Suggestion to have a malware section!

Hi! 40$ seems very reasonable to me. You have to charge for the parts and a 10% mark up it very fair! It would be interesting if you listed the programs you use to clean these infected PC's. I have about 6 that I use and I was once told by a real good malware hunter that they would do the job 99% of the time. So far they have been getting the job done. I listed them in the order I use them before ,but will do so again.
MBAM Anti-Root Kit
Adwcleaner
ESET on line scanner
MBAM free
JRT
Trend House Call
Combo Fix(If all the others fail)
I have never seen the need to clean manually, but I can see where that could be a possibility. I have followed the experts and those are the programs they use. There might be a slight variation, but basically the same programs. They do use Farbar and I have tried to learn about that. I can't see where it would take a year to learn how to use it. I'm also not sure it's necessary but it does seem like a good tool. The procedures are changing daily on malware and I'm always looking for ways to combat and fight it! I have been told that my way is I shoot a lot of things at malware and they all might not be needed and is a approach that may not be necessary. I say what the Hell does that matter if I get the job done. Ain't that what it's all about?? There are just some things that bug me about the way forums handle malware. Maybe they know better than myself.
Any way I would love to be involved and help in any small way I could.
 
Last edited:
Draygoes said:
It very much depends on the problem. How could you expect one or another or even all software suggested or otherwise to fix your problems?

From the looks of things, it was a slight mix. But that could have gone badly had it been a local infection, which it does not read as.
Click to expand...

It wasn't a program that did the fix. It was me going in to the task manager and killing the explorer processes. That freed up the system so I could get restarted and run the scans as a precautionary measure.

OK it went some thing like this.
It was an open browser window. The URL was poisoned with a persistent parameter so the browser couldn't be closed.
What powers the browser? ieexplorer.exe
How do I kill ieexplorer.exe? Processes tab in Task Manager.
Right click ieexplorer.exe. Click end process. Accept warning alert.
Did it work? Yes!
Killed explorer.exe, the GUI for windows, for good measure.
Crashed. Reboot.
Run scanners.
System clean.
Steer clear of bogus news web sites. Although I did send an email to the site's webmaster advising them of the problem. It was not polite.
 
setishock said:
It wasn't a program that did the fix. It was me going in to the task manager and killing the explorer processes. That freed up the system so I could get restarted and run the scans as a precautionary measure.

OK it went some thing like this.
It was an open browser window. The URL was poisoned with a persistent parameter so the browser couldn't be closed.
What powers the browser? ieexplorer.exe
How do I kill ieexplorer.exe? Processes tab in Task Manager.
Right click ieexplorer.exe. Click end process. Accept warning alert.
Did it work? Yes!
Killed explorer.exe, the GUI for windows, for good measure.
Crashed. Reboot.
Run scanners.
System clean.
Steer clear of bogus news web sites. Although I did send an email to the site's webmaster advising them of the problem. It was not polite.
Click to expand...
I came across that exact problem more than once. Just for the record, that normally works with other browsers as well. It rarly ends up as a local infection, and seems to show up as an "FBI Warning" in most forms.

I can see adware being local and opening up links like that, just glad its not a thing yet. Being browser oriented, it can effect you no matter what system you are running, so stuffing that into an adware package doesnt seem like it would be effective.
 
Hi Thanks guys! I have never seen that before. I'm still not sure what happened. Some times I'm a little slow. Are you saying the IE browser couldn't be closed and you had to do that by going into the task manager and killing explorer exe.
Then you scanned with all those programs and they found your system clean?? Did you just scan to make sure your system was clean?
What happened if you rebooted or shut down?
Don't holler at me. This is the way I learn!
Thanks
 
In a nutshell, yeah. Except don't confuse ieexplorer.exe, the internet browser, with explorer.exe, the windows GUI interface.
I killed the ieexplorer.exe process to free up the browser. I killed the explorer.exe process to make sure it wasn't in the main OS.

The programs run after were just to be damn sure it had not gotten in to the OS. Although some programs and reg entries were found to be PUPs unrelated to the current problem, I let the programs clear them out just to have a squeaky clean system.
 
well in the old days we would use something like IE-SPYAD and a Host file

IE-SPYAD (very old)
Resources: Ad Blocking Resources

Blocking Unwanted Connections with a Hosts File

mvps host file
Blocking Unwanted Connections with a Hosts File

in todays world lol

the Host file is still being used but now there are things like Opendns and

Norton ConnectSafe


Policy A — Security

This policy blocks all sites hosting malware, phishing sites, and scam sites. To choose Policy A, use the following IP addresses as preferred and alternate DNS server addresses:

199.85.126.10
199.85.127.10

Policy B — Security + Pornography

In addition to blocking unsafe sites, this policy also blocks access to sites that contain sexually explicit material. To choose Policy B, use the following IP addresses as preferred and alternate DNS server addresses:

199.85.126.20
199.85.127.20

Policy C — Security + Pornography + Non-Family Friendly

This policy is ideal for families with young children. In addition to blocking unsafe sites and pornography sites, this policy also blocks access to sites that feature mature content, abortion, alcohol, crime, cults, drugs, gambling, hate, sexual orientation, suicide, tobacco, or violence. To choose Policy C, use the following IP addresses as preferred and alternate DNS server addresses

199.85.126.30
199.85.127.30

i also wander if things like this could of helped

thanks

:)

James
 
freakassoid said:
The course is a complete training program that is very extensive and time-consuming. It can also be very difficult and sometimes may even be frustrating. It is NOT self-paced, and cannot be completed at your leisure. We have a large waiting list of applicants, and therefore have neither the time nor resources to devote to any but dedicated and determined students.
Click to expand...

And that's why I can never see this having a limited "only those guys" group of people helping with malware. I'd like to think I'm very good at it - I've been doing it for years but I don't have the time to do what you've described there. Then to be able to help a member but not be allowed? Frankly I'd find another place to post. There's a lot of talent across both forums, many who post and help on malware issues all the time that I'd be surprised if they actually had the time to do something that demanding.
 
I could not agree more with celegorm's post. This place has helped so many over the years and the way we do things here has worked just fine. Just because I don't have one of your sheepskins proclaiming I have been trained at your school don't mean jack. I remember when computers where a 4 bit logic chip. I have plenty of experience and I'm not afraid to share what I know.

But if this sort of nonsense keeps up I may just find another place to hang my hat.
I have to get back to cleaning my friends ate slap up laptop. Later...
 
first it's not my school i was just showing what they have to go through wow

second i did not mean to make no one mad

i can see your guy's point and agree with most but i do have respect for some of the Trusted Malware Techs i have met

a safe internet is better for all

you guy's injoy

laters

:)

James

p.s. WOW again

training what training school of hard knocks?
 
You must log in or register to reply here.

Similar threads

O
hello & mostly clueless & would appreciate mac security help after trojan attack!
Replies
0
Views
926
once2023
O
P
ComboFix Replacement
Replies
5
Views
513
PC_Cone
P
M
Thinking of upgrading from Ryzen 5 1400 to ryzen 7 5700G on same motherboard
Replies
0
Views
332
mikee
M
M
How to couple Desktop Gaming PC to Laptop for Streaming?
Replies
0
Views
535
motaro38
M
Chazzer3
Basic upgrades to a work PC - from MS Office to a bit of graphic design work
Replies
2
Views
1K
Chazzer3
Chazzer3
Back
Top Bottom