i got some message about some hacktool.rootkit virus that i now cannot get off my computer. looked up some stuff on the internet about it and said "attacker may have full control of your system". Do these people really have nothing better to do? Im in college with no credit cards or money for that matter but if they do have full control of my system i hope they can see this :thefinger::thefinger::thefinger:

Never got that one that I know of, but back when I was in college I had a problem with virii on my comp, backed up a couple really important things and wiped the system clean. I mean the entire harddrive clean in a reformat. Loaded all my programs back on, spent nearly a month getting things back the way I had them configured, and sucked in another one that crashed my comp. Went through it all again, and son of a b.... just over a month later, I was doing it again.

Kinda makes you want to go bust some fingers with a tire iron, don't it?


If you have the disk to put Windows (presuming you have a windows machine) and the disks for all the programs, you can download a program for free (pretty sure it's still out there) called Ultimate Boot Disk. Burn it onto a CD. Back up only the really critical things, the more stuff you back up, the greater the risk of transferring the virus to your fresh install. The boot disk will give you the tools to wipe your harddrive clean. I'd have to look at mine to be able to instruct you exactly on using it, but I suggest only like 3 passes... I did 10 passes once and it took a couple hours on a 900mhz P3.

How to avoid getting a computer virus:

1. for the love of God, stop using Internet explorer!!! This is the browser that most virus creators attack, and it has quite a few security issues. Microsoft is getting better at addressing them, but do you really want to risk it? Get Firefox or Opera. both are very decent browsers, and Firefox has add ons that will let you block ads and other malicious stuff. If you run AVG free virus, it puts an add on that checks every link from what ever page you are on for malware.

2. Make sure you have a decent antivirus program on your computer and make sure it is updated regularly. at least have it look for updates daily. you can set it to look for updates and scan while you are at work. Norton sucks, I have had a few well known viruses blow by Norton. Norton is also a resource hog... I recommend AVG free, it works very well, and is like the name implies, free. There are others out there that are decent as well such as PC Cillin (costs about $40)and is pretty effective. Avast! I have heard good things about but have not used it personally, and it is free as well.

3. keep anti spyware/malware programs on your computer and updated regularly. Get Spybot Search and Destroy and Adaware. update both regularly. Spybot S&D has a feature that will immunize your browsers from bad websites. it will not load known bad webpages. And note that there is an exponential increase in bad web pages blocked for IE as opposed to Firefox or Opera...again, refer to step 1.

4. watch what sites you visit. many "warez" or porn sites are infected. be well equiped antivirus wise if you want to visit these sites...And if you do any bit torrent downloading make sure you scan each file before opening it!

5. and a word about bit torrent and downloading pirated copies of software... While I will not get into the legal ramifications of this, Do not use a pirated copy of antivirus software!! remember, antivirus software deals with the security of your system. if it is pirated, the security of that software is compromised. a good chance that all the hacker did was disable the antipirating portion, but how do you know? it could be he set it up to skip a certain virus description in its scans..

6. and while this step will not help you from getting infected, this will make your life easier if for what ever reason you need to reformat. Make regular backups of everything on your HD that you do not want or can't replace such as photos, save game files, documents etc onto a cd r or flash drive. you can also back up your bookmarks, config files and other folders that set your computer to the way you like it, so that all you have to do is copy over these files and you are up and running the way you had it before the reformat.

AJ

I can't figure out how people get viruses or spyware. I see it all the time as an IT worker but personally I have always had very little security software on my own computers, and only had probably 3 viruses and one spyware infection. Those were all from stuff people had given me to "try"...Symantec Antivirus caught all of it though.

I agree with 97RangerXLT. I use pretty much everything he said, lol. Firefox, Adblock plus, No Script, AVG Free, Spybot S&D, AdAware. One thing though. If you have the dough, while I was going to school for my A+ certification (doing Net+ now) they said that NOD32 by Eset is supposed to be the best antivirus and it isn't a resource hog like Norton. Right now Newegg has a sale going on for it and you can pick it up for $29.99 for a year.

http://www.newegg.com/Product/Product.aspx?Item=N82E16832114005

I stick strictly to the basics. Microsoft, Norton, and other safe programs. Only install what you need and keep it clean. Has worked great for years and still works great. Now if you are like my dad where he installs everything from the internet, best to just reinstall the OS. Will save a lot more time then trying to track down every file that makes the PC slow up.

FYI: I do massive amounts of BitTorrnet. Still no viruses with my setup. I download on the verge of 1GB or more a week and upload back 1.5x times that amount. I also Raid 1 2x 1TB HDD and keep a third 1 TB HDD just for the OS. So if I do get compermised, it will not be a huge loss. And I'll just use the old Win XP OS to clean up the Vista HDD.

well thanks for all the advice. and yes I always use internet explorer. I guess ill start using firefox. I run adaware and ran symantec antivirus that wouldnt get rid of it. So i uninstalled symantec and downloaded avg and that wont get rid of it. It catches it everytime it tries to open new files but this just keeps happenening so I dont really know what to do. I'm assuming restoring the system to an earlier date wouldnt work? I think its going to have to go the IT building at school because I dont wanna get in too far over my head on this one.

No, system restore won't work. System restore only works with drivers and settings, not files.

a system restore will archive a virus already on the computer. turn off system restore, boot the computer into safe mode (hold down f8 while booting up) And run the virus scan. make sure your antivirus is up to date before doing so.

AJ

hmm sounds like bad maleware, download http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html its malewarebytes onces it downloaded run it in safe mode, to get to safe mode turn off computer tap f8 untill it gives you booting options do not choose safe mode with networking ( unless you need on the internet to download malewarebytes, but you seem to be on this forum just fine) okay once in safemode run malewarebytes. always works for me no matter how bad the infection.


oh and its totally free, i dont know if it still is an issue or not but for awhile maleware was not easily detected or deleted by your average anti virus.

Go here and follow the directions. It works.
http://www.osiris-spywareguide.com/

I've also heard that booting from a bootable floppy and then scanning for viruses (viri??) is a good method...but for some reason I've never gotten around to creating a bootable floppy for this computer...

what ever my computer got infected with disabled my ability to update my antivirus and spyware detector...... also disabled my ability to restore....... gonna do a clean wipe with XP64 maybe

Disconnect from the internet and use another PC to research and download the fix. As long as your not connected to the net, they cannot do anything with your personal info, if they have access to it at all.

I've also heard that booting from a bootable floppy and then scanning for viruses (viri??) is a good method...but for some reason I've never gotten around to creating a bootable floppy for this computer...


wouldn't work for me ......... I don't have floppy support and ever trie to make a boot disk for windows XP? you would need a zip drive and it is very difficult to get the mother board to recognize a Zip drive as the A drive ...... it can be done but the Bios does't want to do it.

wouldn't work for me ......... I don't have floppy support and ever trie to make a boot disk for windows XP? you would need a zip drive and it is very difficult to get the mother board to recognize a Zip drive as the A drive ...... it can be done but the Bios does't want to do it.

Hmmm...well, if you have a floppy IDE connection on the Mobo you can easily add a floppy drive...and they are cheap insurance against something like that...XP has the option to create an ERD (emergency recovery disk) so it might be something to consider for the future...

If/when I upgrade to XP it would be one of the first things I do...

Hmmm...well, if you have a floppy IDE connection on the Mobo you can easily add a floppy drive...and they are cheap insurance against something like that...XP has the option to create an ERD (emergency recovery disk) so it might be something to consider for the future...

If/when I upgrade to XP it would be one of the first things I do...


I don't know ....... I got a laptop and have never seen the motherboard.

I don't know ....... I got a laptop and have never seen the motherboard.

Ahhhhhhhh....makes all the difference in the world...but you could probably get a 3 1/2" floppy to fit into your CD/DVD drive bay for that purpose...depending on the make of course...

But I'm also sure you could get an external drive for it...

External Floppy for Notebooks (http://www.tigerdirect.ca/applications/searchtools/item-details.asp?EdpNo=2727402&csid=_25)

Not sure though if the XP version for your laptop would support it to create the ERD or even a set of restore diskettes...but if you get plenty of viruses then it might be a worthwhile investment...

I mirrored the hard drive to my external hard drive last time I had to reformat and reinstall a bunch of crap....... i am going to ghost it if i don't upgrade to XP64 the next time I reformat. infact i can run from my external drive if i went into the bios and changed the boot order, but i don't always have my EHD with me...... anything important to worry about I store online. this computer uses my wifi network but it is isolated from the rest of the network..... I can't even print from here....... I am kinda curious whit this virus does and how it disabled everything so I am tracking to see what else it infects.

I don't know if this will help you, but it couldn't hurt to try:

1750: Downadup (Conficker, Kido) infection. The first version of this virus which is recognized by AVG as Downadup (alternativelly I-Worm.Generic) has been detected at the end of November / begining of December, 2008. Currently there are over 300 unique versions of this virus. AVG detects and protects against all known variants of the worm.

The main method of infecting computers used by this virus is a security vulnerability in Windows operating systems, which is described in MS Security Bulletin MS08-67 released on October 23, 2008 (including links for respective Windows update files). Apart from using this security vulnerability, the virus spreads also across local networks by attacking weak passwords for shared folders, and using the Autorun function on removable devices.

To protect against the virus, it is necessary to install the mentioned Windows update and make sure your AVG is fully up-to-date. In case your computer is infected by this virus, it may not be possible to update your AVG correctly. In order to allow correct AVG update, please proceed as follows:

Open Start -> Run.
Type 'cmd'.
In the opened command line windows type the following command and press Enter:
net stop dnscache
It will be possible to update your AVG now. Once updated, run an AVG scan to remove the infection:
AVG -> Computer Scanner -> Scan whole computer
When the scan is finished, please restart your computer.

I don't know if this will help you, but it couldn't hurt to try:

it worked. it allowed me to update and it took it all of 1 sec to find that worm. learn something new everyday.

thanks.

edit: I had another virus that disabled my processor fan and was causing my computer to randomly shut down....... and here I thought that fan had gone out again, but its running now.

15 min into the spyware scan I had 162 threats........ nothing has been able to update for 5 weeks.

Ahhhhh...the old corrupt DNS cache trick...

I've heard of ipconfig /flushDNS...but it doesn't actually stop the DNS caching...

Ahhhhh...the old corrupt DNS cache trick...

I've heard of ipconfig /flushDNS...but it doesn't actually stop the DNS caching...

?????????

?????????

Just another way to flush the DNS cache...I almost went into a two paragraph explanation but figured you probably don't need that right now...but if you are interested in finding out how the virus affected your browser and updates you can google the command (net stop) and you'll find tons of info...

BartPE

i got some message about some hacktool.rootkit virus that i now cannot get off my computer. looked up some stuff on the internet about it and said "attacker may have full control of your system". Do these people really have nothing better to do? Im in college with no credit cards or money for that matter but if they do have full control of my system i hope they can see this :thefinger::thefinger::thefinger:

dont use norton. if it expires it slows down your computer