Malware

Clark Doughty · From: KANSAS

I had malware on my computer, purchased the Malwarebeytes software recommended on this forum and now my computer is clear.
Thank you Wiz for all you do for us on the forum.
I would never have purchased this software had it not been recommended from a subject matter expert who we can trust.............thanks again....clark

Wiz Feinberg · From: Mid-Michigan, USA

Thank you very much Clark!
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog

Wiz Feinberg · From: Mid-Michigan, USA

I'm sorry to hear that the malware has returned (offline). It appears that the Big Brother was hiding in your System Restore area and has been restored as though it was part of the OS.

How to proceed.

Restore the computer to an earlier date than when the malware attacked it. You see, malware often hides in the System Restore folders. By the same token, uninfected system files are backed up in System Restore, going back X-far, depending on your S.R. settings and free disk space.

If you can restore to a date prior to the attack, be thankful and empty out all remaining Restore Points.
You do this by disabling System Restore temporarily.

If you aren't able to restore to a clean state, disable System Restore and carry on the fight again. Update MBAM to the latest version and definitions, then reboot into Safe Mode With Networking and scan from there.

MBAM does not replace a good anti-virus program. It works along side of one. If you have no other security programs installed, get Microsoft Security Essentials, which is free and better than nothing.

If you have more than one identity on the computer, scan from each one.

Once your security scanners say your PC is clean, reboot into normal mode and see if this remains true. Then, run Windows Updates as many times as required to receive all available patches, rebooting as required. Uninstall all instances of Java technology. If you have Adobe Flash, Air, Reader, Shockwave, or Acrobat, check for updates for them. Reboot between updates to flush out previous versions that may have been lurking in RAM.

If you new scans reveal the presence of a Rootkit, or Bootkit, like ZeroAccess, or TDSS, prepare to escalate the fight to a different level, or to wipe the disk and reinstall Windows.
_________________
"Wiz" Feinberg, Moderator SGF Computers Forum
Security Consultant
Twitter: @Wizcrafts
Main web pages: Wiztunes Steel Guitar website | Wiz's Security Blog | My Webmaster Services | Wiz's Security Blog

Alan Brookes · From: Brummy living in Southern California

How does one know how far to go back to be sure of being before the malware came into the system?

In what directories does the malware hide, or does it vary ?

Wiz Feinberg · From: Mid-Michigan, USA

Alan Brookes · From: Brummy living in Southern California

I have so many program installed that formatting the hard drive and reinstalling would take weeks. Plus, some of the software was downloaded off the internet and I have no installation CDs.

People who create malware and viruses are at war with society and should be shot. Evil or Very Mad

Kevin Lichtsinn · From: Minnesota, USA

Forum Index > Computers		Next oldest topic :: Next newest topic

All times are GMT - 8 Hours	Jump to: