have caught something new and nasty.

Please help

Hi jack this follows:-

Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10:08, on 19/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ntl\ntl Netguard\fws.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Command Software\dvpapi.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterSer... Read more

Answer:Help Pls! Can't update Malware Protect or Visit Any Malware Sites

sorry, bump
 

2 more replies
Relevance 48.79%

i Just bought a new PC. i have a couple questions from the 'How to protect yourself from malware' thread.

My Pc is running windows 7.

In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.

In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?

In the disable the autoruns feature there is no update for windows 7?
 

Answer:How to protect yourself from Malware

avilo4u said:





In the Firewall section it doesnt say if the windows 7 firewall is sufficent? If it isnt i will download and outpost firewall and disable the windows one.Click to expand...

While the Windows 7 firewall is better than what was in previous versions of Windows, it is still very inadequate.





avilo4u said:





In the Antispware tools i downloaded Micrsoft security essentials for Winbdows 7. Since i also downloaded Avast as my anti Virus is it ok to run both these?Click to expand...

No! MSE is and antivirus and antispyware. So is Avast. You can only have one of them installed.





avilo4u said:





In the disable the autoruns feature there is no update for windows 7?Click to expand...

Microsoft has never updated their info ( from here http://support.microsoft.com/kb/967715 ) for Windows 7 so I'm not sure if everything that is used for Vista would apply.

You can just run this >> Autorun Eater
 

6 more replies
Relevance 48.79%

Make sure you get your system protected from ocurrences of malware problems. Below are some simple steps you can take to reduce the chance of infection in the future. I strongly encourage you to do them all. There is no perfect solution for totally preventing malware from getting on your PC, however, these steps will help.

Please do not make the false assumption that this thread is old or out of date based on the date the thread was started ( 10-10-04 21:52 ). Look at the Last Edited date at the bottom of this message as this procedures does evolve with time.

IMPORTANT NOTE: It is getting more and more difficult to find real true freeware these days that does not include bundleware, toolbars...etc and junk you just don't want. Make sure you pay attention during installation of anything you download and read license agreements. Be sure to uncheck check boxes for the bundleware and toolbars where you can so that you opt out because the defaults are always to opt in.


1. Visit Windows Update: Make sure that you have all the Critical Updates recommended for your operating system and IE. The first defense against infection is a properly patched OS. For anyone who is not yet running at least Windows 7 (which you really should be running at a minimum if your PC supports it) see the below link before updating. Note: Windows XP is not longer supported by Microsoft and is hence a security risk.

Windows 7 Upgrade Advisor
You should check for Windows Updates at least once a ... Read more

More replies
Relevance 48.79%

How would you protect yourself from a fud?
 

Answer:How to protect yourself from a FUD malware?

LukeNukesEm said:





How would you protect yourself from a fud?Click to expand...

Supplement your security with something besides signatures.
 

34 more replies
Relevance 48.79%

Something (Malware ? ?) locked up my PC (Windows XP). I got a pop up message that my PC was infected and click "yes" to buy an AV program. I did not click "Yes", but every program I tried to run came up with the same message. I took it where I bought it and they fixed it by cleaning my hard drive and re-loading my OS. Fortunately, I had BU'd my personal files. They called the problem an "intercept". Norton AV did not catch it. They also loaded "Malwarebytes" for me.

What is the best way to protect for this kind of problem ?
 

Answer:How to protect against Malware ?

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide


and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.


After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 48.38%

Hello,

Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.

Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.

Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.

Thanks.
 

Answer:How to protect yourself from malware (for Vista)

ablaze said:





Is there any thread for "How to protect yourself from malware (for vista)" as the one written by chaslang for windows xp.Click to expand...

It was not written for Win XP. It is for all versions of Windows althoough obviously there is more in there that relates to WinXP and older since they have been around longer.





ablaze said:





Another question plz. Is there any site to give ranking for antivirus softwares like matousec for pro-active internet security softwares.Click to expand...

You should ask in the Software Forum. But reviews of AVs are typically out of date by the time they are published. This happens because many programs update 3 to 5 times per day and even just one update can drastically improve or reduce an AVs test score.





ablaze said:





Also kindly tell me plz that avast antivirus is better or comodo internet security with antivirus is better.Click to expand...

You are not comparing apples to apples. Avast is just an antivirus. Comodo Internet Security includes all of the below:

firewall
antivirus
Host Intrusion Protection System (HIPS)
BOClean Anti-Malware is not being included in CIS

 

3 more replies
Relevance 48.38%

I continue to get the "SysProtect" download window on both I.E. and Mozilla. Followed your steps listed to clean my system, but same "Virtumonde" files appear each time I run Ad-Aware. Here is the Hi-Jack this log (after running Ad-Aware, see end of log for HijackThis log generated after restarting computer w/o running Ad-Aware):Logfile of HijackThis v1.99.1Scan saved at 9:48:28 PM, on 5/18/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\SNDSrvc.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeC:\Program Files\Norton AntiVirus\navapsvc.exeC:\Program Files\Norton AntiVirus\IWP\NPFMntor.exeC:\WINDOWS\System3... Read more

Answer:Malware - Virtumonde & Sys Protect?

Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order in which they are mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes.Step #1Scan again with HijackThis and check the following items:R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.comR3 - URLSearchHook: (no name) - ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)O2 - BHO: WTLHelper Object - {6D33B121-5C4C-4450-9D1F-7B67085CC199} - C:\WINDOWS\system32\jkhhe.dllO20 - Winlogon Notify: jkhhe - C:\WINDOWS\system32\jkhhe.dllAfter checking these items, close all browser windows except HijackThis and click "Fix checked".Step #2Please download VundoFix.exe to your desktop.Double-click VundoFix.exe to run it.Put a check next to Run VundoFix as a task.You will receive a message saying vundofix will close and re-open in a minute or less. Click OKWhen VundoFix re-opens, click the Scan for Vundo button.Once it's done scanning, click the Remove Vundo button.You will receive a prompt asking if you want to remove the files, click YESOnce you click yes, your desktop will go blank as it starts removing Vundo.When completed, it will prompt that it will shutdown your computer, click OK.Turn your computer back on.Please go HERE to run Panda's ActiveScanOnce you are on the Panda site click the ... Read more

7 more replies
Relevance 48.38%

Hello - First, let me say thank you for helping me rectify a really poor choicesof opening software I wasn't 100% certain was verifiable. As a result I have the Virust Protect Pro problem (at a miniumum) which seems to tie up my machine a lot and causes problems with my wireless network adapter. I have used Spybot and Adware to no avail. I've copied and pasted the Hijack This log below and won't make any changes until I hear from you.
With great thanks for your help!
K

Logfile of HijackThis v1.99.1
Scan saved at 3:52:29 PM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\cisvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program F... Read more

More replies
Relevance 48.38%

I have read this threadhttp://forums.majorgeeks.com/showthread.php?t=44525 and i am paying particular attention to #5 AntiSpyWare Tools, and it states ONLY USE 1 REALTIME BLOCKER So my question is, i use ESET'S nod32 Antivirus to protect my machine, but it has antispyware protection included. I also have Malwarebytes Pro providing real time blocking, so am i in effect useing more then 1 realtime blocker? If so what do i do about that? I paid for Malwarebytes Pro, not using it will defeat it's purpose and be considered a waste of money!
 

Answer:How to Protect yourself from malware Thread

You;re fine. One AV only, but you can have more than one AS (Anti-spyware ).
 

3 more replies
Relevance 48.38%

We maintain several PCs from a library, a research lab for students in a university. Just recently bunch of malwares swarm inside the lab and nearly affected all the machines. Most of these malwares are being imported from student's flash drives in which they're freely allowed to plug on the PC's. So cleaning the infections was really tedious. We cloned the drives and some were fixed using anti-malware softwares. 
 
Each computer is running a Microsoft Security Essentials for virus protection, and that's it.

Our main problem is, how should we setup each PCs so that we can prevent those viruses from porting inside the system? Is there any particular software or windows configurations that can offer such functionality? MSE merely detects all these viruses and most of it already infiltrated the system and removing each as I said is very tedious and time consuming.
Maybe you guys got some efficient workarounds with this type of predicament.NOTE:
All PCs have the same hardware and uses Windows 7 32bit.
 

Answer:How to protect PCs from USB-malware carriers?

Simple, look at:
 
http://www.bleepingcomputer.com/forums/t/541639/security-suggestions-post-3-of-7/
 
Have a great day!

 

11 more replies
Relevance 48.38%

Hi. I am rather a person with basic knowledge about computers so don?t be surprised if my question will sound stupid to you.
I have a Windows PC and I often use my thumb drive to print some documents in my university. I?m afraid that it will become infected someday so I thought it would be a good idea to use it only with Puppy Linux when I'm at home. This is why I made my thumb drive a bootable one with Puppy on board. What I want to do is to boot to Puppy, copy the files I need to print or use at the university to the USB drive, then close the system and disconnect the USB drive. To be clear, only one USB stick is involved in this process (Puppy and data are on the same USB stick). Would that prevent infecting my Windows PC? If not then how can I avoid viruses spreading through USB? Can malware do any harm to Windows OS when Puppy is booting?
 

Answer:Can puppy protect me from malware?

Good idea if I understood correctly
 

7 more replies
Relevance 47.56%

If I visit a malware site with latest version of Firefox with the NoScript extension without allowing any scripts, whats the chance of me getting infected if I don't download anything?
 
Also, I hope this is the right place to post this.

Answer:Will using NoScript protect you from a malware site if..?

COPIED FROM NoScript:
The NoScript Firefox extension provides extra protection for Firefox, Seamonkey and other mozilla-based browsers: this free, open source add-on allows JavaScript, Java, Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank).
NoScript also provides the most powerful anti-XSS and anti-Clickjacking protection ever available in a browser.
NoScript's unique whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known and even not known yet!) with no loss of functionality...
You can enable JavaScript, Java and plugin execution for sites you trust with a simple left-click on the NoScript status bar icon (look at the picture), or using the contextual menu, for easier operation in popup statusbar-less windows.Watch the "Block scripts in Firefox" video by cnet.
 
If I were using Windows and could only have one security program/ add-on....it would be NoScript. I use it in Ubuntu, too.
There is a learning curve. It is not just install and forget. Install it and go to a popular site and then view all the scripts you never knew
were active on that site and are now blocked from running. You can click to allow just the site's scripting and still block all the others.
The ones that you want to play videos on will be one that you will spend the most time learning which script to allow only the videos to play.

11 more replies
Relevance 47.56%

Will Ad-Aware only detect the malware in its definitions during a scan, or does it also prevent it from being installed on your computer in the first place? What about A2? Many thanks. - Tye

Answer:Does Ad-Aware protect your computer from malware?

No on both counts. Try Spywareblaster click here

3 more replies
Relevance 47.56%

Malware Protection is a rogue anti-virus application that runs a fake system scan and then concludes that your computer has a malware infection or serious security/privacy issues. To fix the malware infection you must pay a fee, about $50. The rogue program copies user interface elements from real programs and it looks like a legitimate application. Plenty of people shell out $50 to register this fraud and that's a big problem because if you're transacting with these guys online you're offering them your credit card details. Cyber criminals can later user that information to their benefit. You should protect yourself with common sense and legitimate anti-virus software because such fake anti-virus applications as Malware Protection now represent about 20% of all malware in circulation. If you made a mistake and purchased it, please contact your credit card company and dispute the charges. And if you still have this fake AV on your computer, please follow the removal instructions below to remove Malware Protection and related malware for free.

Manual Malware Protection removal instructions:

1. Right click on the "Malware Protection" icon, click Properties in the drop-down menu, then click the Shortcut tab.

The location of the malware is in the Target box.

NOTE: by default, Application Data folder is hidden. Malware files are hidden as well. To see hidden files and folders, please read Show Hidden Files and Folders in Windows.

Under the Hidden f... Read more

Answer:How to protect and clean your computer from malware

Is this a removal guide for this rogue or ?

 

1 more replies
Relevance 47.56%

I am getting three screens that come up when ever I try to do work on any program. (1) Windows Security alert (2) Spyware Protect 2009 alert (3) Spyware Alert

DDS (Ver_09-02-01.01) - NTFSx86
Run by Kim at 10:54:20.07 on Thu 02/19/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2430.1853 [GMT -5:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)

============== Running Processes ===============

J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
J:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
J:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
J:\WINDOWS\system32\Ati2evxx.exe
J:\WINDOWS\Explorer.EXE
J:\WINDOWS\system32\spoolsv.exe
J:\Program Files\McAfee.com\Agent\mcagent.exe
J:\WINDOWS\svcho.exe
J:\Program Files\AIM6\aim6.exe
J:\Program Files\Windows Live\Messenger\msnmsgr.exe
J:\Program Files\Messenger\msmsgs.exe
J:\WINDOWS\sysguard.exe
J:\Program Files\AIM6\aolsoftware.exe
J:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
j:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
j:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
J:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
J:\Program Files&... Read more

Answer:Spyware Protect 2009 malware

Hi,

Sorry for delayed response. Forums have been really busy. If you still need help with this post a fresh dds log, please.

2 more replies
Relevance 47.56%

Hello,
My son went to an untrusted site and the computer was infected with the conduit searchprotect.  I tried removing it with Eset Home Security.
 
However, my PC is still acting strange. I think the internet is a bit slower. As well, when I try to run some .exe files, such as Eset's ERARemover tool, windows gives me an error "this app can't run on your PC".  I have windows 8.1 64-bit and have tried both 32bit and 64bit programs.
 
I can't attach a DDS log because it's now win8.1 compatible.
 
thanks.

Answer:Conduit Search Protect and other malware?

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===These tools are compatible with your operating system.Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed by click... Read more

8 more replies
Relevance 47.56%

I have somehow acquired some malware titled system tool protect your pc. It comes up randomly, asks if I want to scan, says I have over 800 Infections, and constantly prompts me to sign up for it to erase my viruses. I know this is malware, and I aquired it after my Norton expired. How can I remove it? Thank you!

I am using a Hp Pavilion Vista.
 

Answer:System Tool Protect your pc (malware)

Welcome to Major Geeks!

Please read ALL of this message including the notes before doing anything.

Pleases follow the instructions in the below link:

READ & RUN ME FIRST. Malware Removal Guide


and attach the requested logs when you finish these instructions.

**** If something does not run, write down the info to explain to us later but keep on going. ****
Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.


After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
Helpful Notes:


If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:

Starting your computer in Safe mode

If you have problems downloading on the problem PC, download the tools and the manual updates for SUPERAntiSpyware and Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
If you cannot seem to login to an infected user account, try using... Read more

1 more replies
Relevance 47.56%

Hello,I recently managed to aquire a virus that seems to have taken over my computer. There's a bar that appears right below the address bar for internet explorer telling me to download the latest antispyware to protect my computer. I cannot pull up my Task Manager, my computer prompts me that it has been disabled by my administrator. My desktop background has been changed to a message stating the computer has several fatal errors. and occasionally music will play at random that i've never heard before.here is my log:Deckard's System Scanner v20071014.68Run by Josh UWL on 2008-04-09 16:35:51Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --49: 2008-04-09 21:36:32 UTC - RP521 - Deckard's System Scanner Restore Point48: 2008-04-08 16:12:26 UTC - RP520 - Restore Operation47: 2008-04-08 16:08:59 UTC - RP519 - Last known good configuration46: 2008-04-08 16:08:42 UTC - RP518 - Restore Operation45: 2008-04-08 16:08:41 UTC - RP517 - Last known good configuration-- First Restore Point -- 1: 2008-04-08 16:08:11 UTC - RP473 - System CheckpointBacked up registry hives.Performed disk cleanup.Percentage of Memory in Use: 85% (more than 75%).Total Physical Memory: 447 MiB (512 MiB recommended).-- HijackThis Clone --------------------------------------------------... Read more

Answer:Protect.antivirus Malware Infection

Hi and welcome to Bleeping Computer! My name is Sam and I will be helping you. Please download ComboFix and save it to your desktop.Prior to running Combofix.exe you should disable your antivirus program and disconnect from the internet.Double click combofix.exe and follow the prompts.When it's done running it will produce a log for you. Please post that log in your next reply.Important Note - Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

10 more replies
Relevance 47.56%

Topic title pretty much says it all. How can i prevent hijacking of my browser or even worse my entire computer? Last night i made a stupid move and attempted to download something off Pirate Bay, i read the comments and it looked legit. Since i didn't have a software that downloads the torrent i clicked on whichever one Pirate Bay offered me. The software was successfully installed and was downloading the program but it froze the halfway and my google chrome completely stopped working, Later on i found out that Conduit is a malware that sometimes installs itself without the user's permission and takes over the browser. Now i'm paranoid about downloading anything. By the way i have a supposedly good anti-virus : Bitdefender for which i paid good money! Very disappointed that it pretty much welcomed the bad malware with open hands and allowed it install itself. 

Answer:How to protect your computer from malware like CONDUIT??

attempted to download something off Pirate Bay : < Anything off these Torrents sites is 50 to 90% infected and not usually legalWinPatrol Free is one of the better programs to warn you if there is going to be an attempt to change your Home Page. This may help after you do a full scan with your Antivirus -Please download AdwCleaner by Xplode onto your desktop.*Close all open programs and internet browsers.*Double click on adwcleaner.exe to run the tool.*Click on Delete.*Confirm each time with Ok.*Your computer will be rebooted automatically. A text file will open after the restart.*Please post the contents of that logfile with your next reply.*You can find the logfile at C:\AdwCleaner[S1].txt as well.  Thank You -  

1 more replies
Relevance 47.56%

If you know about security in website and computer then tell me how to secure Website from Malware Attack. And what is the role of Google Webmaster in security purpose?
 

More replies
Relevance 47.56%

Microsoft said:

A view of the current landscape
Criminal attacks continue to evolve and malware has become their standard weapon against anyone who uses the Internet?on traditional form-factor devices, as well as on mobile devices like tablets and phones. Malware targets all operating systems and browsers, and in recent years, criminal attacks against applications have increased substantially.

Criminals also use social engineering to trick you into performing actions that put you at risk. An increasingly common social engineering strategy uses online advertising campaigns to lure you to a site that installs malware on your computer.

An economy has developed around building reliable vulnerability exploits, which criminals buy to help distribute their malware. Criminals make money from their malware, so they invest in ways to keep it alive such as producing a higher quantity of malware, updating it more frequently?e.g. multiples times each day?and increasing its size and complexity. Some malware is as complex as commercial applications.

Secure by design
We use the Security Development Lifecycle (SDL) to build Windows with the best security design, development and testing practices available. Some highlights include:
Threat modeling and security design reviews. During the design process we consider how criminals might seek to attack features and scenarios, and incorporate this analysis into our designs.
Writing secure code. Training and code quality tools help to pre... Read more

Answer:Windows 8 will better protect users from malware

Well its like malware writers would take time to discuss how they will bypass those features. Its like Windows 8 were built in security and could led to few vulnerability probably.
 

6 more replies
Relevance 47.56%

Hey!
I am a web designer and I just got permission to work from home for the next week. I am allowed to take my work laptop home for it. I would like some advice regarding the security concerns before I start the work.
I have heard about spyware and malware attacks that can cause severe loss of data. I don't want such things happening to me in my work system. As of now it's clean and no malicious files are present in the system. It's installed with Kaspersky Internet Security and ExpressVPN when connecting to the Internet. Will it help in protection from spyware and malware? I have seen articles mentioning not clicking on emails and installing antivirus softwares will help, but still I have heard a lot about such attacks. What else can I do to ensure nothing harmful will happen?
 

Answer:Will Kaspersky and VPN protect from malware attacks?

It being a work laptop, you shouldn't replace any of the pre-installed software, correct?
 

3 more replies
Relevance 47.56%

hello friends-i hope my title makes some sense. i wanted it to convey what i was asking about so people browsing could tell. cuz i couldn't find a question like mine.

i have a new hd completely installed and setup. my old hard drive is now the secondary master and although i still have the OS and programs installed, i never use it. lately i have been actively file-sharing via lime wire. i am behind a zone alarm firewall and running spyware blaster and AVG free. i also regularly scan with spybot S&D. i also scan each file with AVG b4 opening (thanks to majorgeeks for advising me on security)
however, i've been warned the limewire is notoriously risky as far as spyware etc. so my question is:

If i choose to open my secondary OS at start up, and browse and download these risky files to my secondary HD. will that protect my primary HD from infection?

if not, any other advice u have regarding the risks of file sharing are appreciated.

one thing i look out for is files that are too small to contain what they say they do. for example 100kb song files. i just dont download these.
 

Answer:2nd HD for dwnlds/protect primary from malware?

IMHO, I keep an operating system and a backup drive, without an operating system. Just put it on the same cable as primary slave. Frankly, if you are not dual booting 2 operating systems, theres no need to keep them both installed. That said, no any files on a second drive can, and probably will, affect the main drive, in your case, probably infect both drives. A drive formatted without an operating system for backup should be safe from virus and spyware infections, but can affect the other drive, in other words. Having that second drive is great for backups of important data in case of a need to format. I love having my spare drive. Your also correct about Limewire, but it is not specific to Limewire. Any file sharing application is a risk.

Did I answer what you needed?
 

2 more replies
Relevance 47.15%

To start let me thank you for putting all these great programs in one easy to download area! Just following this guide has cleaned out several items from my supposedly secure system.

I did find one broken link however and got lost going through the giant comodo forum trying to find another thread with a similar ease of use allure.

This one: Configuring CIS for Maximum Security with ZERO Alerts for Novices

If you could give me an updated link it would be much appreciated.
 

Answer:Broken link in: Sticky How to Protect yourself from malware!

Thank you for bringing it to our attention. We will see what can be done to fix that issue.
 

2 more replies
Relevance 47.15%

I would really appreciate some assistance with "Internet secruity designed to portect" malware and/or virus.  I have attempted to remove this with no luck.  I did install and run Malware Bytes.  Initially it listed several virus which I removed.  However, I still have a problem.  Anytime I try to run/download anything it is blocked by this annoying virus.  What can I do? Any and all help would be greatly appreciated.

Answer:Internet Secruity Designed to Protect Malware Help Please

Hello, I moved you from WIN7 to the Am I Infected forum for now.
Please try following this GUIDE.

1 more replies
Relevance 47.15%

Hi Folks, Yes I've got the privacy protection Malware, currently running windows XP on a dell laptop and I cannot start up in the safe mode, no Internet start up or execution of any programs allowed. Looks like I can strip documents & information off but thats about it. Can anyone share my options to cure this problem?

Thanks in advance - L

Answer:OK I've got the Privacy protect malware & no safe mode

Hello LarsLind,I moved this to Am I Infected.For the connection try these...Please click Start > Run, type inetcpl.cpl in the runbox and press enter.Click the Connections tab and click the LAN settings option.Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.Now check if the internet is working again.ORGo to Start ... Run and type in cmdA dos Window will appear.Type in the dos window: netsh winsock resetClick on the enter key.Reboot your system to complete the process..Please follow our Removal Guide here Remove Privacy Protection (Uninstall Guide) .After reading how the malware is misleading you ...You will move to the Automated Removal InstructionsAfter you completed that, post your scan log here,let me know how things are.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.Also the other tool log.. A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply.

1 more replies
Relevance 47.15%

Hi everyone,
I want to tell my story about protection of ESS on my computer. Today, when my friend plug in his USB into my computer, I noticed that his USB shows only 1 USB shorcut in explorer. Before, my previous machine is infected by this malware type (malware creates USB shorcut) so I have experience with it. And when he plug his USB in, I run ESS Smart Scan but it found nothing. This afternoon, when I plug my USB in my machine, I saw that all things in my USB turn into 1 USB shorcut, I run Smart Scan again with my USB and found nothing, too (I also run a scan by Zemana AntiMalware, and it found nothing, too). After that, I installed MCShield AntiMalware Tool, and scan my USB with it. Magically, It found .ink malware in my USB and cleaned it sucessfully! This is screenshot about log of MCShield:

And now, I'm very disapointed with my ESET . It makes me got infected easily! . How do you think about my problem, please share with me.
 

Answer:ESET Smart Security can't protect me from .lnk malware

ESET protects against malware coming from USB devices.
Probably did not recognize the malware that caused the problem.
You have done well to use McShield.
 

71 more replies
Relevance 47.15%

Hello. My kid's PC -- an HP (Model M7567C, with 2, 260 GB hard disks and 2 GB RAM) is infected by "Spyware Protect 2009" malware. The malware repeatedly displays at least 3 different pop-ups saying there's a spyware infection and offers to sell a fix; the program also prevents Explorer from working properly. There are no obvious programs/processes to shut down from the control panel. The machine has Zone Alarm Security Suite installed - I'm not sure if my kids ignored a warning or if the software mistakenly let something in. Zone Alarm technical support said to try running Malwarebytes' Anti-Malware automated removal tool, but the program doesn't seem to run (nothing happens after the program is downloaded and launched). I tried running Zone Alarm virus and spyware scans, but the program runs slowly and eventually hangs (I think I ran the Zone Alarm scan in the Windows Safe mode). I can boot the PC in Windows Safe mode, but unfortunately there is no useful restore point. I can boot the PC in the normal Windows mode but it takes 2 or 3 cold starts. I can use Microsoft Explorer (through a wireless LAN connection), but in the normal Windows mode Spyware keeps hi-jacking Explorer and displaying its rouge messages.

Before I give up and reformat the hard disk and re-imaging the disk from the backup system disks, I would like to try a less time consuming solution. Any suggestions are welcome! Thanks!

I ran the DSS scan as instructed. Here are the res... Read more

Answer:"Spyware Protect 2009" malware problem

I wanted to add some new information to my original posting that seems to be related to my problem.

When my spyware infected PC boots, I get the following messages:

"The application or DLL c:\windows\system32\digeste.dll is not a valid windows image."

"View Manager has encountered a problem and needs to close."

"Error loading c:\windows\griwapaxim.dll. The specified module could not be found."

I noticed that there was a Windows update available today (the February update of Microsoft's anti-spyware program). I installed this application; after this, Zone Alarm Suite was then able to run (up to now, it just hung up), and 2 items were quarintined: WIN32.SYSGUARD adn WIN32.TROJAN.FAKEALERT.IEH

However, there are still problems with my PC. I still can't get Malwarebytes' program to run, even when I rename the *.exe file to *.bat. It seems like whatever is still injecting my PC interferes with any anti-spyware/malware program from running properly and interferes with the operation of Explorer.

Thanks.

4 more replies
Relevance 47.15%

> I am using sify ISP with limited data tarnsfer package.
>My ISP is showing that i have downloaded 1200 MB which is not true.
>I did'nt turned on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days
>I think some one has hacked my system.
So i am requesting you to tell the best way to protect my system from malware and internet
Thanks in advace.
 

Answer:Best way and best software to protect my system from malware and Internet?

Security is a wide topic. If you browse aound on this forum, you will find recomendations on Anti Virus and Anti Spyware and Firewalls.
If you have Windows XP Professional, MS published an XP Security Guide v2 and tells you how to harden XP Pro. It is available here:

http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx#ETE

If you have Vista, there is a Vista version of the Security Guide:

http://www.microsoft.com/downloads/...ed-7f35-4e72-bfb5-b84a526c1565&displaylang=en

Hardening an OS gives the attacker a smaller attack surface by disabling unnecessary features. XP after a fresh install is quite bloated and has a lot of places for an attacker to poke at.

Also you should consider running it daily using a limited user account, as that prevents some malware from working and prevents malware from making system wide changes. In the Unix world, nobody runs a machine daily using the admin account. MS acknowledges that and has made UAC for Vista to achieve the same end.

Here's more details about that:
http://www.mechbgon.com/build/security2.html

Also along the lines of protection and prevention, use Mcafee's Site Advisor, available here:

http://www.siteadvisor.com/

It places a site rating besides every google result and tells you about malware infested sites before you go clicking on them and instantly infecting your machine.
 

3 more replies
Relevance 47.15%

> I am  using sify ISP with limited data tarnsfer package.>My ISP is showing that i have downloaded 1200 MB which is not true.>I did'nt turned  on the PC on the date prescribed by ISP but it showing i have downloaded 1200 MB and has cut down 20 valid days>I think some one has hacked my system.So i am requesting you to tell the best way to protect my system from malware and internetThanks in advace.

Answer:Best way and best software to protect my system from malware and Internet?

Before anyone tells you that,   it may be that someone connected to your internet connection, via wireless?How are you connected to the internet?Because if your computer was off on those dates, even if a hacker got into the system the computer needs a physical connection to the internet, while the computer is off, there is no way of obtaining an internet connection.

3 more replies
Relevance 47.15%

I finally found a fix to the malware the the Virus Protect Pro created and it cleaned out everything. The free software (to use and clean) is called Super AntiSpyware (that's quite some name) and you can download the free home version at http://www.superantispyware.com/superantispywarefreevspro.html
I'm going over there now to donate some money as it was my stupidity that had me lose about 6 hours trying to fix what I did. It's always nice to find a hero.

With blessings for a great day.
K
 

More replies
Relevance 47.15%

My computer is infected with a malware program called "Spyware Protect 2009" how do I get rid of it? I followed instructions and have copied DDS and Attach files below. popup windows keep appearing saying my computer is infected with a virus and I need to install their software.
DDS (Ver_09-03-16.01) - NTFSx86
Run by John Schlatterer at 2:44:20.15 on Mon 03/16/2009
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.254.96 [GMT -4:00]

AV: McAfee VirusScan *On-access scanning enabled* (Updated)
FW: McAfee Personal Firewall *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe
C:\WINDOWS\kdx\KHost.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\SiteAdvisor\6253\SiteAdv.exe
C:\Program Files&... Read more

Answer:remove malware, Spyware Protect 2009

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explanation about the tool. No input is needed, the scan is running.Notepad will open with the results, click no to the Optional_ScanFollow the instructions that pop up for posting the results.Close the program window, and delete the program from your desktop.Please note: You may have to disable any scri... Read more

2 more replies
Relevance 47.15%

How does comodo firewall protects against signed malware at cruelsister's settings? Also i can disable its processes via task manager. How its self protection?
I am going to use it on my system with cruelsister's settings but these issues are my main concern which do not let me believe in comodo's power.
So,help me out and give the required info.
Thanks.
 

More replies
Relevance 47.15%

Can I Recover my administrator password for the ContentProtect program without it being sent to my E-mail?
 

Answer:Question about content protect

Yes you can chk previous post
http://forums.majorgeeks.com/showthread.php?t=69045
 

2 more replies
Relevance 46.74%

Hi, i'm having a problem with my web browser since using the malwarebytes anti-malware scan. Before I ran the scan and removed the infections it found, I was able to open webpages and go to sites although when i would try to search it would redirect the page. After I ran the scan and deleted the infections, I tried to open a webpage and it said it couldn't display it although I was connected to the internet. One of the things the scan found said "adware.mywebsearch" I would assume that was the reason it was redirecting the page. As of right now, I have done a system restore to a point before i removed the infections so i could display a webpage to get help. If someone can please help me, I would be very grateful.

DDS (Ver_09-03-16.01) - NTFSx86
Run by Leslie at 14:54:14.01 on Wed 05/06/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.496 [GMT -4:00]

AV: CA Anti-Virus *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\SharedComponents\HIPSEn... Read more

Answer:malware agents/koobface,spyware protect removal

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

2 more replies
Relevance 46.74%

I've been using AVG, and have bought the full version, yet was confused with what I had to do.  Can anyone tell me which product is user friendly, yet a good system choice.  Thanks,
Would be appreciated. 
 

Answer:What is a good product to buy to protect and remove virus, malware etc...

My personal choice is ESET NOD32 Anti-Virus if choosing a paid for program as it leaves a small footprint...meaning it is not intrusive and does not utilize a lot of system resources. Kaspersky Anti-Virus is also a good choice if looking for a paid for program. If you don't want to pay then I recommend avast! Free Antivirus.For more specific information to consider, please read:Choosing an Anti-Virus ProgramSANS Institute Choosing Your Anti-virus SoftwareImportant Fact: It has been proven time and again that the user is a more substantial factor in security than the architecture of the operating system or installed protection software. Therefore, security begins with personal responsibility and following Best Practices for Safe Computing.

6 more replies
Relevance 46.74%

I have recently been infected with a fileless malware. I have run a scan with ksc and it reported some memory detection. So,i run a scan with fully updated avast free and emsisoft eek but they didn't find anything. Finally, i have to scan with zemana and only after it detected and removed a fileless malware,ksc was able to give my system a clean sheet. Does kaspersky and zemana the only one to protect against such attacks? I need a free tool to protect my system against such attacks. The detection by zemana was "trojan poweliks: fileless malware". I don't need any whitelisting software and i also sincerely think that even they cannot counter such attacks.
 

Answer:Do you know any free software to protect against fileless malware attacks?

avast and bitdefender free are both goof
 

23 more replies
Relevance 46.74%

Hi

I was just wanting to know the reason why Spybot S&D was removed from the "How to Protect yourself from malware!" sticky.

I am using version 1.6.2 since I found the newer v2 to be quite bloated and annoying. Should I still be using 1.6.2 since it still downloads the lastest malware signatures? Or is there an important reason why it was removed as a recommended antispyware tool?

Cheers
Sam
 

Answer:Reason for Spybot S&D removal from How to Protect yourself from malware thread?

Just not that useful anymore and as you noted V2 is too bloated. We also never liked Teatimer.

You can still use the old version and make use of the bad download blocker and hosts file protection if you wish but I would not use Teatimer. Modern antivirus programs already included antispyware too.
 

1 more replies
Relevance 46.74%

Hey guys, I am sure you can relate to my current woes here. I have a family member who is just always getting malware on their computer. Getting tired of cleaning it up so frequently and I wanted to ask you guys what you do. Personall I install Chrome and MSE, and set MSE to a Full Scan once a week with real time monitoring. I also preach safe web surfing, but honestly, it's like telling a Crack Head that crack kills.

So what do you guys do to try to ease the pain of fixing a family members computer?
 

Answer:How do you Setup your family members computer to protect from malware?

They now have Macs
 

46 more replies
Relevance 46.33%

Hi,
I downloaded an app from CNET ( never again ) and ended up with Search Protect in the Task Bar and redirecting to Conduit.
Avast free never saw it. I ran AdwareCleaner and MalwareBytes Ant-rootkit, rebooted and no sign of it.
How best can I check to verify that it's really gone.

ps not sure about the Gmer log

Tech Support Guy System Info Utility version 1.0.0.2
OS Version: Microsoft® Windows Vista™ Home Premium, Service Pack 2, 32 bit
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4000+, x64 Family 15 Model 107 Stepping 1
Processor Count: 2
RAM: 3325 Mb
Graphics Card: NVIDIA GeForce 210, 512 Mb
Hard Drives: C: Total - 228121 MB, Free - 131165 MB; D: Total - 10239 MB, Free - 5254 MB; J: Total - 152624 MB, Free - 152340 MB;
Motherboard: Dell Inc., 0RY206
Antivirus: avast! Antivirus, Updated and Enabled

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:40:23 PM, on 3/5/2014
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16520)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsa... Read more

Answer:Search Protect/Conduit Question

16 more replies
Relevance 46.33%

Hi,
I downloaded an app from CNET ( never again ) and ended up with Search Protect in the Task Bar and redirecting to Conduit.
Avast free never saw it. I ran AdwareCleaner and MalwareBytes Ant-rootkit, rebooted and no sign of it.
How best can I check to verify that it's really gone.
Thanks
 

Answer:Search Protect/Conduit Question

By posting in the Virus & Other Malware Removal forum and providing the logs requested at the top.

Since this is the wrong forum I'll close this one.
 

1 more replies
Relevance 46.33%

Hi Guys,
Can I begin by saying a MASSIVE thank you to you all-I'd be totally lost without your help
Ok, down to business-I've done as the guide suggests, performed the XP clean up, ran the programs and I've got all the logs which are hopefully attached. The problems started a almost a week ago when the dreaded "spyware protect 2009" screen started popping up and the icon lodged itself in my system tray and I got suspicious when there was no option to get rid of it-it's disabled my windows firewall, is blocking/redirecting my IE browser with it's phony msgs etc. If you need any more info or if I've somehow left something out/attached the wrong logs just let me know-it's purely out of ignorance and not laziness if that's the case!!!:-o

Thanks again- Cheree :wave
 

Answer:vundo/spyware protect 2009 malware-logs attached

here's the last log
 

6 more replies
Relevance 45.51%

Hello,Please help!!! I only have a couple of days to fix this comp before I leave!!!I am receiving security popups, Spyware Protect 2009 (I did not download) is in my task bar and keeps popping up with infiltration alerts, and IE keeps redirecting to http://browser-security.microsoft.com/blocked.php?r=21.0 displaying "Internet Explorer Warning - visiting this web site may harm your computer!" Then offering to link me to Purchase Spyware Protect 2009.Here is my DDS Log file and attachment.Thanks!!!peace.b.DDS (Ver_09-03-16.01) - NTFSx86 Run by John at 9:11:09.81 on Sun 03/22/2009Internet Explorer: 8.0.6001.18702Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.223.43 [GMT -5:00]============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\VTTimer.exeC:\WINDOWS\system32\VTtrayp.exeC:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exeC:\Program Files\Analog Devices\SoundMAX\Smax4.exeC:\Program Files\HP\HP Software Update\HPWuSchd2.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Program Files\QuickTime\qttask.exeC:\PROGRA~1\Nero\data\Xtras\... Read more

Answer:Unkown Malware/Rootkit security popups - Protect Spyware 2009

thank you! topic is resolved through off-post email reply.

Malware-bytes removal is the best!

peace.b.

2 more replies
Relevance 44.69%

Hi once i have read some of your arhive threads last 6-27-08 i began to follow all of the steps from cleaning, defrag and Removal. I found out my PC had been infected with Trojan.Vundo(it was detected by malware)... I think it started when i downloaded last 6-26-08 a file at Bitlord. The first virus that was detected was a backdoor.trojan the Norton Anti-virus detect it and remove it. So i thought it was ok when i noticed my PC is slowing I already think that there are still problems with my PC. So i run again the Anti-virus and when it reaches 24% (estimated) my PC reboot and my keyboard got stalled and in my monitor it is BAD BIOS. but when i manually reboot it, it just jump to windows and didn't do the normal process when booting... and everytime I scan my PC with my AV it always reboot so i try to search the net and find you guys... a bit STRICT but helps us more to know and learn how to fix things with our PC

1. From cleaning guide my pc was running better than it was before...
2. From the Malware Removal Guide i don't know if i got the right proceedure
but got some problems...
a. SAS - it doesn't goes blue screen,but my problem here is when it attemps to scan my files it becomes stalled. the first time i ran it i left it for almost 6 hours... (thinking it would still work) so reading from the procedure if it doesn't work proceed to the next
b. Spybot - I dom't have problem here works really great
c. MAM - no problem he... Read more

Answer:Trojan.Vundo,Malware.Trace and Problems on boot and Norton Anti-virus Protect

here are the second logs of HJT and Combofix.

BTW,when i right-click all my folders and files and choose properties it seems that it has security tab and when i click the security tab there's been so much users and administrators in it. Is my files been publicly displayed or does this HighJacka** i mean Hacker get and manage my files...

Thanks...
 

16 more replies
Relevance 42.64%

Hi

What's the best password protect protect software for folders?

Also if the password was forgotten or lost..would there be any way to acceess the file?

Thanks.

More replies
Relevance 41.82%

The volunteer helping me on the "Am I infected" forum recommended I move my problem over here to this part of the site. I'm not sure if I'm at the point where I should reformat my computer, hope someone can help.Here's my original problems and the logs and help I've received so far: http://www.bleepingcomputer.com/forums/t/208885/ms-antivirus-2009-which-turned-into-another-one-and-now-its-that-nfrdll-error-and-malarebytes-and-superantispy-got-their-butts-kicked/I assume that you'll probably get a better explanation from my problems there, but here's the quick and dirty:Dell Laptop, currently disconnected from the Internet. (It was unable to access the bleeping computer forum anyway--just this site specifically, sites like Google, blogs, those kinds of things worked fine.)The problems started with the MS Antivirus 2009 fake spyware stuff, than the browser hijacks (I shut off proxy servers before coming to the forums), and then I got the Spyware Protect 2009 version of malware, and was only able to get Malwarebyte's to run by changing the extension to .bat after reading it here. Since I started working on these forums with DaChew, I've only followed his instructions.Currently working off my wife's computer, a Mac. Using a USB flash drive that DaChew had me immunize so that I can download the programs on this Mac and transfer them over to the infected Dell. Than I copy the logs onto the flash and move them here.Here's my DDS file, i've changed my name on it to USER.DDS (Ver... Read more

Answer:Serious Malware Infection, started with MS Antivirus 2009, Spyware Protect 2009, nfr.dll

Hello Thefactualopinion and welcome to Bleeping Computer,1. Please download GooredFix and save it to your Desktop.Select "2. Fix Goored" by typing 2 and pressing Enter. Make sure all instances of Firefox are closed at this point. Type y at the prompt and press Enter again. A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called GooredLog.txt).Note: If you receive a message saying that GooredFix needs your system to be restarted, please close all applications and reboot your system. Please also allow any registry changes that may be prompted by any of your security programs.2. Please read this tutorial carefully to download ComboFix from one of the locations specified, and save it to your Desktop.Double click the ComboFix icon to run it.If ComboFix askes you to install the Recovery Console, please do so..The Windows Recovery Console will allow you to boot up into a special recovery mode, in case your computer has a problem after an attempted removal of malware. This allows us to help you.Once the Recovery Console is installed, continue with the malware scan.Note: Make sure not to click ComboFix's window while it's running. That may cause it to stall or freeze.Please post the log from ComboFix (can also be found as C:\ComboFix.txt) in your next reply. If you have any questions along the way, STOP and ask them before proceeding !!Greetings,Thunder

6 more replies
Relevance 40.59%

There is a very helpful sticky on this forum called "How to Protect yourself from malware!" authored by Chaslang. See http://forums.majorgeeks.com/showthread.php?t=44525 It appears that it has not been updated since 2004.

I have a clean (I like to think) fairly new Windows 7 computer, and I want to keep it clean. Are there any new suggestions that supersede what is in Chaslang's old thread?
 

Answer:Updates to "How to Protect yourself from malware?"

Happy_Macomb said:





It appears that it has not been updated since 2004.Click to expand...

Very untrue. You are looking at the creation date, not the update date. See the end of the post where you will see:

Last edited by chaslang; 01-30-12 at 19:08.. Reason: Remove outdated tools
 

3 more replies
Relevance 40.59%

The How to Protect yourself from malware! Guide is good very useful information but it lacks information on other tools that have actually been found more effective at stopping Malware than just using realtime Antivirus/antispyware engines, that can stop unknown malware like Host-based Intrusion Prevention (HIPS), the D+ in Comodo, or spyshelter, ECT or Virtualization software which also is not covered that can isolate a threat so it doesn't even affect your Original OS files, like Sandboxie which isolates browsers and other files, or the sandbox in comodo that Isolates unknown files, or Bufferzone Pro Free, Returnil or Wondershare TimeFreeze which isolates everything in a virtual OS ECT

Also I don't remember their being an option to install ASK toolbar in any current comodo set up, they removed it in 2009.

Comodo has changed allot and none of the important Comodo IS features are covered?

Sorry if I sound like a Bug but Computer security is advancing and their are better and more effective ways to protect yourself than just using a realtime antivirus engine. and by the looks of it the Tutorial needs more updating anyways.

A Combo I like to use is
Comodo Internet Security, in Proactive mode with sandbox, antivirus, Defense +, and Firewall Enabled.

MalwareBytes Pro Antimalware in Realtime.

SpyBot SD Resident, Immunized.

SandBoxie for browsing the unknown ect.

PeerBlock to block malicious servers/ip's.

ThreatFire, Helps protect against known and unk... Read more

Answer:The "How to Protect yourself from malware!" Guide.

Welcome to Major Geeks!

Thanks for your comments.

There are quite a few tools that we don't list. That does not make them bad nor does it mean they are good. Comodo is listed in the How to protect thread in the antivirus and also in the firewall area. We do not go into some of the other areas of protection in detail for a couple reasons. One, the thread is meant to be as useful to ALL people with all computers ( old and new ) as possible. The newer forms of protection can be problematic for older/slower PCs with smaller amounts of memory. The second reason is that experience as shown that if all of the instructions in that thread are properly followed, you don't need sandboxes or HIPS anyway and you will not suffer from the effects that they have on PCs. Many many people of complained to us about how slow their PCs were after using tools like Threatfire and sandbox type software. In addition, use of these tools caused many PC novices to intermediate users all kinds of other grief and loss of information and loss of settings that they did not realize they were losing due to the sandbox affects.

Also we have had many, many, many cases where people have had all this kind of protection you mention installed, and still have gotten severely infected. And all this protection just made it harder to manually clean the PC. It did not stop the infections. The educated end user ( which is what that sticky is pushing ) is the most important piece of protecti... Read more

1 more replies
Relevance 36.08%

hi.i downloaded a matrix screensaver which came with some icons.malware sweeper detects this icon file as holystic dialer and prompts to remove but kaspersky and avg antispy say its all clear.its not so important but just wondering which program is right. i would appreciate any help.thanksLogfile of Trend Micro HijackThis v2.0.2Scan saved at 8:12:29 ??, on 20/9/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exeC:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exeC:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exeC:\Program Files\Analog Devices\SoundMAX\SMAgent.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\MsPMSPSv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Analog Devices\SoundMAX\Smax4.exeC:\Program Files\Roxio\Easy CD Creator 6&... Read more

Answer:Malware Or Not Malware.that Is The Question

Hi,Nothing suspicious here, but I strongly recommend you get rid of Malware Sweeper asap. It's a bad so called spywarescanner - loads of false positives. Also see here:http://www.siteadvisor.com/sites/malwaresweeper.comLook at the comments below. Just stick with the trustworthy Antispywarescanners. (AdAware, Spybot s&D)

6 more replies
Relevance 36.08%

Don't know if this belongs here or malware forum, I am not asking for help in removal.
A person brought in a laptop, two admin accts, his and hers, (yes, I know bad idea).
Hers was good.
His no longer could connect and he said he had some popup messages about being infected, $ to temove.
I had only a few minutes at the time. He had no data he cared about. I deleted his acct and files, made new acct under new name, everything worked fine.
If he had virus, which it looked like, could this have solved the problem? Or is it just delaying the possible problem?
XPSP2, AVG. Yes it needs updating but I didn't have the time.
 

Answer:Question on malware

Hiya brandypeppy just because you deleted his acct and files, made new acct under new name, dosen't always mean the problem will go away, because if it was something really nasty, it will only be hidden somewhere in the LT anyway, so yes it's just delaying the possible problem, so to really clean you should do an R+R me First in malware forum !

Rusty !
 

2 more replies
Relevance 36.08%
Question: Malware Question

Hi I have a friend that for the past while I have been cleaning his pc but lately I'm having to do it almost weekly and lately it is security shield that is always comming back. Is there any way to know what is causing this to reapear? It is there business computer that is used for taking appointments via email and browsing the internet for building designs,etc it isn't like its a home pc with kids on it he don't download music or anything like that.

Answer:Malware Question

Hello ,you are probably missing a step or two.Please follow our Removal Guide here Remove Security Shield or SecurityShield ] .After reading how the malware is misleading you ...You will move to the Automated Removal InstructionsAfter you completed that, post your scan log here,let me know how things are.The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

3 more replies
Relevance 36.08%
Question: Malware question

Hi guys, i'm after a bit of advice, I just ran a weekly scan on malwarebytes and it picked up two things, could someone tell me what they are, and how to deal with them please? they are in quarentine at the moment. here is a screenshot.



Thanks
J
 

Answer:Malware question

Have MBAM fix those issues. Now if you want us to check your system for malware, please follow these instructions:

READ & RUN ME FIRST. Malware Removal Guide
 

5 more replies
Relevance 36.08%

Hi guysI'm doing an IT course and one of our questions is as follows..What are the names or aliases did the malware programme have that rec'd a lot of media attenton in Jan-Feb 2006?SassarMyWifeBlasterKama SutraWebHancerGoogle DesktopCan anyone shed any light - i've been searching the web and can't come up with a solutionThanks

Answer:Help with malware question

click herejohnny.

1 more replies
Relevance 36.08%

Hello Everyone im a reader of about 2 days and decided to finally register to help others with what i know...now my question is...is there any way to run a malware/virus scan from a flash drive? The reason for the question is i have a customer who wants me to scan their computer but they dont have an internet connection they recently cut it off...well any replies would be awesome. THANKS!
 

Answer:Malware question...

8 more replies
Relevance 36.08%

Allright,currently Ive noticed that my computer has alot of malware,so Ive been reading about removing it.I've downloaded SpyBot,Ad-Aware,SpyWare Blaster and I have the Mcafee Security Suite.I want to manually remove the malware using the program AutoRun.However,I want to know if any malware can trick my computer into thinking they're legit MicroSoft applications.By this I mean can they "tell" my cpu that they have an authentic signature??Plz help.

Answer:~plz I Need Help~question About Malware~

Not really, they cant. But manually dealing with things in AutoRuns will lead to you missing things, as well as leaving parts of malware behind. AutoRuns only looks at startup entries. Many types of malware have other ways of getting started, as well as the ability to hide from autoruns.Please go to ESET OnlineScan (NOD32)You will then see the Terms of Use, tick the check-box infront of YES, I accept the Terms of UseNow click StartShould you face a Security Warning that asks if you want to install and run a file called "OnlineScanner.cab", click YesClick StartNote: (the Onlinescanner will now prepare itself for running on your pc)To do a full-scan, tick: "Remove found threats" and "Scan potentially unwanted applications"Press ScanThe Onlinescan will now start and scan your pc (this could take a while)When the scan has finished, it will show a screen with two tabs "overview" and "details" and the option to get information or buy software, just close the windowClick Start >> Run... >> type: C:\Program Files\EsetOnlineScanner\log.txtThe Scanresults will now open in NotepadClick into the text area, right-click and chose "select all" (or use <Control>+A)Right-click again and chose "Copy" (or <Control>+C)Close/Exit NotepadNavigate to this thread and post your log along with anything else requested from us, by right-clicking and "paste" (or ctrl+v) in the text area ... Read more

3 more replies
Relevance 36.08%

Let's say the Malware comes from the Internet, and wants to Infect a PC.
Which "roadblock" must the Malware get past?
 
First Roadblock = the user itself
Second Roadblock = Firewall
Third Roadblock = Anti Exploit
Fourth Roadblock = Windows Updates
Fifth Roadblock = Anti Malware
Last Roadblock = Anti Virus
 
Is the above correct?
I know that the user is the "first line of defence", but is it correct that the Firewall is the "second line of defence" and that Anti-Exploit is the "third line of defence" and so on?

Answer:Question about Malware

There's no defined order.
 
Windows updates and anti-exploit are not really a roadblock if the malware does not use exploits. Antivirus and antimalware do basically the same thing nowadays, so depending on the settings and each program; they should react within the same time roughly if detected by the product.
 
xXToffeeXx~

14 more replies
Relevance 36.08%

I read old post about this question but it is possible that a new malware can bypass Vbox ?
 

Answer:Malware and VM question.

Klipsh said:


I read old post about this question but it is possible that a new malware can bypass Vbox ?Click to expand...

Yes.

Via various network flaws = vulnerabilities\client-host setup.

Don't use bridged networking.

Don't use network shares (just mentioning for sake of thoroughness).

Before run malwares, disable networking. Most simple solution.
or... just dump VM and use Shadow Defender.
 

26 more replies
Relevance 36.08%
Question: Malware Question

Hi I have Avast for my anti virus and really like it, but as far as malware which free version should I download? or do I need it? thank you
 

Answer:Malware Question

SpartanWarrior said:





Hi I have Avast for my anti virus and really like it, but as far as malware which free version should I download? or do I need it? thank youClick to expand...

AV doesn't protect against all malware. What many, here, use is MalwareBytes. You'll have to manually update it and run scans though.
 

7 more replies
Relevance 35.67%

Hello to all!
I am wanting to test out some malware on my VirtualBox VM. I am currently running Ubuntu 11.04 as my host and am going to use Windows XP as my guest. Meanwhile, I have a true installation of Windows XP on another HDD in this machine.
Is it possible that some malicious code could infect my true winxp installation?
Thanks!

Answer:VitualBox VS Malware Question

Extremely doubtful. The malware would first have to get through the virtual box (which ive never seen happen, but I suppose in THEORY its possible) then it would have to infect your linux (a windows virus that will affect linux. not happenning) then it would have to somehow find its way to your other hard drive. Personally, I would have to say the chances are a million to one that could happen, and i doubt it would be malware, you would almost have to be hacked by a CIA level hacker for that to happen. I could be wrong, but its doubtful.

6 more replies
Relevance 35.67%

First, noob here, great informative forum, thank you! My dad had a problem where a message was showing up on his computer, stating, you're infected with spyware. I located this forum and had him download the the Malwarebytes program. He ran it and came up with a ton of results. He then "fixed" the selected problems, then rebooted. Now a bunch of his icons are not working at all? Any advice? Also, I ran the program on my desktop and it found a few problems. When I go to "fix" the selected programs, my PC locks up when it is "quarantining" the files under system/driver. Any thoughts on these issues? Once again, thanks in advance!

Answer:Malware Program Question

the directions for this forum ask that you specify an operating system and if you have run a scanner like malwarebytes it's best to post that log

Our crystal balls don't work that well

Welcome to Bleeping computer

3 more replies
Relevance 35.67%

I'm wondering what types of softwares should I have on my computer to prevent me from having all those malware stuff.

Currently I have Kerio Personal Firewall and AVG Anti-Spyware.

My friend told me to download Antivir but I'm not sure what it does? Does it remove all malwares such as spy/addwares, viruses, trojans, etc? And if I do have Antivir do I remove the AVG anti-spyware? Thanks to anyone who can answer my questions

Also if anyone can, please recommend me any other free antivirus softwares that's better than Antivir.
 

Answer:Question on Malware softwares

Welcome to Major Geeks!

The first thing you should do is work thru and understand the below link:

How to Protect yourself from malware!







hyperballad said:





Currently I have Kerio Personal Firewall and AVG Anti-Spyware.Click to expand...

Unless you purchase AVG Antispyware, it will not protect you from getting infected. After a short trial period it is only an after the fact scanner and removal tool.





hyperballad said:





My friend told me to download Antivir but I'm not sure what it does? Does it remove all malwares such as spy/addwares, viruses, trojans, etc? And if I do have Antivir do I remove the AVG anti-spyware? Thanks to anyone who can answer my questions Click to expand...

When you read the How to protect link you will see that you need an antivirus, realtime antispyware blocker, and a firewall. And in addition, you can use some scan only tools to for backup scanning.
 

1 more replies
Relevance 35.67%

I have a basic question how does Malware get on your computer and why do you have to use so many pograms to remove it? Why does Microssoft not separate IE from the OS that way if IE has infection/Malware the OS is still clean?

Or if firefox has malware you can use Microssoft IE.And if firefox and Microssoft IE has malware the OS is till clean.Why does Microssoft not separate IE from the OS .

And what are security layers. What book or web site should I read about internet security and malware how it works and how to remove it.

What book or web site do I need to read to be a malware removal moderator here?
 

Answer:basic question on malware

There are many vehicles by which people get infected. Downloading and clicking on adverstisments are only two possible ways. Others include but are not limited to

* NOT KEEPING ALL SOFTWARE UPDATED!!!
* surfing - usually certain websites are the main problem
* click links to view pictures or videos, or listen to music....etc
* not reading what you are clicking on and even if you do it may be worded in a form to trick you into clicking the wrong answer. Sometimes the answer is the opposite of what you think. And sometimes there is no correct answer because it is already too late one the popup has appeared..
* installing codecs to view videos or sound
* installing cracks and or illegal software
* downloading via P2P or Torrent programs
* downloading from websites that do no check their downloads to see if they are safe and very few actually do this even though they say they do. (We do at Major Geeks!)
* reading emails from unknown senders especially if you have html enabled and also especially if clicking on any attachments
* reading emails from friends who don't know they are infected and may not even know they are sending you emails.

I know that many people like to say that they don't understand how they are getting infected, but the fact remains that in most cases it is by their own doing. I surf more than most people and access all kinds of websites while trying to test various malware. I have to eliminate all of my protec... Read more

3 more replies
Relevance 35.67%

I have a question and was hoping to get some info from someone on this forum with knowledge of trojan malware viruses and how they work.

A few months ago I got a trojan virus on my laptop. I tried a few programs to remove it (a-squared, Ad-Aware, Spybot), but none seemed to completely remove it. So I moved my data to an external hard drive, then wiped my hard drive clean. I scanned my external hard drive with several programs (malware bytes, AVG), and it appears to be clean. That being said, I would like to know if it is possible that the trojan may have made its way off my hard drive in other ways. For instance, from time to time I synced my Blackberry with my computer via a USB connection, so that I could move music files from my computer to the Blackberry. From time to time I also plugged my camera memory card into my computer via an adapter that plugs into a USB drive, just so I could move pictures off my camera memory card onto my computer.

Is it possible for a trojan virus to move itself off my hard drive and possibly onto my Blackberry or my camera memory card?

To anyone who is able to reply, thanks in advance for your help.
 

Answer:Malware spreading question

Welcome to Major Geeks!





jbgreen77 said:





I Is it possible for a trojan virus to move itself off my hard drive and possibly onto my Blackberry or my camera memory card?Click to expand...

Simple answer is yes. Happens all the time. All depends on the infection you had. There are many infections that impact all removable media. Many of these make use of the autorun.inf file but there are others too.
 

1 more replies
Relevance 35.67%

I have been using Malwarebytes anti-Malware and Malwarebytes rootkit removal for about 2 years.  Is that is the best malware detection  and removal program?  I noticed you label it as "lightweight".   What would be considered "heavyduty"?
 
THANK YOU VERY MUCH FOR YOUR WONDERFUL SERVICE.
 
STRANGLY RECENTLY MALWAREBYTES KEEPS PICKING UP PUP OF THE JUST CLOUD (CORRECTION) AND EVEN THOUGH IT GOES INTO QUARANTINE IT KEEPS ASKING ME WHAT TO DO WITH IT.  THEN SAYS MALWAREBYTES STOPS IN THE MIDDLE OF EITHER DELETING TOR WHEN I CLICK QUARANTINE.  ANYONE ELSE HAVING THIS ISSUE?  IT HAS NOT DONE THIS BEFORE.  BEEN USING ICLOUD FOR BACK UP.  I HAVE A QUADRIPLEGIC SON ON LIFE SUPPORT AND USE MY COMPUTER FOR MEDICAL ISSUE.
 
THANK YOU FOR YOUR HELP.

Answer:Question regarding best malware software

Just like with anti-virus programs...there is no universal "one size fits all" solution that works for everyone and there is no single best anti-malware solution to supplement your existing security protection. Every vendor's lab and program scanning engine is different. Each has its own strengths and weaknesses and they often use a mix of technologies to detect and remove malware. You may need to experiment and find the one most suitable for your needs.Please read: Supplementing your Anti-Virus Program with Anti-Malware ToolsSince this is a common question, you will receive a variety of opinions.Here are links to polls about this very subject:* Poll: Best Anti-Spyware/Anti-Malware/On-Demand Scanner* Poll: Best Antivirus and FirewallIMO, the more effective security scanners are Malwarebytes Anti-Malware, Emsisoft Anti-Malware and SUPERAntiSpyware Free.

5 more replies
Relevance 35.67%

Last month, I attempted to do a full recovery of my older m7070n HP Media Center.
The recovery DVDs resulted in the failure &#8230; &#8220;Shutting down to prevent damage&#8221;
The new recovery DVDs I ordered say they&#8217;re not for this model computer.
HP says I must return the computer to have the Mobo re-tattoed.

Today, I attempted to do a full recovery on my newer m7690y HP Media Center.
The recovery DVD says it&#8217;s not for this model computer .. Including the copy DVDs I have.
Both Computers are running XP-MCE and this one also has a Vista HP boot drive.

Since I have Acronis TI and the original working HDs with their recovery partitions ...
I have other ways of recovering ... building a new Drive.

But .. I&#8217;m curious ..
Is it possible for Malware to alter the OEM Mobo tattoo ... Or maybe the Bios ??
Is it possible for Malware to survive a full recovery back to the beginning ??
 

Answer:Solved: Malware Question

10 more replies
Relevance 35.67%

My girlfriend recently was on my computer and downloaded something and it came with tons of goodies.. Took me awhile but I finally got most if not all of the malware/spyware/trojans off.. But now I'm getting an error saying there's no space left in my HD.. Weird cause last night I deleted like 30 gigs of garbage stuff and the next day it says I have zero HD space left.. Any ideas

Sent from my HTC6525LVW using Tapatalk

Answer:Malware/spyware question

uploadfromtaptalk1439515704671.jpg I meant to attach this photo not the other.. My bad

Sent from my HTC6525LVW using Tapatalk

9 more replies
Relevance 35.67%

I have asked various forums / people and cant get a decent answer.
so i thought i would try here as its been very good here the past few months

with regard to fakeware like:

xp antivirus
security tool
avg security etc..etc..etc

all these fake anti virus programs that infect a user through the browser when they click on different links online.

now i have seen the question come up saying "we have found threats on your computer, do you want to run a scan?" and know to press no, or close the browser down.

i also know that malwarebytes and counter spy remove this stuff very well.
but is there a way to prevent this?

if i buy the full malwarebytes package that then offers on demand protection, will this block these type of threats from attacking systems? its not too expensive, like ?25...thats prob per year though.

has anybody had any expeirnce with full malwarebytes or can suggest something better...i would be all ears...or in this case, all eyes!!!

thanks ahead,
jonin

Answer:A question about fakeware / malware

Hello jonin,

Nothing can prevent this, or protect you from them all the time. The malware writers constantly change their tactics and methods of infecting a machine - but - using MBAM full protection/real time protection will go a long way in blocking these, and is currently your best defense against these fake AV's.

It is a one time fee for Consumers Malwarebytes' Anti-Malware: Malwarebytes


Quote:




Activating the full version unlocks realtime protection, scheduled scanning, and scheduled updating. For consumers and personal use, it is a one time fee of $24.95.

3 more replies
Relevance 35.67%

Does anybody know if there is a better anti-malware than Windows Defender ?

Answer:Anti-malware question

http://chart.av-comparatives.org/chart1.php

Best Free Antivirus Software | Gizmo's Freeware

Test antivirus software for Windows 7 - August 2015 | AV-TEST

Try a few and see, which one you like. Various AVs cause various problems, like Panda Cloud hates wifi.
I would sugest to give a try to this one, it is pretty light and has a great detection: 360 Total Security Essential

6 more replies
Relevance 35.67%

The computer I need to do the basic removal from is not allowing me to connect to this website. No matter what browser I type in, it forces me to Live Search. Then if I want to click onto a site from that page, it will not allow me to enter that website. I know this has got to be some sort of hijacker.

I went to the first basic malware remover steps located on this site, (from my own computer) and saw that Spybot Search and Destroy was one of the programs listed to run first. (I have used this program before myself)

My question is this.....is there a way for me to download these programs onto my computer, save it to a disk, and then transfer via disk to my freinds computer and download it there from the disk in order to run it?
 

Answer:Malware Removal Question

On a working computer, download the utilties required, burn them to a disc or transfer them to a USB drive. Once you get them transferred over, run each of the scans and collect the required logs.

Once you have collected the logs, attach them to your next post.


ShowNew

GetRunKey

HiJackThis

ComboFix

CounterSpy

AVG Anti-Spyware

AVG Anti-Spyware Manual Updates

Running AVG Anti-Spyware

SpyBot-Search & Destroy Tools 1.4
Spybot Search and Destroy Manual Updates

Also, download these utilties/programs we will use during this fix.

Avenger
ATF-Cleaner
CCleaner

 

1 more replies
Relevance 35.67%

As most of us know, the scourge of XP Antivirus 2009 (and it's many mutated varients) has infected much of the PC world. I work on lots of PCs that have this infection and I have become fairly adept at removing it. However, since some people just don't seem to learn from their mistakes, I see many people getting re-infected within days of having their PCs cleaned, in some cases the PC was formatted and they still get re-infected. It seems as if the apps I recommend are not stopping it; AVG/Avast/AntiVir don't catch it, and I don't really remember, but I don't think that AVG detects it upon scanning either but I could be wrong about that. So these folks get a bit chapped at me and say "you installed an antivirus, how did I get the virus again?" and they get all mad and act like it's my fault and then I show them a detailed history of their web activities and show them the exact date and time of re-infection, but they still say "but you installed the antivirus" and they think there's some type of warranty or guarantee against infection. As we all know, gaurantee-ing against virus infection is ridiculous and impossible. So my question is this: what software (freeware) actually stops this plague? I deal with many noobs and 9 times out of 10 when they install a firewall, they turn it off because "all of the pop ups are messing up my internet" and no matter what I tell them, they almost always disable their firewalls.... Read more

Answer:Question about malware prevention

Best protection you can offer them is education around safe-surfing practises. And if they get infected, tell them about MajorGeeks.com awesome Authorized Malware Fighters and the Read & Run Me First link.

I would think out of respect for the customers you highly value the very least you can do is point them to the awesome place you get fantastic assistance and information from
 

3 more replies
Relevance 35.67%

Does Nero interfere with the GMER scan? I have attempted the GMER scan (using the randomly named GMER.exe filename) and it keeps stopping after about 5 minutes to tell me that there is no disc in one of the drives... and in order to continue I have to put a disc in that drive.

That's why I'm wondering if Nero is causing this because I do not want to uninstall it as I no longer have the disc and I may lose it.

Thank for any replies.
 

Answer:Question regarding malware scans

As this is GMER related, I'm going to move this to general security....may get bounced up to malware removal, but for now Gen Sec will do.

thanks,

v
 

1 more replies
Relevance 35.67%

I have a general, but not trivial, question. Computers can be "attacked" by all sorts of things these days. There are trojans, viruses, and worms. There is phishing. There are tracking cookies. There are things like adware, spyware, etc. What I want to ask is: if you want to refer to all these threats under one heading is there a single term that covers all of them?

:confused

Thanks!
 

Answer:General Malware Question

Yes.......wait for it.......OK......MALWARE.
 

2 more replies
Relevance 35.67%

So I bought a laptop about a week ago from a friend. It is a Compaq Presario V5000. AMD Turion 64 ML-34 1.8GHz processor, 1.2Gb of RAM, and a 60GB hard drive running Windows XP Home SP3. Since it was owned by a friend, I decided to format the HD and reinstall windows. All seemed to be fine. I updated the comp with all updates and SP3, updated all drivers as specified by HP, and downloaded Chrome to be my default browser. I noticed it kept giving me the "Aw Snap" crash on Facebook, and other sites, so I thought it was something wrong with my Adobe Flash. I reinstalled Chrome and flash, but didn't help. So I downloaded Firefox, and it crashes now too. Tried Safari, and it crashes. Tried IE 8 and it also crashes. It's pretty frequent. Probably once per 5-10 minutes of browsing. I've ran Malwarebytes and Norton 360 (my resident anti-virus) and found nothing. I've also run a disk check and nothing. I was hoping you guys could look at these logs and see if you notice something wrong with them. I know you guys are busy and it will take a while so I will wait patiently. Thank you very much in advance for your time.

*Note: I do have access to a Windows XP recovery disc and driver recovery disc*



DDS (Ver_10-10-05.01) - NTFSx86
Run by Kyle at 15:17:05.56 on Fri 10/08/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1150.529 [GMT -4:00]

AV: Norton 360 *On-access scanning enabled* (Updated) {E10A9785-9598-475... Read more

Answer:Malware/Virus Question

Hello and welcome to TSF.

I don't see the GMER log attached. If you have it, please post it. If not, download GMER Rootkit Scanner from here to your desktop. Double click the exe file. If asked to allow gmer.sys driver to load, please consent .
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.


Click the image to enlarge it
In the right panel, you will see several boxes that have been checked. Uncheck the following ... IAT/EAT
Drives/Partition other than Systemdrive (typically C:\)
Show All (don't miss this one)

Then click the Scan button & wait for it to finish.
Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
Save it where you can easily find it, such as your desktop, and post it in reply.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

If you encounter any trouble, try running the scan in Safe Mode.
How to boot to Safe Mode: Restart your computer and boot into Safe Mode by tapping the F8 key repeatedly until a menu shows up (and choose Safe Mode from the list). In some systems, this may be the F5 key, so try that if F8 doesn't work. Login on your usual account. Make sure to close any open browsers.=======================

I would also like to take a look with a couple of other scans.
Please download Ro... Read more

7 more replies
Relevance 35.67%

Can I submit the log using different computer? My other xp machine is believed to be infected and pretty bad in using any browser. Any suggestions? Thanks.

Answer:Malware posting question

Hello and Welcome to TSF.

Yes, but we need to see 3 different logs in order to help you. Download the tools needed to a USB drive on another computer, transfer the tools to your desktop, run the tools, transfer the logs back to the other computer, and post/attach the logs in a new thread.

------------------------------------------------------

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new thread, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

------------------------------------------------------

1 more replies
Relevance 35.67%

Recently, my Mozilla browser started opening up unwanted tab sessions. It kept occurring at such a fast rate that I couldn't close out the tabs or browser itself so I had to reboot the laptop.

My computer is already running avast! Antivirus and SuperAntiSpyware Professional edition, with negative findings after updates and scans from each.

I was concerned so I downloaded Microsoft Security Essentials (before I knew how slow it runs).

When I ran it, it discovered two items:

TrojanDownloader:Java/OpenConnection.OS
Exploit:Java/CVE-2010-0840.DR

First, how do I know these are legitimate malware items?

Second, I know no software can detect everything 100% of the time, but I'm surprised at least one of these programs didn't detect these two items, if they are real.

Third, could these two items be the cause of the tabs opening up on my Mozilla browser?
 

Answer:Malware detection question

It is hard to answer your questions based on that info. If you want us to check your system for malware, please do the following:

READ & RUN ME FIRST. Malware Removal Guide
 

3 more replies
Relevance 35.67%

MS Windows Vista 32-bit SP2
AMD Athlon 64x2 dual core processor 4800+
2GB Ram
NVIDIA GeForce 6150se nForce 430
__________________________________

I'm a little embarressed to admit I've downloaded different programs over the years and now have no idea what to keep and what to get rid of but its starting to look like I'm going overboard.

Here's my list:

Advanced Systemcare 3
CCleaner
Hyjack this
Spybot search & Destroy
Spyware Blaster
Malwarebytes (which found adaware the others didn't find)

And my antivirus program is Norton Internet Security

Any suggestions on what to remove and what to keep would be appreciated.

Thanks,
Avalon
 

Answer:Malware/antivirus question

You're fine. You can uninstall HJT as it is only a reporting tool which you may not need. Norton is pretty system hungry and there are other, lighter AV programs, though if you have purchased it you may want to keep it till it runs out.

Are you having issues?

You can read this:
How to Protect yourself from malware!
 

7 more replies
Relevance 35.67%

Does anybody know if there is a better anti-malware than Windows Defender ?

Answer:Anti-malware question

http://chart.av-comparatives.org/chart1.php

Best Free Antivirus Software | Gizmo's Freeware

Test antivirus software for Windows 7 - August 2015 | AV-TEST

Try a few and see, which one you like. Various AVs cause various problems, like Panda Cloud hates wifi.
I would sugest to give a try to this one, it is pretty light and has a great detection: 360 Total Security Essential

6 more replies
Relevance 35.67%

Ok i had malware- i posted in the intro and was directed to the read&run me first section. Ive followed everything perfectly and it seems every thing is doing fine. HOWEVER. i have a few questions.

1. Most of those programs are on my desktop- can i just put these in a fold now, with the exception of MGTools, and just store them away in another part of my computer

2. Not sure when these two showed up, but on my desktop i have the following
-Thumbs.db
-CAZZ5591.
they are dark, and the CAZZ wont be deleted, and with Thumbs.db- when trying to delete i get a "Thumbs.db is a system file. If you remove it, your computer or one of your programs may no longer work correctly. are you sure you want to move it to the recycle bin? And if i try to move it to a folder. "are you sure you want to move the system file 'Thumbs.db'?

I don't wanna disturb anything ive done so far- the computers running great
 

Answer:Quick question about malware

Welcome to Major Geeks!

Based on the malware you said you had, I suggest that you attach the 4 logs requested in the READ & RUN ME before doing anything else. You may still have leftovers and it is worth the time to check. We will address your questions later when we finish up.
 

9 more replies
Relevance 35.67%

One of the procedures required is to download a variety of tools, one of them being SUPERantispyware.

I already have this on my pc, so should I remove this program and reinstall it when i get to the pc clean up section in the removing malware guide or is it ok that its already installed and won't effect any of the clean up procedure?

Cheers and thanks

bodybag
 

Answer:Pre malware removal question

bodybag219 said:





One of the procedures required is to download a variety of tools, one of them being SUPERantispyware.

I already have this on my pc, so should I remove this program and reinstall it when i get to the pc clean up section in the removing malware guide or is it ok that its already installed and won't effect any of the clean up procedure?Click to expand...

Are you sure that you have the current version and the current updates? Click our link. Is that the version you have? If yes, just get the updates and continue. If that is not the version you have then uninstall it and use the version in our link (also making sure you get the updates after installing).
 

30 more replies
Relevance 35.67%

Recently I came to this forum and since have solved my spyaxe problem, however I have no sound now and was wondering if that would have been affected during the spyaxe problem and how would one restore it, if possible? any help would be greatly appreciated thank you
 

Answer:Malware or spyware question?

Go into the control panel and open up the administrative tools folder. then open up the computer management folder... on the left side you will see device manager. open up that file and see if there are any folder on the right side that have a big yellow question mark next to them.

if there is a big yellow question mark next to the audio you may need to update or download a new driver if somwhow you lost it. that is not that difficult to do.

another option would be to do a System Restore if you have Windows XP and see if that does anything.
 

1 more replies
Relevance 35.67%

Is this file (in C:\WINDOWS) a virus?  I'm asking because my mom was reading emails and got a prompt that the computer had to be restarted to complete installation of a new program (it didn't say what new program).  It automatically restarted in 45 seconds (there was no close button).  When the computer came back up everything was fine (or looked like it).  I checked the list of running processes and found OA001Mon.exe.  I immediately searched the internet for this file.  I found reports of it shutting down the firewall and other bad things.  I ran a Norton full scan and found nothing.  avast! did a scan and found nothing.  Jotti's malware scan got 0/20 scanners reporting threats on OA001Mon.exe, OA001cfg.exe, and OA001.[I forgot the extension].  Whenever that computer booted up, OA001Mon.exe is running under my mom's username.  No virus scanner finds anything but all these internet reports and the fact that those three files are not on the other two computers at this house is kind of suspicious.  I removed these three files and rebooted and everything was fine, no OA001Mon.exe running and the files didn't come back.  Was this a good idea and are these files a virus?-Fleexy

Answer:Malware Question - OA001Mon.exe

There are files with those names that are legitimate. Do you have a webcam installed from Creative?

5 more replies
Relevance 35.67%

i use Symantec at my work on my domain computers, but it apparently hasnt been updating the definitions on some computers. I downloaded malware bytes on those computers and have been using that. so far its been working as expected.
heres the question. ive gotten black listed by CBL a few times, and what that usually means is i have a spam email sending trojan somewhere on my network. does malware bytes stand a good chance at picking up a spammer trojan?
 

More replies
Relevance 35.67%

So, I was cruising through the malware removal forum and skimming some of the threads when I noticed something interesting. When talking about software to protect a system against spyware or viruses, certain apps are mentioned a lot (AVG, Avast!, Ad-Aware, Spybot, etc). When seeking help to remove malware, the apps recommended to protect against malware are less frequently mentioned and special removal tools, like ComboFix, are mentioned instead.

What's the point of installing anti-virus or anti-spyware apps if those apps won't be used to remove infections? Or is it that the specialized removal tools are simply better at removing nasty malware or viruses? If this is the case, why do the general purpose protection tools seem to consistently be deficient, requiring the need of the specialized removal tools?

Peace...
 

Answer:Question about malware removal

10 more replies
Relevance 35.26%

Question for all the users who use Emsisoft Anti-Malware 6.5.

Once the trial 30 days has ended, the scanning features and cleaning features remain correct or there are more features that can be used?

How limited does the program remain?

Thinking of adding it to my on demand scanners and recommend a few users to it as well.

Thanks
 

Answer:Emsisoft Anti-Malware 6.5 question

Emsisoft limits the program to where it is just an on demand scanner.
 

7 more replies
Relevance 35.26%

I have Emsisoft Anti-Malware installed as only security program with windows firewall on win.7 x86. Out of curiosity I tried to run Zemana keylogger simulator and it ran with no reaction from Emsisoft Anti-Malware so now I'm not sure what to think. I have fallen into a hole and I can't really find a program I'm having alot of faith in.
 

Answer:Emsisoft Anti-Malware question

You should try a dedicated keylogger blocker.
I reccommend SpyShelter and Zemana Antilogger:
 

20 more replies
Relevance 35.26%

I believe I have a virus, I had a strange pop up telling me I had a virus and to call Cox my net provider. I called them not using the number the pop up said to use. They said it sounded like I had a virus. I ran MBAM pro, CC cleaner, McAfee, and Hitman and Rogue Killer. The only one that picked anything up was Rogue Killer. Hitman picked up 38 traces. I decided I needed to run through your malware removal cycle.
My question I already have Malywarebytes Pro on my computer and you say to download it and rename it. Do I need to uninstall my pro and then download again? Same with CC Cleaner?

I am at the point in the removal process where I am downloading the programs.
I have a Dell Desktop running Win 10, 64bit, Core i56400, 8gig Ram, 5 months old.
Please advise what to do about the programs I already have downloaded. Thank you.
 

Answer:Question About Programs When Doing Malware Removal

mladynicole said:





Do I need to uninstall my pro and then download again? Same with CC Cleaner?Click to expand...

No, just use the versions you have. As long as they are up to date with version and database.
 

9 more replies
Relevance 35.26%

applications closing by themselves? Help please

Hi there, Firstly Hi, I hope that I am posting in the correct forum!
I am fairly hopeless when it comes to computers and I have been having this problem for sometime...it originally started when I was using internet explorer, I now use Firefox and it didnt happen for a couple of months but has started again and now happens whilst I am in other programs such as word, or window explorer or anything really...

this is what happens..... everything goes crazy, it is like the mouse has had an attack and randomly starts opening and closing programmes and prompting me and beeping and acting as if I have clicked a million things (which I havent)
It is very hard to explain... we have tried nearly every free virus checker under the sun. Spyware, and malware detectors.. and then yesterday I found your site. I found a thread which took me through all the scans I need to do to get your advice.
I have followed the instructions to the best of my ability. I have copies of the logs from counterspy, bitdefender, but I was unable to get a report from the panda activescan although it said I had one spyware. It only gave me an option to buy the program not to print a report..so I dont have a report for that one.
Anyway here are all the things I have collected....
counterspy.txt
bdscan.txt
runkeys.txt

and I will repost on this thread to add the other two
thanks
sammi
 

Answer:question re: malware removal thread..

Re: applications closing by themselves? Help please

here are the other logs..


I hope I have done everything correctly I was petrified the entire time. lol

I would appreciate any help that you may be able to give me...

ps. my computer is very very old but cannot afford to upgrade at the moment.

If you need any other information I will be happy to try and supply it.

thank you very very much in advance
cheers
sammi:wave
 

16 more replies
Relevance 35.26%

So, I know my computer is infected with something or other. My question is as follows, I know I need to back up my stuff. I'm going to get an external hard drive, is there any chance of transferring the virus to the external hard drive and then back to my computer? Thanks much!
 

Answer:First a simple question about a virus/malware...

Are you here just for the question or to get your machine cleaned up?

Yes, there is every reason in the world to worry that the virus will just get transferred right back to your machine again. You need to be sure that nothing is on the drive that could infect your machine.
 

1 more replies
Relevance 35.26%

Against malware the two options are cure or kill(reformat), I know that restore as a third option is out. But what I don't understand is what way the malware does this a). and b.) whether it will work against most if not all malware. I am just thinking of the time it takes to comb a HJT log on a forum board against trying ones luck in restoring ones comp.

Sorry if my wording is crap, agreed, but I am not time wasting here, I really do want to consider the third option here.
 

Answer:Restore and malware, it begs the question why not?

10 more replies