Sponsor Message:
Non Aviation Forum
My Starred Topics | Profile | New Topic | Forum Index | Help | Search 
PC Malware Goes To Porn Sites  
User currently offlinecomorin From United States of America, joined May 2005, 4896 posts, RR: 16
Posted (4 years 3 months 3 weeks 6 days 16 hours ago) and read 3119 times:

A friend of mine had her PC infected yesterday with some malware. It pops up a a lot of dialog boxes, disables task manager, and installs short cuts to porn sites. An initial attempt to clean up her machine worked, but the virus reappeared on booting up.

Have any of you experienced this, and is there a removal tool anywhere for this particular pest?

Thanks all.

36 replies: All unread, showing first 25:
 
User currently offlinenewark777 From United States of America, joined Dec 2004, 9348 posts, RR: 30
Reply 1, posted (4 years 3 months 3 weeks 6 days 16 hours ago) and read 3105 times:

Sounds like it's firmly entrenched. Reinstalling the OS is the probably best at that point, especially if she has a backup.


Why grab a Heine when you can grab a Busch?
User currently offlinefuturepilot16 From United States of America, joined Mar 2007, 2035 posts, RR: 0
Reply 2, posted (4 years 3 months 3 weeks 6 days 16 hours ago) and read 3086 times:

Quoting comorin (Thread starter):
Have any of you experienced this, and is there a removal tool anywhere for this particular pest?

Thanks all.

Yes. Try and download Spybot search and destroy on a separate computer, then transfer the file to the infected computer.



"The brave don't live forever, but the cautious don't live at all."
User currently offlineFly2HMO From , joined Dec 1969, posts, RR:
Reply 3, posted (4 years 3 months 3 weeks 6 days 16 hours ago) and read 3086 times:

The only place she could have gotten something like that was if she was visiting shady non-pg rated sites in the first place  but I digress...

First off, need much more details, what's the OS? What antivirus or other protections are installed?

Quoting newark777 (Reply 1):
Sounds like it's firmly entrenched. Reinstalling the OS is the probably best at that point, especially if she has a backup.

        

NEGATIVE. Do this as a last resort ONLY. The OS is not toast yet by any means. I'm talking from experience.

Quoting comorin (Thread starter):
Have any of you experienced this, and is there a removal tool anywhere for this particular pest?


Run the system in safe mode before doing any of the following installations and/or scans.

The best I've used )and I've used ALL the major ones) is Spybot http://download.cnet.com/Spybot-Sear...-Destroy/3000-8022_4-10122137.html

After that, have her get rid of whatever antivirus she has and tell her to get Avast (as above, best one I've ever used) http://www.avast.com/free-antivirus-download

And finally she should install this: http://www.javacoolsoftware.com/spywareblaster.html

[Edited 2010-05-04 15:18:50]

User currently offlinesignol From United Kingdom, joined Oct 2007, 3003 posts, RR: 8
Reply 4, posted (4 years 3 months 3 weeks 6 days 16 hours ago) and read 3070 times:

Trend Micro offer a free home-user virus scanner and cleanup tool:
http://housecall.trendmicro.com/uk/
(I should say that I work for a security distributor, and Trend is one of the Enterprise products we sell. Other products are available)

Give it a go, it can't hurt if you're going to reinstall Windows anyway.

I once had a virus that used to give a popup, which would reboot the PC whenever you clicked "ok" on it. I googled the exact text in the popup, and found a tutorial on removing the virus - which files to delete, and which registry entries to edit (note: be very careful with registry edits!) Since then, no problems.

signol

[Edited 2010-05-04 15:18:54]


Flights booked: none :(
User currently offlinenewark777 From United States of America, joined Dec 2004, 9348 posts, RR: 30
Reply 5, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 3037 times:

Quoting Fly2HMO (Reply 3):
NEGATIVE. Do this as a last resort ONLY. The OS is not toast yet by any means. I'm talking from experience.

I'm talking from experience as well, and since I always have everything completely backed up, if an issue arises it's easier to scrub everything and restore the system. It could take longer to research the programs and do all the scans, and it still might not fix it. Don't back up? Well, you get a wag of the finger, and hopefully a lesson is learned.  




Why grab a Heine when you can grab a Busch?
User currently offlineCPH-R From Denmark, joined May 2001, 5990 posts, RR: 3
Reply 6, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 3037 times:

If she has Windows installed, she could also give MSSE a shot. It's a free anti-malware/spyware programme from Microsoft: http://www.microsoft.com/security_essentials/

User currently offlineFly2HMO From , joined Dec 1969, posts, RR:
Reply 7, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 3017 times:

Quoting newark777 (Reply 5):

I'm talking from experience as well, and since I always have everything completely backed up, if an issue arises it's easier to scrub everything and restore the system.

Sure that works too, yet doing what you do would take what, 1hr if you're lucky?

That's my last resort for many reasons. Although it could be good excuse for upgrading to a newer OS   

Quoting CPH-R (Reply 6):
If she has Windows installed, she could also give MSSE a shot.

It's worthless. Won't pick up a damn thing for me while all my other security programs will.


User currently offlinecomorin From United States of America, joined May 2005, 4896 posts, RR: 16
Reply 8, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 3004 times:

Guys, thank you for the many suggestions! She is running Windows Vista by the way. I may try and help out tomorrow and will let you know how it goes. I am still awaiting Klaus' suggestion...  

btw will a system restore to an earlier date help?


User currently offlinenewark777 From United States of America, joined Dec 2004, 9348 posts, RR: 30
Reply 9, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2975 times:

Quoting comorin (Reply 8):
Guys, thank you for the many suggestions! She is running Windows Vista by the way. I may try and help out tomorrow and will let you know how it goes. I am still awaiting Klaus' suggestion...

I have a Mac as my primary computer as well (but have been using PCs for years also), but didn't want to be the douchey Apple fan everyone loves to hate.  



Why grab a Heine when you can grab a Busch?
User currently offlineFly2HMO From , joined Dec 1969, posts, RR:
Reply 10, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2975 times:

Quoting comorin (Reply 8):
I am still awaiting Klaus' suggestion...

His solution is of course selling your soul to satan, err... Steve Jobs 
Quoting comorin (Reply 8):
btw will a system restore to an earlier date help?

unlikely.


User currently offlineKlaus From Germany, joined Jul 2001, 21442 posts, RR: 53
Reply 11, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2933 times:

Quoting Fly2HMO (Reply 10):
Quoting comorin (Reply 8):
I am still awaiting Klaus' suggestion...

His solution is of course selling your soul to satan, err... Steve Jobs

I see I'm already getting burned in effigy, as usual. Reminds me of certain rituals in mid-east countries...   

To the point: Stomping on it with various tools until you don't see anything happening any more may mean you've gotten rid of the obvious nuisance, but it does not mean that any keyloggers (password skimmers) and botnet services have really been removed. It is quite possible that there are multiple components to the malware, and some of it may not be obvious. Being thorough beyond the visible layer is probably a good idea.


User currently offlineRyan h From Australia, joined Aug 2001, 1543 posts, RR: 1
Reply 12, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2931 times:

Quoting newark777 (Reply 5):
Quoting Fly2HMO (Reply 3):
NEGATIVE. Do this as a last resort ONLY. The OS is not toast yet by any means. I'm talking from experience.

I'm talking from experience as well, and since I always have everything completely backed up, if an issue arises it's easier to scrub everything and restore the system. It could take longer to research the programs and do all the scans, and it still might not fix it. Don't back up? Well, you get a wag of the finger, and hopefully a lesson is learned.

Formatting the drive I have found is easuer (although can be a bit time consuming) than trying to get all the bits of the virus out, and once you have done that there is no gaurantee critical files have not been damaged.



South Australian Spotter
User currently offlineJBirdAV8r From United States of America, joined Jun 2001, 4489 posts, RR: 21
Reply 13, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2913 times:

Quoting Fly2HMO (Reply 3):
The only place she could have gotten something like that was if she was visiting shady non-pg rated sites in the first place

Not always true. There are "sites for the naive" that contain those kinds of things. The abyss that is Myspace is full of that crap.

Quoting Fly2HMO (Reply 3):
NEGATIVE. Do this as a last resort ONLY. The OS is not toast yet by any means. I'm talking from experience

It may be drastic, but--all things considered--it's usally the best option.



I got my head checked--by a jumbo jet
User currently offlineFly2HMO From , joined Dec 1969, posts, RR:
Reply 14, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2904 times:

Quoting JBirdAV8r (Reply 13):
It may be drastic, but--all things considered--it's usally the best option.

For the not-so-tech-savvy, perhaps. But doing a thorough manual removal of malware on your own and checking system integrity is really not that hard. Google has all the answers.


User currently offlineracko From Germany, joined Nov 2001, 4856 posts, RR: 20
Reply 15, posted (4 years 3 months 3 weeks 6 days 15 hours ago) and read 2886 times:

Quoting CPH-R (Reply 6):
If she has Windows installed, she could also give MSSE a shot. It's a free anti-malware/spyware programme from Microsoft: http://www.microsoft.com/security_essentials/

I second that. And tell her to actually read the User Account Control warnings so it doesn't happen again.


User currently offlineAaron747 From Japan, joined Aug 2003, 8133 posts, RR: 26
Reply 16, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2871 times:

Another nice utility to use if you have located the offending file is Killbox.

http://killbox.net/

I've used this thing several times for entrenched files that don't seem to want to stop running, even after various attempts within Windows to shut them down. This thing kills and deletes them for good every time.



If you need someone to blame / throw a rock in the air / you'll hit someone guilty
User currently offlineajd1992 From , joined Dec 1969, posts, RR:
Reply 17, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2860 times:

I'm part of the "backup & wipe" posse.

There's no other way it'll be properly gotten rid of, in my experience - and it's worth doing because you never know what else is lurking about in the PC.


User currently onlineOA412 From United States of America, joined Dec 2000, 5242 posts, RR: 25
Reply 18, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2842 times:

Quoting comorin (Thread starter):
A friend of mine had her PC infected yesterday with some malware. It pops up a a lot of dialog boxes, disables task manager, and installs short cuts to porn sites. An initial attempt to clean up her machine worked, but the virus reappeared on booting up.

Have any of you experienced this, and is there a removal tool anywhere for this particular pest?

Thanks all.

I had a similar thing happen to my computer years ago. IIRC, it all came from an email I opened (by the way, talk about a good lesson in not opening email from people you don't know). Anyway, I ended up having to take it to a computer repair place, and they pretty much had to reinstall the OS and remove the virus (I did not have a backup as the computer was secondhand).



Hughes Airwest - Top Banana In The West
User currently offlineSuperfly From Thailand, joined May 2000, 39854 posts, RR: 74
Reply 19, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2831 times:

Quoting comorin (Thread starter):
A friend of mine had her PC infected.....

Sure, blame your friend.  



Bring back the Concorde
User currently offlinenewark777 From United States of America, joined Dec 2004, 9348 posts, RR: 30
Reply 20, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2817 times:

Quoting Superfly (Reply 19):
Sure, blame your friend.

It was just a pop-up, I swear...  



Why grab a Heine when you can grab a Busch?
User currently offlineLASoctoberB6 From Japan, joined Nov 2006, 2380 posts, RR: 1
Reply 21, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2813 times:

Quoting Fly2HMO (Reply 3):
The only place she could have gotten something like that was if she was visiting shady non-pg rated sites in the first place but I digress...
Quoting Fly2HMO (Reply 3):
I'm talking from experience.

  



[NOT IN SERVICE] {WEStJet}
User currently offlineSuperfly From Thailand, joined May 2000, 39854 posts, RR: 74
Reply 22, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2810 times:

Quoting newark777 (Reply 20):
It was just a pop-up, I swear...

Oh I am sure something popped up alright!  



Bring back the Concorde
User currently offlinecomorin From United States of America, joined May 2005, 4896 posts, RR: 16
Reply 23, posted (4 years 3 months 3 weeks 6 days 14 hours ago) and read 2777 times:

Quoting Superfly (Reply 19):
Quoting Superfly (Reply 19):
Sure, blame your friend.

It was just a pop-up, I swear...

I promise it wasn't me! Really!

Quoting Aaron747 (Reply 16):
Another nice utility to use if you have located the offending file is Killbox.

I will download. I know what you mean by files that keep reappearing.

Quoting CPH-R (Reply 6):

The IT guy did put in n her PC yesterday.

Quoting Klaus (Reply 11):
To the point: Stomping on it with various tools until you don't see anything happening any more may mean you've gotten rid of the obvious nuisance, but it does not mean that any keyloggers (password skimmers) and botnet services have really been removed. It is quite possible that there are multiple components to the malware, and some of it may not be obvious. Being thorough beyond the visible layer is probably a good idea.

Good points, will keep in in mind - appreciate your advice.


User currently offlineSuperfly From Thailand, joined May 2000, 39854 posts, RR: 74
Reply 24, posted (4 years 3 months 3 weeks 6 days 13 hours ago) and read 2735 times:

Quoting comorin (Reply 23):

I promise it wasn't me! Really!

That's OK.
We all surf porn.



Bring back the Concorde
25 Aaron747 : The key is knowing where to get really great stuff without putting one's system in harm's way. Fortunately the sites with the crappiest material seem
26 flanker : I am waiting for the apple crowd to show up here..
27 Post contains images TSS : Well, here's one: And here's another: And then there's me. My few bits of advice on this subject have already been offered by my esteemed colleague M
28 Post contains images Fly2HMO : good catch lol
29 Post contains images LASoctoberB6 : Thanks. I try.
30 JETSTAR : Have you tried running System Restore and back dating the computer to before the date she got the virus. A friend of mine opened an e-mail from a know
31 Fly2HMO : Your friend got lucky then. System Restore is not a reliable way of removing viruses or malware. The more aggressive types of these programs will not
32 Post contains links Longhornmaniac : http://www.techsupportforum.com/secu...-center/virus-trojan-spyware-help/ You'll thank me later. I had a really vicious virus before I came to Oz, and
33 CPH-R : Even worse, you can have viruses & malware hide in old system restores, making your clean-up be in vain. Personally I've disabled system restore
34 comorin : I'd like to thank everyone for their valuable suggestions. The person involved decided to do a system restore against my better judgement and it seeme
35 MasterBean : I had this a few days ago. I didn't have the computer on for a day and when I turned it back on it had magically disappeared.
36 Post contains images Confuscius : There's porn on the net? Interesting, I didn't know that.
Top Of Page
Forum Index

This topic is archived and can not be replied to any more.

Printer friendly format

Similar topics:More similar topics...
And The 2016 Olympics Goes To...Rio De Janeiro! posted Fri Oct 2 2009 09:51:12 by AmricanShamrok
Fired For Marriage To Porn Star posted Thu Jul 23 2009 21:10:00 by Mirrodie
IRELAND: And 'The Late Late' Goes To... posted Mon May 11 2009 12:52:58 by EISHN
And The Oscar Goes To... posted Sun Feb 22 2009 12:19:03 by FatmirJusufi
Nobel Peace Prize Goes To Peace Broker Ahtisaari posted Fri Oct 10 2008 03:59:50 by Mortyman
Bill O'Reilly Goes To Harlem posted Tue Sep 25 2007 06:37:33 by D L X
Harry Potter Goes To Court, And Wins! posted Tue May 29 2007 21:34:38 by AA777
And The Golden Snowball Award Goes To... posted Wed May 9 2007 04:34:55 by KSYR
Kirkie Goes To Donkeys! posted Fri Mar 2 2007 22:46:54 by TedTAce
And The Oscar Goes To.... posted Mon Feb 26 2007 02:46:36 by TedTAce