Jump to content
Posted 02 September 2009 - 12:32 PM
Posted 02 September 2009 - 05:21 PM
An ounce of prevention is worth a pound of cureSpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript
Posted 03 September 2009 - 02:15 PM
Edited by MkFly1, 03 September 2009 - 03:18 PM.
Posted 05 September 2009 - 08:33 AM
I had an infection occur two days ago. I clicked a link on tweakyourpage dot com (dont go there) while looking at page layouts.
Downloaded all the usual tools, but could not run Combofix, MBAM or HJT. Was unable to rename MBAM, but managed to rename and start Combofix, which stopped responding. Was able to get Combofix to start in Safe Mode, but it shut down at about stage 33. Kept restarting in safe mode and running Combofix, and managed to get it to complete on the third or fourth try. Combofix killed PC_Antispyware2010, but after rebooting, Total Security was now providing the bogus spyware alerts instead, 75% of all Windows services were disabled, a new desktop background appeared with ominous spyware warnings over a blue background textured with tiny binary text. I was able to download and run a fresh copy of MBAM at this point (after enabling and restarting necessary network services), and a quick scan appeared to resolve the problem, identifying and cleaning Trojan.Vundo.H and Rogue.Multiple.H. A subsequent full scan found only a few old remnants in a quarantine from last year.
0 members, 0 guests, 0 anonymous users