speedemon90

I see, I'm usually one of the one's that just updates it immediately. I'm pretty sure I should be up to date with everything.

And I believe you a lot of people don't do this. I was at my friends house earlier, and when she turned her computer on, I was using it, and on the bottom right there were at least 3 things asking for updates! Java, adobe, windows also. I asked her about it, and she just said I dont feel like doing it
And her computer is awfully slow. And only 2 years old!

#1 STUNNA

^yup! Privacy nuts get pissed if updates install automatically so they want to only be notified when they're available but then no one actually does the updates and then they get a virus.

Mizouse

Meh I never update and never get viruses

#1 STUNNA

except for the one you almost got a couple days ago....

Mizouse

alex2364

Just did a full scan of my PC and it found all of these. Why didn't it catch these before my full scan? I'm wondering if I should run Malwarebytes just to be safe and make sure nothing else is on my PC.

Gfaze

Holy crap!!

You must've recently visited a page with malicious code in their Javascript. I think you were infected by one piece of code which installed itself and downloaded all the other infections.

#1 STUNNA

What are the file locations? When it does quick scan it doesn't scan every file on your drive it scans the places where malware is most of the time.

And up have you updated your java in a while? You got CVE's back from 2008 I'm sure those holes in Java have been plugged by now.

This is why I stress for people upgrade their third party shit like flash, reader and java. They've become the most targeted by hackers for exploits and they don't update automatically like windows does.

Please people seriously hit up www.ninite.com check the shit you need and it will update all of them in like 4 clicks...

#1 STUNNA

and yes you should do a malwarebytes scan but delete your temp internet files first with ccleaner...

alex2364

My Java is up to date. They were all located in C:\Users\Profile\AppData\LocalLow\Sun\Java\Deploym ent\cache or C:\Users\Profile\AppData\Local\Temp. I ran Malwarebytes and it said everything is clean, so I think I'm good!

#1 STUNNA

Which browsers do you use? I'd say IE and Firefox. The locallow folder is the temp folder for IE, I'm sure you saw the recent developments in my Chrome thread about protected mode and low user rights. Well that's the folder it writes to. Firefox writes to the Local folder since it does't run in low user rights.

Run Ccleaner it will clean out your Java cache folders....

#1 STUNNA

I have a feeling that this is related. It's also a Java exploit.

Miz you should run a full scan too

and run Ccleaner like I said last week I don't say these things for my health

Whiskers

By the way, start, run, mrt starts the Microsoft Malicious Removal Tools on all Windows OS's.

#1 STUNNA

^yeah but if MRT finds something then MSE should find the same thing and more....

alex2364

Yeah, I use Firefox 95% and IE 5%. I cleared my Java cache folder manually.

Whiskers

Yep, but its good if the client doesn't have MSE installed.

Mizouse

Meh.

You know, the more I thought about it, IMO the reason most people don't update programs on their computer is because they don't want to restart their computer.

I hate it. Even if I had a fast booting computer I'd still hate.

Sometimes I install updates but just not restart the computer, and I just ignore the nagging on needing me to restart.

#1 STUNNA

Yeah but this is the thread for people who use mse.....

Whiskers

Whatever douchebag..

Mizouse

thanks

#1 STUNNA

???

Mizouse

http://www.microsoft.com/security/po...tid=2147632168

that is what i had.

from the SWEDT thread

#1 STUNNA

I don't hangout in the swedt thread....

Actually the best order is to run Ccleaner first cause that deletes a bunch of temp files which is a common place for malware to hangout and doing that alone can clean them out. Also it reduces the scan times for MSE and malwarebytes cause they both scan the temp files in a quick scan. So if you've deleted all the temp files then there's none to scan and that will knock a few minutes off of each scan.



Some day you guys will start listening to me..........someday

I mean I deal with this shit for my job, I do this shit all the time. I know what the fuck I'm doing, when I say you should do this or that. I say it cause it works, it's what I do day in and day out.

Mizouse

well i ran a full scan of MSE first, that was because i didnt have CCleaner installed.
so after it kept popping up after restarting, i remembered you mentioned it, so i got it and ran it and then ran a malwarebytes scan.

so far nothing.

Mizouse

btw im using chrome

#1 STUNNA

Damn that malware looks nasty! Where you running firefox?

Password stealer, key logger, allows remote access .....

Mizouse

yea, i was using firefox at the time.

a windows kept asking me to grant internet access to some random program. so i kept blocking it.


so far none of that is happening anymore.


once i read the description on it, i was like "shit"

rza49311

iTrader: (1)

^^ I've seen some nasty ones lately Malwarebytes nor MSE would even touch. Had to run TDSSKiller and that got it but on another pc even that didn't work so I tried Combofix and that got it.

Whiskers

MSE is not doing the same job as it used to sadly.

#1 STUNNA

Yup, that's the Alureon rootkit, that thing is a mofo! But TDDSkiller takes care of it very easy!

#1 STUNNA

Miz maybe you should try out the IE9 beta and the current beta of MSE. The beta version of MSE integrates with IE and provides additional protections against malicious scripts and web-based attacks. Also I think IE has a slightly better sandbox technology than Chrome but Chrome's sandbox works in XP too.

Also IE9 is a pretty darn good browser.

MSE Beta:
http://go.microsoft.com/fwlink/?LinkId=197385

IE9 Beta:
http://windows.microsoft.com/ie9

Mizouse

ill switch over when its official not beta..

onebadna1nsx

I've got a weird problem when using Firefox and going to google. Sometimes when I search stuff on google and click the links, sometimes i'm redirected to some random search site, and other times i'm actually directed to the sites. I did a full system scan with both MalwareBytes and MSE but both show up no virus/trojans, or any errors.... I updated firefox and it still does it..

#1 STUNNA

That just could be a lame ass site your clicking on gaming Google's search algorithm. Sometimes the links that show up are garbage ass sites that are generic search engines.

or are you say clicking on a link to what you know is a legit site that you've visited before and being redirected to another site. That's a browser hijack.

check you add-ons in firefox see if anything funny is in there. maybe run hi-jack this or autoruns

onebadna1nsx

#2
I ran malyarebytes but nothing shows up at all!

#1 STUNNA

I saw that and editorized my post

onebadna1nsx

Got it stunna, i'll let you know when I get home if anything works.

rza49311

iTrader: (1)

Same deal I was talking about earlier. You do google searches then click links and it redirects you to random sites. Get the TDSS Killer and run it. If it comes up empty, get Combofix, should clean it up.

#1 STUNNA

The thing that tells me to run TDSS is if you can update MSE definitions or not. that's always blocked so is windows update.

Download TDSSKiller Here
Oh snap they updated it with a GUI interface

http://support.kaspersky.com/viruses...?qid=208280684

onebadna1nsx

Thanks rza49311.
I guess i'll try it in this order: Check addons, TDSS, hijack this, autoruns