Cigar Asylum Cigar Forum  

Go Back   Cigar Asylum Cigar Forum > Non Cigar Specialty Forums > Misc > General Discussion

Reply
 
Thread Tools Display Modes
Old 06-12-2010, 09:47 AM   #1
Tenor CS
Feeling Better!
 
Tenor CS's Avatar
 
Join Date: Oct 2008
First Name: Christian
Location: Davenport, FL (near Orlando)
Posts: 717
Trading: (2)
Cohiba
Tenor CS will become famous soon enoughTenor CS will become famous soon enough
Default Re: Computer virus is frustrating

I also like to use a linux live cd (my favorite is puppy linux) to boot up your computer to at least be able to copy all of your files to an external drive so you don't lose everything.
__________________
When the world itself seems lunatic, who knows where madness lies?
Tenor CS is offline   Reply With Quote
Old 06-12-2010, 09:48 AM   #2
bvilchez
En búsqueda.....
 
bvilchez's Avatar
5
 
Join Date: Oct 2008
First Name: Bolivar aka Jay
Location: Back in SoCal
Posts: 3,202
Trading: (76)
Bolivar MarineCorps (Active)
bvilchez has disabled reputation
Default Re: Computer virus is frustrating

Quote:
Originally Posted by Tenor CS View Post
I also like to use a linux live cd (my favorite is puppy linux) to boot up your computer to at least be able to copy all of your files to an external drive so you don't lose everything.
Already done....that was the first thing I did last night.
bvilchez is offline   Reply With Quote
Old 06-12-2010, 10:35 AM   #3
Ashcan Bill
Ol' Dude
 
Ashcan Bill's Avatar
 
Join Date: Oct 2008
First Name: Bill
Location: Henderson, NV
Posts: 1,904
Trading: (6)
Partagas
Ashcan Bill has disabled reputation
Default Re: Computer virus is frustrating

If the name of the virus/scam is Antispy-Soft, it's a widespread problem.

Do a search on your hard drive and see if you come up with any files named "tssd". If you do, you have the Antispy-Soft malware on your computer.

There is a manual way to delete it, but the various anti-virus programs probably won't touch it. Trust me, I know.
Ashcan Bill is offline   Reply With Quote
Old 06-12-2010, 11:21 AM   #4
D_A
Dave's not here
 
D_A's Avatar
 
Join Date: Oct 2008
First Name: David
Location: NC
Posts: 272
Trading: (7)
Bolivar
D_A is on a distinguished road
Default Re: Computer virus is frustrating

Quote:
Originally Posted by bvilchez View Post
Already done....that was the first thing I did last night.
If you've gotten the files you want off and you already intended to upgrade at some point, i would just format the drive and do a fresh install of the new OS.
D_A is offline   Reply With Quote
Old 06-12-2010, 03:28 PM   #5
wayner123
Country Gentleman
 
wayner123's Avatar
 
Join Date: Oct 2008
Location: Deltona, FL
Posts: 2,351
Trading: (159)
Trinidad
wayner123 has disabled reputation
Default Re: Computer virus is frustrating

Quote:
Originally Posted by D_A View Post
If you've gotten the files you want off and you already intended to upgrade at some point, i would just format the drive and do a fresh install of the new OS.


I hate to say this, but if you got one of the new TDL4 or TDSS rootkits, go ahead and reformat your hard drive. There are ways to check if you have this. Malewarebytes, bleepingcomputer and kaspersky all have great forums to help out with the problem.

The new version of the TDSS rootkits are unable to be removed or quarantined. No software company has come up with a solution yet. I had this problem a few weeks ago now and got the newest tdl4 version of the rootkit. After many days and hours of research I ran across some hacking websites. They were discussing these new rootkits and how they act. To sum it up, when the guys who get paid to hack can't figure out "how" the rootkit is even reacting, it's time to re-format.

Here's a great write up on the TDL3:

http://rootbiez.blogspot.com/2009/11...-lets-put.html

That was 2 revisions ago, and the latest ones are 10x worse. The secretly log and report any credit card numbers, bank account information, etc.
__________________
'It is an honor for a man to keep aloof from strife; But every fool will be quarrelling.'
wayner123 is offline   Reply With Quote
Old 06-12-2010, 03:44 PM   #6
Ashcan Bill
Ol' Dude
 
Ashcan Bill's Avatar
 
Join Date: Oct 2008
First Name: Bill
Location: Henderson, NV
Posts: 1,904
Trading: (6)
Partagas
Ashcan Bill has disabled reputation
Default Re: Computer virus is frustrating

Quote:
Originally Posted by wayner123 View Post


I hate to say this, but if you got one of the new TDL4 or TDSS rootkits, go ahead and reformat your hard drive. There are ways to check if you have this. Malewarebytes, bleepingcomputer and kaspersky all have great forums to help out with the problem.

The new version of the TDSS rootkits are unable to be removed or quarantined. No software company has come up with a solution yet. I had this problem a few weeks ago now and got the newest tdl4 version of the rootkit. After many days and hours of research I ran across some hacking websites. They were discussing these new rootkits and how they act. To sum it up, when the guys who get paid to hack can't figure out "how" the rootkit is even reacting, it's time to re-format.

Here's a great write up on the TDL3:

http://rootbiez.blogspot.com/2009/11...-lets-put.html

That was 2 revisions ago, and the latest ones are 10x worse. The secretly log and report any credit card numbers, bank account information, etc.
I didn't know there were new versions out. The one I dealt with a while back required some file deletions and registry edits, but I managed to disable it. Sounds like the bad guys are getting badder.

I was lucky in that the first time it tried to "call home", Zonealarm caught it and asked me for permission to let it out through the firewall. I didn't recognize the program, so I denied permission, then discovered how badly I was infected, and eventually got things cleaned up. I suspect I still have some of the code somewhere, but I killed the executable commands. Nasty bugger.
Ashcan Bill is offline   Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -6. The time now is 01:54 PM.


Powered by vBulletin® Version 3.7.4
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.
All content is copyrighted jointly by Cigar Asylum and the content provider.