Author Topic: Beware! (Read 3490 times)

CK9 · « **on:** February 07, 2011, 06:26:27 PM »

If you've ever run into the ad that takes over your internet browser and pretends to be a virus scan, you know how annoying that can be. Well, prepare to be even more annoyed, because it has been tweeked a bit. Now, it puts an auto-loading executable into your temp folder. By the time you realize it's there, you already have a rootkit hiding somewhere.

I ran into this the other night, and thought I had it taken care of right away. Instead, in the process of trying to get rid of it my system restore files were trashed and eventually many of my system tools weren't functioning properly.

If you suddenly find a new symbol in your taskbar, manually shutdown your computer (don't let it save settings) and restart it in safemode. Once safemode is loaded, purge the temp folder and run an antivirus that actually detects and removes rootkits.

I am having to reinstall my OS for the 5th time since I first got this computer (thumbsdown)

Spikerocks101 · « **Reply #1 on:** February 07, 2011, 06:46:56 PM »

Talking about the "Antivirus 2010" or what ever its called ad?

CK9 · « **Reply #2 on:** February 07, 2011, 07:31:49 PM »

I think that's the original ad, it makes it look like you opened my computer.

The new one that forced it's way was something like antivirus .net (with the space there)

Spikerocks101 · « **Reply #3 on:** February 07, 2011, 09:09:45 PM »

Well, don't be going to any "bad" sites at night then

CK9 · « **Reply #4 on:** February 08, 2011, 01:16:25 AM »

I don't. I'll be playing runescape (yes, I still play it

) and need to look up some information (treasure trail coordinate locations, monster drop tables, etc.) and sometimes it's the wiki, other times it's one of the more reputable fan pages.

On the plus side, you computer never works quite as nicely as it does after a fresh install ^_^

BlackBox · « **Reply #5 on:** February 08, 2011, 05:43:16 PM »

If you use Firefox or Chrome, I would recommend installing the Adblock Plus extension/addon. I very very rarely see ads on the internet with that addon enabled. (which avoids the whole issues associated with ads getting clicked accidentally). It has made the experience of using the internet 1000 times more bearable.

Sirbomber · « **Reply #6 on:** February 08, 2011, 07:43:23 PM »

Yes, but then it gets awkward when you tell people a particular site is clean and then it turns out to actually be a ME[size=0] [/size]S HA[size=0] [/size]L.

Zardox Xheonov · « **Reply #7 on:** February 09, 2011, 07:54:59 AM »

I'd better tell my mom how your instructions work so she can do it in the future. (Better safe and prepared than sorry).

jcj94 · « **Reply #8 on:** March 21, 2011, 11:32:13 AM »

MALWAREBYTES

OMFG is that software amazing. Saved me from that twice. I have mine set in the BIOS to when the sleep button is pressed on the main CPU, it shuts off, without saving setttings, and I boot into safe mode.

9967 things that Mac Affe and Sophos couldn't find malware bytes removed

News:

Author Topic: Beware! (Read 3490 times)