I use another installation of Windows but same thing. Using a different operating system to look at one you're suspecting of being infected,
Nasty Virus Windows 7
- Thread starter D.P.
- Start date
I use another installation of Windows but same thing. Using a different operating system to look at one you're suspecting of being infected,
Soldato
Do you run scans with malwarebytes though? If you didnt, how would you know you didnt have a virus
how would you know you didnt have a virus
Email hi-jacked? Nope.
Bank account hi-jacked? Nope.
PayPal hi-jacked? Nope.
Warned by ISP for sending out spam? Nope.
Thanks for the help everyone. i have taken on your advice and installed NoScript & WOT & Adblock Plus, malwarebytes.
Will look into buying Kaspersky but in a few days my computer will be shipped off to the US so I will wait and buy someonethign over there.
Will look into buying Kaspersky but in a few days my computer will be shipped off to the US so I will wait and buy someonethign over there.
Hijackthis sort of does that, you have to tell it what to kill though but can just post the logfile onto a website and will tell you whats bad. Always my first port of call when dealing with something thats infected and then malwarebytes and av scans to clean up afterwards
Soldato
Kaspersky is free with Barclays online banking if you bank with them
Associate
- Joined
- 12 May 2005
- Posts
- 134
If you're gonna buy Kaspersky you may as well stay with your free AVG - they work in exactly the same way.
Associate
My own PC that uses MSE (free) is fine, my work laptop that uses Sophos picked up a rootkit at the weekend.
Do you run scans with malwarebytes though? If you didnt, how would you know you didnt have a virus
yea i manual scan with dr web cure it, microsoft saftey scanner, mbam etc, i just manual scan i dont use any real time protection
Associate
Safest thing to do is set up a vm and browse your dodgy sites from that.
Install then take a secure snapshot, revert to this snapshot every time you browse. To be double sure surf using a version of nix. I doubt there are many viruses that can cross from a linux vm to a windows host.
Install then take a secure snapshot, revert to this snapshot every time you browse. To be double sure surf using a version of nix. I doubt there are many viruses that can cross from a linux vm to a windows host.
Soldato
yea i manual scan with dr web cure it, microsoft saftey scanner, mbam etc, i just manual scan i dont use any real time protection
Thats what I used to do til I let my niece on it for an hour.. Its amazing how many viruses they can find in that time! Had to re-install
This.
Not seen a virus/browser hijack/trojan in years. Fixed plenty for other people though and this combination sorts them out.
I also use Microsoft Security essentials, I don't notice it, so it must be OK.
Man of Honour
There is so much talk about AV programs here, when simply enabling UAC and using a standard user account will increase your machine security more.
Associate
- Joined
- 10 Jan 2010
- Posts
- 480
RKill any good??
I've got to remove a "System Restore" infection and it is recommended to run RKill prior to running Rootkit removal & MBAM.
Supposedly kills known malware processes so that AV can do its job.
Should prove interesting
Associate
- Joined
- 12 May 2005
- Posts
- 134
So your MSE hasn't told you about any infections so you assume it's working, yet your Sophos detected a rootkit and you think that's bad?
It's perfectly conceivable that both of your machines have had rootkits on them for ages, yet Sophos recently updated their signatures to detect the Rootkit but MSE hasn't yet detected it.
Either way, you no idea how long it's been on your machines or what damage it's done (or what data it's stolen).
Man of Honour
That does not mean MSE ha missed a rootkit though.
Every AV has the potential to miss something. Sometimes MSE's database updates multiple times a day, it updates at least once a day anyway. regular updates are the key thing and as for the post above, the guy's work LT had a rootkit, not his home PC.
Every AV has the potential to miss something. Sometimes MSE's database updates multiple times a day, it updates at least once a day anyway. regular updates are the key thing and as for the post above, the guy's work LT had a rootkit, not his home PC.
Associate
- Joined
- 12 May 2005
- Posts
- 134
I don't think you read what I said.
I know it doesn't mean that MSE has missed a rootkit. My point was that both MSE and Sophos only protect users from the point of detection not infection.
He was alluding to that fact that his free MSE machine hasn't detected any viruses, but his work paid-for Sophos machine did, and gave the impression that MSE is therefore better than Sophos (Maybe I'm reading too much into it).
The fact is both MSE and Sophos are useless because they rely on regular signature updates - with the rise in malware the window of exposure is getting longer.
Man of Honour
That applies to virtually all AV,
Like a seatbelt, an AV package is just an additional safety measure., awareness rates higher than any safety measure.
FWIW I read exactly what you said and to me it sounded like you were putting across a certain notion hence my post.
MSE might be free, that doesn't mean it's worse than a pay for one. The database and engine are the same as Forefront EndPoint are they not? I deploy that at work and maintain it and the only difference I can see is that the name is different. The clients tehmselves look exactly the same and the database updates rollout the same as well.
Like a seatbelt, an AV package is just an additional safety measure., awareness rates higher than any safety measure.
FWIW I read exactly what you said and to me it sounded like you were putting across a certain notion hence my post.
MSE might be free, that doesn't mean it's worse than a pay for one. The database and engine are the same as Forefront EndPoint are they not? I deploy that at work and maintain it and the only difference I can see is that the name is different. The clients tehmselves look exactly the same and the database updates rollout the same as well.