[colug-432] Malware
Brian Jackson
mookiemcdermot at gmail.com
Fri Jun 24 07:24:10 EDT 2011
Malwarebytes is one that is commonly blocked along with the task manager. I
often use SuperAntiSpyware to scan along with sysinternals process explorer
to temporarily kill the malevolent processes. Combofix is good if needed
after your SuperAntiSpyware scan. We've been seeing variants in our office
that set all program files and everything in the user profile to hidden
which is extra irritating as it hides eveything in their network profile as
well as on their local machine.
Reformatting is always the safest option and if the three items above don't
clean it I don't waste any additional effort.
On Fri, Jun 24, 2011 at 6:39 AM, Steve VanSlyck <s.vanslyck at spamcop.net>wrote:
> malwarebytes.com
>
> ----- Original Message -----
> From: "Thomas W. cranston" <cranston.thomas at gmail.com>
> To: Central OH Linux User Group - 432xx <colug-432 at colug.net>
> Date: Thu, 23 Jun 2011 23:41:25 -0500
> Subject: [colug-432] Malware
>
> > I need a link to a malware detector. There is malware that infects
> > winders, and won't let you do AV updates, or even go to any AV site
> > (Norton, etc).
> >
> > I ran into this before fixing a neighbors winders box. There was a link
> > to a test that confirmed whether or not a machine was infected w/this
> > particular malware or not, and then instructions for removing it. Can
> > anybody send me a link to the detector, or remember the name of that
> > malware.
> >
> > Tom
> > _______________________________________________
> > colug-432 mailing list
> > colug-432 at colug.net
> > http://lists.colug.net/mailman/listinfo/colug-432
> >
> _______________________________________________
> colug-432 mailing list
> colug-432 at colug.net
> http://lists.colug.net/mailman/listinfo/colug-432
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.colug.net/pipermail/colug-432/attachments/20110624/ac3f5b9f/attachment.html
More information about the colug-432
mailing list