Spyware getting cleverererer?

[SexyGreyFox]

Came downstairs to see this, worried me at first the buggers.
On the screen are 1000s of Os & 1s

Malwarebytes stopped it though.

 

[braveheart]

look like to me this message are scam message - dont download any software that came out with this message - it complete scam. Make sure you have good software like Webroot, Spyware Doc or other but not like this one.

 

[ShakenNstirred]

Came downstairs to see this, worried me at first the buggers.
On the screen are 1000s of Os & 1s

Malwarebytes stopped it though.

didnt stop it well enough i`d say
as it still managed to get on your screen

 

[Dave85]

My brothers laptop is infected badly with this rubbish so having to pick it up tonight to have a look. Looks like symantec endpoint couldnt stop it either. His came through a website using active x

 

[Burnsy2023]

Spyware is a scourge upon this earth
It has absolutely no worth
Why do people make this, it's such a shame
They could spend time making awesome games.

 

[RobH]

What's up with the poetry Burnsy, did I miss something?

Anyway, if malware managed to change your desktop I'd say that it's too late, you can no longer trust the system. Malwarebytes may have detected it but who's to say it got rid of it? It could easily be living on silently in the background.

 

[Burnsy2023]

What's up with the poetry Burnsy, did I miss something?
.

http://forums.overclockers.co.uk/showthread.php?t=18029205

 

[Ewanb75]

Lol..

"Your're in danger." and finishes "And in some cases...." some cases what..


Thats a bad one if its infected your desktop. Microsoft have been reporting lots of attacks on ie6 and ie7 this week

 

[div0]

Anyway, if malware managed to change your desktop I'd say that it's too late, you can no longer trust the system. Malwarebytes may have detected it but who's to say it got rid of it? It could easily be living on silently in the background.

I never quite understood that logic.

It suggests that because you've detected something, then you're more at risk of something 'undetected' still being on your system.

But even after a clean install, how would you know that the 'undetected' something hadn't again exploited whatever vulnarability led to it getting on your system in the first place? Whether that be you installing a 'dodgy' program and not realising that its infected with something, or whether it be a security weakness in your system.

It just seems to lead to a cycle of paranoia.

By all means if you know where the spyware came from, then a fresh install is most likely the best option. But if you don't know where it came from, then a fresh install is just as likely to end up infected by an undetected nasty, as your current ('cleaned') system.

 

[Burnsy2023]

A bit of technical know how means that you can see if there are any nasties left there. Sysinternals has all the tools you need to reveal even the most stubborn rootkits. Cleaning them up might not be as trivial though.

RobH does have a point though. Malware can change system files or leave other security holes after being removed. The Sony DRM rootkit is a good example of this.

 

[me227]

Loving the excellent grasp of the English language that they have!

 

[theheyes]

How did you get it? Did you just install a dodgy active x control?

 

[PiKe]

Dwarf porn websites.

 

[SexyGreyFox]

Dwarf porn websites.

You missed fat and sticky out ears.

I mistakenly double clicked an EXE file I knew I shouldn't have done.

 

[Pho]

didnt stop it well enough i`d say
as it still managed to get on your screen

The free version of Malwarebytes doesn't have an active scanner, I believe the pro version does which should have stopped it.

Dm, do you use a virus scanner at all?

 

[Terrier_Jimlad]

funny you should bring this up, i'm currently cleaning up a girls PC from work with the same "scam" software telling her she is totally infected and needs to buy this software ...

apparently she got it when her fella was searching for Sienna Millar videos on youtube, clicked an external link, it asked him to install some software to see the full vid, and yup you guessed it, he clicked away and bang ... unlucky ... he wont be getting any for a while lol

 

[Destination]

At work we have symantec endpoint.
It appears to fail very badly, as this year from general facebook/email and other SFW browsing there have been 4 infections that Symantec endpoint has both failed to stop and then failed to detect. As far as I am aware my boss pays quite a bit for the software licences given the number of terminals in use.

I guess it'll end in web access being withdrawn, but whena free copy of superantispyware can detect and completely remove vundo variants which are recent and bloody common, I'd expect Symantec endpoint which is fully up to date might at least spot them coming over the hill, even if it can't remove them.

Dire situation.

 

[SexyGreyFox]

Dm, do you use a virus scanner at all?

NOD32, Adaware and Malwarebytes.

I very stupidly double clicked the first file of 50 rar files which was an EXE file when I should have known better and NOD picked it up immediately but it still put that tasty picture on my screen.

 

[craig3000]

Little buggers

 

[metalmackey]

NOD32, Adaware and Malwarebytes.

I very stupidly double clicked the first file of 50 rar files which was an EXE file when I should have known better and NOD picked it up immediately but it still put that tasty picture on my screen.

So much for the improvements in detection in Nod32 v4 then (If you are using v4 that is LOL).