Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
I'm currently at war with IS 2010. I am a veteren of the AV 2009 war. I found that when a malicious site started AV 2009 on my machine I could prvent intrusion by using
cntrl>alt>delete, and end the process with the task manager. When doing this I could stop the intrusion. When I contracted IS 2010, it immediately disabled cntrl>alt>delete so I could not stop it. Is there some immediate measure one can take when the intrusion is detected? (for future reference).
Basically the only ways to prevent infection is to use a HOSTS file, have a registry change watcher (i.e Spybot's TeaTimer), use a program such as SpywareBlaster, have a strong firewall and anti-virus/spyware program with real time protection, and practice safe surfing habits.
Thanks for replying. I use Mcafee and it did notify me of an attempted regs. change. i ticked "do not allow" but the intrusion had begun. Thats what is so befuddling. I shut off my machine with the hardware button but a few minutes later when I returned my machine had turned on itself! Apparently when it did the whole thing installed. This one is nasty. I think I got the intrusion while looking for video conversion software. BTW, Spybot is not compatable with McAfee. I know if I can get past the fake welcome screen I can fix the registry and boot this thing out. Luckily I have everything backed up.