Login x
User Name:
Password:
Social Links Facebook Twitter YouTube Steam RSS News Feeds
Watch MODSonair

Members Online

»
0 Active | 28 Guests
Online:

LATEST FORUM THREADS

»
map test
CoD Mapping
first map
CoD4 MP Mapping
eXtreme+ v2.9
CoDBO Map + Mod Releases
Gaming
Q4 General

Forums

»

Welcome to the MODSonline.com forums. Looking for Frequently Asked Questions? Check out our FAQs section or search it out using the SEARCH link below. If you are new here, you may want to check out our rules and this great user's guide to the forums and the website.
For more mapping and modding information, see our Wiki: MODSonWiki.com

Jump To:
Forum: All Forums : MODSonline
Category: Software Help
Questions and answers about software.
Moderators: foyleman, Foxhound, Mystic, StrYdeR, batistablr, Welshy, DrBiggzz, supersword, playername
Latest Posts
Subscribed Posts
Search
Restricted Access Topic is Locked
Page
Next Page
subscribe
Author Topic: Viruses
techno2sl
General Member
Since: Aug 5, 2004
Posts: 2977
Last: Oct 13, 2010
[view latest posts]
Level 9
Category: Software Help
Posted: Friday, May. 7, 2010 09:49 pm
OK just a heads up for future reference, including a fail safe guide of common sense that worked for me while under attack by Malware/spyware, Trojans and the like:

Well I was talking to sparky on skype and was googling for a MOH loading screen when I thought I found what I was looking for.... boom, all programs suddenly died (apart from skype funnily enough) and lots of errors began appearing. (Obviously fake errors)

I quickly tried to get back onto Chrome to grab AVG but it wouldn't run so sparky gave me a link and I thought I'd try it through the windows browser but copy and paste had been disabled as well. (after typing it in manually it didn't connect).

So I grabbed my MP3 player, connected it to this computer and downloaded a number of programs for a google search (I know, risky) including AVG onto it, connected it back to the now mortally wounded computer (that just happens to have all my maps on it) and managed to drag these new programs to desktop.

rkill.exe - This program immediately finds and kills unwanted programs that are running, it did a very good job and managed to kill about 20 straight away leaving 1.

mbam-setup.exe - After running rkill (very important to do this step by step) I ran this. I did a full system scan which detected a hundred files that it also quarantined and then removed. (Malwarebytes' Anti-Malware

Checking Task Manager again I noticed some odd names, DKX.exe was highly suspicious to me so I did a file search and registry search.

The registry came up with 1 find which was inside a new folder that also contained two temporary .dll files. These were in Local Settings/Temp and were Un-deletable.

I installed AVG, ran it, it found the dll straight away, identified it as a back door Trojan and destroyed it. AVG also had to restart my PC which I was obviously worried about but so far it's OK apart from I can't connect Chrome, Steam and IE to the internet.

The worrying thing about this virus was I found a text file after a couple hours of searching buried within a number of directories which had a list of viruses it installed including Trojans, IP tracers, DNS corruption, Phone trace and calls (to new Zealand with the prices), Password Catchers, Credit Card Scanners and so on.

Just wondering now if I really want to risk running the PC or maybe just format the Windows Drive and reinstall while hoping the other more important HDDs are not affected, since it also listed credit card and password catchers should I be more worries, has anyone been affected by these in the past?

Also what's everyones virus checker at the moment, I've tried Kaspersky in the past and now AVG but I'm uncertain of how they weigh in amongst the rest.

- Also as a note, the only thing that appears to work Online is Skype and Steams Friends list- nothing else (no steam news/store etc)
Share |
Samuel033
General Member
Since: Dec 10, 2009
Posts: 484
Last: Dec 25, 2015
[view latest posts]
Level 5
Category: Software Help
Posted: Saturday, May. 8, 2010 12:23 am
That sounds like a nasty one. I use Avast and it has worked well. Also the usual trojan scanners like spybot and malwarebytes. Spybot has its big list of trojan baddies as well as a big db of blacklisted websites that is updated quite often. Among other things it changes the Hosts file so their address always loops back and is blocked. If you use Firefox addons like Noscript will prevent code from executing on a webpage unless you allow it. This page tries to access 4 more websites than just modsonline. None of them are harmful (google-analytics, alexa, etc) but they are not needed so I block them anyways.

I use Comodo as a firewall (I didnt install its AV) for the usual and to catch new programs trying to start or access the internet. If something isnt associated with some kind of existing rule (port 80 on IE, Photoshop and such) it asks me what to do about it. If I dont know what it is or think it has no reason to access the internet I tell it to stop. It can be a minor annoyance because every time a new program is installed or wants to make registry changes it asks the user to make rules so it will know what to do in the future. I installed my new video card yesterday and between the drivers and software I had to make rules for several things. But its worth the hassle.

Steam news/store is www based and probably related to all the web blocking problems. The Hosts file was probably altered like Spybot does but in a bad way. Skype probably uses a protocol that whatever-it-is doesnt care about. If there is nothing you need to worry about on the Windows drive I would do a full reformat and when the all the protection software is installed/updated scan everything on all drives, including archives.

If there is data then you might be better off just getting a new drive for Windows and putting the suspect one in a USB case. I doubt connecting it via USB will cause problems and you can drag whatever files you need out before wiping it.
Share |
foyleman
Preferred PLUS Member
Since: Nov 6, 2001
Posts: 95759
Last: Oct 31, 2018
[view latest posts]
Level 10
Admin
Forum Moderator
Im a fan of MODSonair
Im a HOST of MODSonair
Category: Software Help
Posted: Saturday, May. 8, 2010 04:58 am
I use common sense, luck and occasionally ESET NOD32. ESET is good, the other two are not too bad. The reason I chose ESET is because it was the most highly rated antivirus software last year and also had the smallest footprint in your tasks list. However, it's not free.

I recommend as I would do, pull the drive, install a new drive and reinstall windows. Later, hook up that other drive and only copy back what you need. A clean install makes everything better.
Go ahead... You Play I Mod : Support Modsonline by becoming a PREFERRED MEMBER today!
Have you heard the MODSonair Podcast?:
MODSonair is a weekly podcast bringing you the news from a modders perspective.
Tune in every Sunday at 12pm EST to listen LIVE.
Quake 4 Mods for Dummies - Half-Life 2 Mods for Dummies
Share |
Pokeloca
General Member
Since: Jul 31, 2009
Posts: 129
Last: Aug 19, 2012
[view latest posts]
Level 4
Im a fan of MODSonair
Category: Software Help
Posted: Saturday, May. 8, 2010 05:31 am
AVG all the way, it catches all the trojan, even the ones they say cant be found.
Share |
Mystic
General Member
Since: Apr 10, 2004
Posts: 6147
Last: Apr 15, 2018
[view latest posts]
Level 10
Forum Moderator
Im a fan of MODSonair
Category: Software Help
Posted: Saturday, May. 8, 2010 05:42 am
Im quite impressed with Avast which i am using now, i have tried them all AVG gave me too may false positives and im not sure why i stopped using eset, must have been a reason. They are all good in there own way.
Share |
.KiLL3R.
General Member
Since: Oct 26, 2006
Posts: 1437
Last: Jul 3, 2017
[view latest posts]
Level 8
Category: Software Help
Posted: Saturday, May. 8, 2010 07:22 am
MSE (Microsoft Security Essentials) is very good and also free.
Share |
tomv8
General Member
Since: Oct 5, 2008
Posts: 469
Last: Jul 14, 2010
[view latest posts]
Level 5
Category: Software Help
Posted: Saturday, May. 8, 2010 08:05 am
i made my own antivirus it keeps me safe :) but it only recognises about 3 viruses so i also use eset nod32 which is very good
Share |
batistablr
Preferred PLUS Member
Since: Jul 12, 2005
Posts: 2066
Last: Dec 23, 2015
[view latest posts]
Level 8
Forum Moderator
Im a fan of MODSonair
Category: Software Help
Posted: Saturday, May. 8, 2010 09:13 am
Most of the time when I'm on Windows I don't use an anti-virus but when needed I use AVG Free.
Go ahead... You Play I Mod : MODSonline.com
Support Modsonline by becoming a PREFERRED MEMBER today
Have you heard the MODSonair Podcast?: www.modsonair.com
MODSonair is a weekly podcast bringing you the news from a modders perspective. Tune in every Sunday at 12pm EST to listen LIVE.
Share |
Welshy
Preferred Member
Since: Feb 16, 2007
Posts: 1807
Last: Apr 15, 2018
[view latest posts]
Level 8
Admin
Forum Moderator
Im a fan of MODSonair
Im a HOST of MODSonair
Category: Software Help
Posted: Saturday, May. 8, 2010 12:21 pm
I use ESET NOD32, the same as foyle. It came pre-installed on my net book. I was really impressed by how light it is (unlike MacAfee, Norton etc that cause your system to run horribly slow). However like foyle said it's not free.

A great free one is Malwarebytes. Unfortunately it doesn't support real-time scanning so you have to do a manual scan every now and then but I am yet to come across a virus that it can't handle.
Go ahead... You Play I Mod : MODSonline.com
Support Modsonline by becoming a PREFERRED MEMBER today
Have you heard the MODSonair Podcast?: www.modsonair.com
MODSonair is a weekly podcast bringing you the news from a modders perspective. Tune in every Sunday at 5pm GMT to listen LIVE.
Share |
techno2sl
General Member
Since: Aug 5, 2004
Posts: 2977
Last: Oct 13, 2010
[view latest posts]
Level 9
Category: Software Help
Posted: Monday, May. 10, 2010 02:37 am
Cheers all I will definitely be taking up some of the virus checker suggestion here.

I've upgrades my system now from a 130gb (windows) IDE with a 500gb SATA and a 250 GB SATA to 2x 500gb SATA (1 with windows) and a 250 gb SATA as a backup.

Currently installing windows and everything is going OK, I feel it's the safest way to be sure of no lasting problems. From now on I shall never use Google to search for anything Medal of Honor [sad]
Share |
Restricted Access Topic is Locked
Page
Next Page
subscribe
MODSonline.com Forums : MODSonline : Software Help

Latest Syndicated News

»
Codutility.com up and runn...
Nice, and there still using the logo and template for the screenshots, which...
Codutility.com up and runn...
dundy writes...Quote:Call of Duty modding and mapping is barly alive only a ...
Codutility.com up and runn...
Mystic writes...Quote:It seems to me the like the site is completely dead? ...
Codutility.com up and runn...
It seems to me the like the site is completely dead?

Partners & Friends

»