donetao

Hi! I wish I could get this in everyone's head. What a good feeling it is to know you can be back up and running exactly like the day you created the back up image; even if you have to replace your HDD. Sure you can probably restore back to factory and then spend days restoring your Apps. and Windows up dates and possibly drivers. Why not get your PC exactly like you want it and then create a back up image with a 3 rd party software like Macrium Reflect. Do what ever. Live dangerous. Take chances if you want. You really mess up and even get infected . No problem:you just put W PE 3.1 CD(W7) (WPE4) W8 in your DVD drive and restore your OS just like it was the day you created the image. In 15 minutes+ you will be back up and running just like nothing ever happened. I've been there and done that many times. Why aren't you doing this?? I just don't understand why you're not doing this. It'd so easy and will remove a lot of worry!! Take the time and effort to learn how to do this. Please!!!

Hi I'm not recommending this, but this is the way I keep my registry cleaned up. I uninstalled Tweaking.com Windows All in One with REVO. Not a lot left behind unless you're a clean freak like me. I used RegSeeker to search for the left overs. 15+ were found and I was able to clean them from my registry. No big deal, but to me it does matter. If I can clean up the left behinds, why not do it! I have used RegSeeker for years for this. This is the main thing I use this software for. RegegSeeker has been around for ever. I'm not recommending this, so don't start preaching to me, because I don't believe in registry cleaners either. In the right hands, they can be a asset. I also use Search Everything to find left behind files and delete them. PS Why did I go to all this effort?? Because I want a clean install of that software and not a blotched install!! Got to do some thing to get some action here on the forum!!

Hi favorite gang! I bet this will get some feed back about Ransonware and how to fix it. Good old hated Microsoft!! They can't fix or get any thing right and MBAM is getting just like them:ohno: :rotf:http://www.microsoft.com/security/portal/mmpc/shared/ransomware.aspx http://www.microsoft.com/security/portal/rss/toplist4rss.aspx

Good question Dougie. I have had a couple PC's where it seemed it was time to save the data and restore to factory. SAS is under new management and is trying a come back. I'm new to Hitman Pro. I only used it twice. Of course they could mean some else is wrong. IMHO these days you need layered security. I run MBAM Premium with my Anti-Virus . I have heard some good things about Ad-Adware to run with your Anti-Virus. Ad-Adware is under new management also. I started this thread because I think you should have some good trusted on line scanners in your arsenal . My choices are MBAM, ESET on Line Scanner, Adwcleaner and MBAM Anti- Root and JTR. My opinion is some of the free programs like Avast and Avira running with MABM or Ad-Adware and common sense with keep you protected. If you don't click it, there's a good chance you won't get the ticket!;) Hi @DSTM I probably would give Combo fix a shot if; I thought is was a losing cause to continue cleanning , before reformatting.;) I'm also considering Pete's suggestion about adding Windows Repair(All In One) to my arsenal. Looks like a great tool for fighting malware. http://www.tweaking.com/content/page/windows_repair_all_in_one.html

Hi! @N3 ! A good way is to check them out with Virus Total to see if others find them malicious!! https://www.virustotal.com/

Hi! @Rich-M I scanned with Combofix once before I read all the warning about how it could ice your PC. Do you think that it's a little hipped up about the danger of using Combofix?? I have heard a lot of techs say they use Combofix and never had problems. I have not used it on a seniors PC yet. I like Autoruns also. I have heard it's best to scan with a Root Kit first, but I don't the reason. I start with MBAM Root Kit, then Adwcleacer, then MBAM free, then ESETon line scanner, then JRT. That usually gets the job done. Then I go looking for rouge tool bars and snake oil programs.Those tools all uninstall them selves, except MBAM. Hitman Pro is OK , but it's not free. It's free for thirty days, but there's a bit of a hassle getting the free version. MBAM Premium has gotten a little greedy, but I have a life time license and like Cindy, I'm staying with MBAM all the way. They have made some bo bo's along the way just like all the software venders have. Everyone learns from their mistakes! I learn every day from my mistakes! Here are 10 signs that you may be infected. I copied these from the internet! Unexpected Crashes: If you’ve ever experienced this, you probably already know the hard way that your system crashing or regularly switching to the terrifying blue screen of death is a major red flag that something is very wrong. If it’s happening to you now, immediately scan your system for infections. Slow System: If you you’re not running any resource-heavy applications on your system but it’s running slowly anyway, it may be because your system is infected with a virus. Excessive Hard Drive Activity: Similarly, if you notice a lot of hard drive activity even when your computer is idle, this is a warning sign of a potential infection. Strange Windows: If strange windows pop up during the booting process, particularly those that warn you of lost access to various drives on your system, something is wrong. Peculiar Messages: If those troubling dialogue boxes crop up when your system is running alerting you that various programs or files won’t open, this is also a bad sign. Bad Program Activity: If your programs go missing, are corrupted, or start to open themselves without your initiation, and/or if you receive notification that a program is attempting to access the Internet without your command, this is a serious warning sign that you are the victim of malware. If you receive notification that a program is attempting to access the Internet without your command, this is a serious warning sign that you are the victim of malware. Random Network Activity: If your router is constantly blinking indicating a high level of network activity when you aren’t running any significant programs or accessing high amounts of Internet data, something might be wrong. Erratic Email: If your emails aren’t sent, or you hear from your contacts that they’re getting strange emails from you that you did not send yourself, this is a strong indication that your system has been compromised (or that your email password has been stolen). Blacklisted IP Address: If you receive notification that your IP address has been blacklisted, consider this about as sure a sign as any that your PC is not in good hands — there’s a very good chance it means your system has been compromised and is being used as one tentacle in far-reaching, spam-sending botnet. Unexpected Antivirus Disabling: Many malware programs are designed to disable the antivirus suites that would otherwise eradicate them, so if your antivirus system is suddenly not operating this could be a sign of a much larger problem. If you receive notification that a program is attempting to access the Internet without your command, this is a serious warning sign that you are the victim of malware. Edit To Add Link: http://blog.kaspersky.com/signs-of-malware-infection/

Thanks Dougie. Nod 32 is the same as ESET on line scanner. That's all I needed to know. I run ESET on line scanner all the time on seniors PC's Wheww I think we finally got that straitened out! Yes It does take a long time to run the first scan! Excellent on line scanner!

I know Nod32 is a paid program. Some paid programs also have online scanners you can run run like ESET online scanner! I know Cindy runs Nod32 http://www.eset.com/us/online-scanner-popup/

OK thanks for that tip. Does Nod have a on line scanner?? I would like to try it! I use Adwcleaner all the time!

I uninstalled Search Everything with REVO and reinstalled it. Adwcleaner still flagging it. It has never done that before. I hate computers!! I know you don't go looking for things to fix Dougie; but I do, and that really aggravates me that It's flagging Search Everything as malware. Oh well thanks for you help Dougie! I agree a FP! PS Does Nod have a on line scanner??What other security programs do you scan with? Thanks mate!

Hummm ! I installed over the top. Do you think that's good enough?? Still flagged as malware! I will uninstall and reinstall!

Adwcleaner is flagging Search Everything as Malware. Any one here have that problem. Who should I notify about this FP?? Thank you!

Hi What are some of your favorite tools for scanning for Malware. Here are 10 of Mine. No particular order! I have used all of them!! Malwarebytes Anti Root Kit Malwarebytes Free Adwcleaner ESET on line scanner Trend Micro House House Emsisoft Emergency Kit Microsoft Safety Scanner JRT ZOEK F-Secure Online Scanner!

This is how this malware is being billed on the internet. I'm not saying Adobe is in shown in the malware. It looks like Adobe flash icon, so I guess that's the reason it is being billed as Adobe flash Zero Day. I don't know??????? New Adobe Flash Zero-Day found in the Wild!!

Hi Guys and Gals! Here' show to get rid of this malware!

Hi I'm not familiar with your machine. You might give this a look!! http://smallbusiness.chron.com/make-acer-laptop-boot-cd-51622.html

I only know what I read. If you need examples. Did you not see this in the screen shots I posted?? According to MBAM. I suggest you go here and read about this!! https://blog.malwarebytes.org/exploits-2/2015/01/new-adobe-flash-zero-day-found-in-the-wild/

That's the best I can do for now!! I have Malware Anti-Expolit installed and I guess that's why I have escaped this??? https://www.malwarebytes.org/antiexploit/

I have seen on other help forums where the OP is told to uninstall Chrome because If has been corrupted and then reinstall Chrome I personally don't like Chrome and It seems to me that it has become a target for this malware attack. This is all over the internet! I think MBAM is aware of this!! http://www.symantec.com/connect/blogs/fake-adobe-flash-update-installs-ransomware-performs-click-fraud https://blog.malwarebytes.org/exploits-2/2015/01/new-adobe-flash-zero-day-found-in-the-wild/ Security researcher Kafeine has discovered a Zero-Day in Adobe Flash Player distributed through the Angler Exploit Kit. An Oday is an exploit for a vulnerability that has not been patched yet, meaning that even the most up-to-date systems could get infected. [Edit: the vulnerability has now been assigned CVE-2015-0311] Flash has been plagued with critical vulnerabilities in the past few months and surpassed the no longer popular Java as the most exploited plugin. We immediately got our hands on this new Zero-Day (thanks Kafeine) and were able to replay it as well with the goal of testing our Anti-Exploit product: With the latest version of Internet Explorer (IE11) and latest version of Flash (16.0.0.257), the exploit was successfully blocked by Malwarebytes Anti-Exploit. Security researcher Kafeine has discovered a Zero-Day in Adobe Flash Player distributed through the Angler Exploit Kit. An Oday is an exploit for a vulnerability that has not been patched yet, meaning that even the most up-to-date systems could get infected. [Edit: the vulnerability has now been assigned CVE-2015-0311] Flash has been plagued with critical vulnerabilities in the past few months and surpassed the no longer popular Java as the most exploited plugin. We immediately got our hands on this new Zero-Day (thanks Kafeine) and were able to replay it as well with the goal of testing our Anti-Exploit product. With the latest version of Internet Explorer (IE11) and latest version of Flash (16.0.0.257), the exploit was successfully blocked by Malwarebytes Anti-Exploit.

I have been able to clear this up with Malwarebytes free, Adwcleaner and JTR. I have sense learned I need to reset the browsers. Sorry Didn't mean to interfere!!

No sir! I run W7 but I worked on a PC with W8. The computer was infected really bad. The senior asked me how that could have happen. She was using windows defender Anti-Virus. I said jokingly you must have clicked on a porn site. She said the only thing she clicked on was a adobe up date. At the time I was unaware that that was a causing all these problems. I cleaned up the PC, but the Adobe update popped up again on Google Chrome and was infected again. I cleaned it a gain and uninstalled Chrome. Every thing seemed to be alright. She told me she would in stall Firefox latter. I haven't heard from her, so I assume all is well.That's all I know. It happened on another PC also and I did the same thing to clear it up. It was W7. It doesn't seem to be happening on IE or Firefox so far!!

That's good advise and I'm trying to teach seniors not to click the Adobe up date and to call me. Adobe is the only one that I have heard of, but I'll keep my ears and eyes open. I'm sure there will be more copy cats. Google Chrome seems to be the target so far. I would guess because it has become so popular,but I don't know that! Haven't heard of any fix. Just don't click on it!! Adobe is a magnet for malware spreaders.

Hi Boss! The way I'm understanding this, you don't need to have it installed to get infected, but I could be wrong. Some how your browser gets infected. Sorry I don't know more. I will do some more research latter!!

I'm not paranoid either! I'm just reporting what I'm finding here at Golden Oaks and hope I'm helping members and guest here on our forum!! On these infected or compromised websites, cyber criminals will display a pop-up box stating that you need to updated or install a piece of software. If you click on the “Download” or “Click to install now” button, instead of installing an update, you’ll agree to download an adware or a malicious programs onto your computer. “Flash Player Update” pop-up ads are distributed via adware or other malicious programs. Malicious websites, or legitimate websites that have been compromised, may display this pop-up ads within your web browser.

I'm not a trained malware fighter. I just know what I'm reading from Adobe andfrom other sources, and what I have seen here at Golden Oaks!