| Author | Thread |
|
|
08/15/2007 01:37:15 PM · #26 |
| Next time wear a condom and you won't have to explain to your wife why you can't pee without screaming. |
|
|
|
08/15/2007 01:44:36 PM · #27 |
Get Spybot S&D, you won't regret it.
//www.spybot.info/en/index.html
And yes, wear a condom. You should know that Doc :-P
|
|
|
|
08/15/2007 03:40:18 PM · #28 |
I have McAfee with site adviser. I also run Adaware.
The site adviser is pretty nice. When I search google for let's say...
"lottery" all the hits come up with a green, yellow or red mark with McAfee's opinion on each. It helps you decide if you want to continue on your path of destruction.
In the event that you click on a link in an email or type in the address bar and the site is trying to sneak something in, then it will block the site and ask you if you want to continue.
IMO it is not "buggy" and does not slow the browsing down.
On another note: I hate when people say: I use a Mac or Firefox or blah blah...and I never get a trojan or virus or hacked....
...isnt' this because the people who write up these hacks only go after the "biggest fish" which is Microsoft? Or am I wrong and Macs and Firefox are truly INVINCIBLE?
Skid
Message edited by author 2007-08-15 15:42:19. |
|
|
|
08/15/2007 11:13:29 PM · #29 |
Well, it reappeared when I got home. I ran drweb-cureit again and found two more instances. I'm trying spybot now. It seems somehow I am getting reinfected and that's gonna be the trick.
These things always take forever to fix. Thank goodness it doesn't happen often. |
|
|
|
08/15/2007 11:22:51 PM · #30 |
Have you tried to reboot into safe mode then run defender,
|
|
|
|
08/15/2007 11:24:02 PM · #31 |
If you haven't already done so do what Ray said and turn off Windows System Restore. You don't want the virus being archived and resurface if you ever have to restore to a previous state.
|
|
|
|
08/15/2007 11:24:38 PM · #32 |
| I did that for DrWeb-Cureit. I just ran Spybot and it didn't find anything. It is possible the other instances of finding something were in quarrantine already. I'll monitor and see if it seems to reappear. |
|
|
|
08/15/2007 11:25:07 PM · #33 |
Originally posted by yanko:
If you haven't already done so do what Ray said and turn off Windows System Restore. You don't want the virus being archived and resurface if you ever have to restore to a previous state. |
So if I turn it off, how do I ever use it again if needed? |
|
|
|
08/15/2007 11:27:00 PM · #34 |
|
|
|
08/15/2007 11:28:27 PM · #35 |
Originally posted by DrAchoo:
...These things always take forever to fix. Thank goodness it doesn't happen often. |
I mentioned that I was helping a guy fix his, well went over there again last night and ran spybot and found some tracker cookies but what I really liked was something that might help you. Under the advanced mode there is a Startup setting. It will show you everything that loads on startup (usually seen by doing the ctrl-alt-del, task manager, processes), and it tells you info about them (well most anyway). Then you can uncheck it and it will not load in the future. I ended up removing a good 5 items from there alone.
His wife fixed us dinner while the computer was working, I told him I might not be able to fix the computer completely this time and might have to come back again since his wife is a bomb-diggity cook! lol
Message edited by author 2007-08-15 23:29:24. |
|
|
|
08/15/2007 11:32:13 PM · #36 |
Originally posted by DrAchoo:
Originally posted by yanko:
If you haven't already done so do what Ray said and turn off Windows System Restore. You don't want the virus being archived and resurface if you ever have to restore to a previous state. |
So if I turn it off, how do I ever use it again if needed? |
Perhaps I should have been more exact Doc. You would turn your System Restore off, conduct your virus scan, then reset your System Restore.
Ray |
|
|
|
08/15/2007 11:35:12 PM · #37 |
| Thanks Ray. I'm not a complete computer idiot, but some of the jargon in this thread is akin to me telling you you have an autoantibody to the alpha-subunit of the high-affinity IgE receptor on you mast cells... :P |
|
|
|
08/15/2007 11:38:39 PM · #38 |
Originally posted by DrAchoo:
Thanks Ray. I'm not a complete computer idiot, but some of the jargon in this thread is akin to me telling you you have an autoantibody to the alpha-subunit of the high-affinity IgE receptor on you mast cells... :P |
wow how'd you know he had chronic urticaria? ;) |
|
|
|
08/15/2007 11:40:36 PM · #39 |
Originally posted by sabphoto:
Originally posted by DrAchoo:
Thanks Ray. I'm not a complete computer idiot, but some of the jargon in this thread is akin to me telling you you have an autoantibody to the alpha-subunit of the high-affinity IgE receptor on you mast cells... :P |
wow how'd you know he had chronic urticaria? ;) |
Crap, someone has broken the code. How am I going to bill exorbitant prices now? |
|
|
|
08/15/2007 11:41:36 PM · #40 |
Originally posted by DrAchoo:
Thanks Ray. I'm not a complete computer idiot, but some of the jargon in this thread is akin to me telling you you have an autoantibody to the alpha-subunit of the high-affinity IgE receptor on you mast cells... :P |
Luckily for me I have no allergies, otherwise I would need to seek your services to get some of them thingy ma jiggies you alluded to. :O)
Ray |
|
|
|
08/16/2007 12:11:23 AM · #41 |
So would this be an example of what we are talking about with restore? I'm not sure how I remove this as I can't seem to get to it manually. Windows Defender seems to say it's taken care of it, but I found the other file it said it had also taken care of and removed it manually.
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017269.dll |
|
|
|
08/16/2007 12:32:46 AM · #42 |
The best way to defeat those password scarfing viruses is to never use a password. If everyone did that, it would put those pesky viruses out of business in no time.
;)
Mike
|
|
|
|
08/16/2007 02:12:27 AM · #43 |
So when the spyware program says it has "moved" the file, what do I do with it at that point? Dr.Web found:
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017271.dll
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017272.dll
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017273.dll
Supposedly they are "incurable/moved". But I'm not sure what that means. Any pointers? |
|
|
|
08/16/2007 03:24:14 AM · #44 |
Originally posted by DrAchoo:
So when the spyware program says it has "moved" the file, what do I do with it at that point? Dr.Web found:
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017271.dll
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017272.dll
C:\System Volume Information\_restore{99CF1BCA-F64A-4B59-87C4-6726E4EA450E}\RP403\A0017273.dll
Supposedly they are "incurable/moved". But I'm not sure what that means. Any pointers? |
if they are incurable/moved I'm pretty sure it is like being quartined so the system shouldn't be able to access them anymore BUT if you have one of the replicating viruses that constintely comes back you are going to have to find the main file to kill. The really hard part too is that most of the time it is named something extremely close to an actual windows system file name so you might not notice the difference. Really sucks that you are having this much trouble with it...any chance you can do a system restore and just start from scratch? |
|
|
|
08/16/2007 03:36:57 AM · #45 |
Ok Doc go to this link which tells you how to turn off Windows System Restore. Once you do that it will remove the cached information that Windows was storing in case it need to restore to a previous state. You want it to do that because it appears the virus has been archived in that cache so it's tainted. After it's turned off run your virus scans, spyware checkers, etc to eliminate the virus. Once it's gone turn system restore back on. When you turn it off and back on windows creates a new cache for it so whatever virus was caught in the system restore should not resurface.
Message edited by author 2007-08-16 03:38:04.
|
|
Home -
Challenges -
Community -
League -
Photos -
Cameras -
Lenses -
Learn -
Help -
Terms of Use -
Privacy -
Top ^
DPChallenge, and website content and design, Copyright © 2001-2025 Challenging Technologies, LLC.
All digital photo copyrights belong to the photographers and may not be used without permission.
Current Server Time: 03/13/2025 07:18:18 PM EDT.
