Results 1 to 7 of 7
  1. #1

    Default Interesting one ... this!

    A week ago I was just doing some work in a graphics program when a virus warning flashed on the screen. XP2008 antivir!

    In less than 10 seconds it had gone right through my PC, the PC that I am networked with and 2 external hard drives that hold most but thankfully not all, of my backups which are on dvd's.
    I turned off system restore, went into safe mode and ran Trojan Remover and Malawarebytes Anti Malaware. Both programs picked up a lot of nasties but not all unfortunately.
    Anyway, after trying many things for more than 24 hours with no full success,I got out my XP disc and formatted both machines installing xp again.
    What is unusual is that after installing xp, I installed Malawarebytes again together with Eset Nod 32 and TrojanRemover then ran a scan on both PCs using MalawareBytes only.
    It picked up more than a dozen infections calling them "Back door" and "Trojan Downloaders"
    This is on a newly formatted pair of computers????
    Very upset, I ran full scan with Eset and with TrojanRemover ... they both came up clean!
    Has taken me a week and I have bought two new external hard drives and also formatted and installed XP and now all my programs again.
    Eset Nod32 is doing the protection now with TrojanRemover and Xoft Spy as my insurance against this happening again.
    Still don't know where this nastie came from but the last download I had made before this started was "Malabytes Anti Malaware"

  2. #2
    Computer Technician wainuitech's Avatar
    Join Date
    Aug 2007
    Location
    Wellington
    Posts
    27,785

    Default Re: Interesting one ... this!

    Hopefully thats a typo - no such thing as Malawarebytes - its Malwarebytes - as per the link in my sig - did you download it from the actual Malwarebytes site, or some other third party site ? On their site theres on 3 locations - Download.com, Mayjorgeeks.com or their own site.

    That Antivirus xp / 2008 can be a dangerous bug - you can get it just by simply going on the internet without protection , wrong place wrong time - I know of a few people who have somehow managed to contract it while going online to get protection, either AV or Antispyware.

    Personally I always have the software on a CD or pen drive I use for installing software - putting a PC on the internet with no protection can be " asking for it"

  3. #3

    Default Re: Interesting one ... this!

    Never been much good at typing sorry
    Yep, It was the real Malwarebytes from the proper download site "Cnet"

    I never have and never would go online without antivirus software fully working and updated and this is why I am confused as to where it came from.
    I was not even working online when it appeared.
    Am very confused as at one stage Malwarebytes found a total of 60+ infections in my pc and 320GB external and both Eset and Troan Remover found none at the same time.
    Has been good with no problems found by Eset or TR for last couple of days so I am happy but will keep Malwarebytes on my pen drive for now

  4. #4
    Crossmember feersumendjinn's Avatar
    Join Date
    Feb 2007
    Location
    Levin
    Posts
    2,609

    Default Re: Interesting one ... this!

    Did you turn off System Restore on all your drives, including the networked PC and the external drives, maybe where your reinfection came from; also recheck (with Nod32) your backup dvds and flash drives if you use any.
    Were the original external drives defective in some way? Why didn't you just reformat them?
    "...anyone who expects a source of power from the transformation
    of these atoms is talking moonshine..."
    - Ernest Rutherford (1871-1937)

    --------------------------
    "After your hands become coated with grease, your nose will begin to itch."

  5. #5

    Default Re: Interesting one ... this!

    No I disconnected all other drives and tried cleaning everything seperately to start with before ending up formatting.
    I had a total of 290GB of progams/data on the two externals that I was trying to save before giving up and formatting. Had been considering getting new externals anyway.
    I am more concerned as to why Malwarebytes was the only program that was seeing these infections, even in a newly formatted hard drive?

  6. #6
    Senior Member pctek's Avatar
    Join Date
    Feb 2005
    Location
    In the Wild West
    Posts
    24,212

    Default Re: Interesting one ... this!

    It could be that it was just seeing cookies? Or its a flase positive. Did you note what entries it flagged as bad?

    Even NOD has done a false positive now and then.

    Also you should be aware NOD is for antiVIRUS, you need at least 2 antiSPYWARES in addition. XoftSpy is OK, but I'd pair it with Spybot at least.
    wipe your paws.

  7. #7

    Default Re: Interesting one ... this!

    Yeah perhaps they may have been false positives but false or not, they're now history.
    Eset is always running and as well as that, I have Adaware 8, TrojanRemover, TrojanHunter and XoftSpy.
    Have found that Spybot is far too slow and have not bothered with it this install as with MalwareBytes.
    Personally believe that XoftSpy is an excellent program
    Any downloads I do need to face a barrage of checks before they show their faces in my system.

    I am actually thinking of downloading MalwareBytes again and doing a trial on my spare PC with it. Will definately NOT be networked when /if I do this

Similar Threads

  1. This looks interesting
    By JJJJJ in forum PressF1
    Replies: 10
    Last Post: 31-03-2008, 03:55 PM
  2. Hijack this - anything interesting
    By Erger in forum PressF1
    Replies: 3
    Last Post: 12-08-2007, 08:23 PM
  3. INTERESTING??
    By notechyet in forum PressF1
    Replies: 1
    Last Post: 18-06-2006, 05:22 PM
  4. Interesting
    By JJJJJ in forum PressF1
    Replies: 11
    Last Post: 15-11-2005, 10:15 PM
  5. This is Interesting
    By hamstar in forum PressF1
    Replies: 1
    Last Post: 06-06-2003, 01:29 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •