Unconfigured Ad Widget

Collapse

Looks like my computer is being attacked.. Any help?

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1
    fredieusa
    Member
    • Mar 2008
    • 439

    Looks like my computer is being attacked.. Any help?

    Resolved -

    Originally posted by fredieusa
    This was nuts but got it. it was a malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon).

    And here is the solution ..

    http://support.kaspersky.com/viruses...?qid=208280684



    Below is my situation - I thank you in advance for any help you may provide. I am not a computer guy.

    I clicked on a link that was posted in a very old post on one of these gunny sites ( I was doing research). My nortonAV and windows defender warned me and did not think much of it. System asked me to add it as an exception and I did, I dont know where to go any remove it. This was the only unusual thing that happened and out of the ordinary place I surfed

    Soon after I started getting this.. and they pop up about every 5 minutes now continuously.



    This is what the details show..


    By now the system is about half as slow.

    Then I started getting these


    Last edited by fredieusa; 06-05-2011, 12:22 AM.
    Tags: None
    • #2
      rackem1899
      Member
      • Mar 2011
      • 165
      Don't really know what that is but this has always worked for me on work comps, I'm unofficially the it guy.
      On a removable flash drive download ( save to flash drive, don't run)
      1. Rkill (rename before saving, 'step 1)
      2. Malwarebytes (rename step 2)
      3. Avira (rename step 3)
      4. Super anti spyware (rename step 4)
      Once all saved, pull flash drive, restart it in safe mode with networking (press f8 constantly till you see the option)
      Plug in flash drive and install all programs. Run and be sure to update prior to scanning (step one is not a scan but a blocker)

      Again I am not an IT guy but this has worked for me many times

      Ps. Stop using IE. download firefox and install the add on noscript and you will not have to deal with this as often (and will have less ads while surfing)
      For Sale:
      Sig SP2022
      http://www.calguns.net/calgunforum/s...d.php?t=872589

        Comment

        • #3
          rackem1899
          Member
          • Mar 2011
          • 165
          Oh you may need to re save your original HOST file (can be found online) since some viruses/malware will modify it
          For Sale:
          Sig SP2022
          http://www.calguns.net/calgunforum/s...d.php?t=872589

            Comment

            • #4
              AAShooter
              CGN/CGSSA Contributor
              CGN Contributor
              • May 2010
              • 7188
              NoScript is awesome.

                Comment

                • #5
                  Cokebottle
                  Seņor Member
                  CGN Contributor - Lifetime
                  • Oct 2009
                  • 32373
                  Originally posted by fredieusa
                  This was nuts but got it. it was a malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon).

                  And here is the solution ..

                  http://support.kaspersky.com/viruses...?qid=208280684
                  I got the same thing Thursday night after following the link in the female bodybuilders thread.

                  System slowed a bit, then both AVG and Malwarebytes started going bugnuts.
                  The Yontoo.Ragepage app was installed, and it loaded a toolbar on Yahoo... I could go directly to a web page, but any links from Yahoo would redirect to an "alternate search" site.

                  Spent half the night Thursday and all Friday cleaning and scanning and cleaning again, stuff kept showing back up.
                  Oh, one of the first things I did was run TDSSKiller... that cleared the rootkit and exposed even MORE crap, but I wasn't able to completely clean it until booting into safe mode.
                  Malwarebytes and Spybot got everything cleaned up, then ran a command-line AVG scan on every file in the machine to verify.

                  I also did a fair amount of manual editing in the registry.

                  So far so good, system hasn't run this smoothly in a few months, so I'm not sure when the TDSS rootkit was installed, but Yontoo and the other stuff all loaded Thursday evening.
                  - Rich

                  Originally posted by dantodd
                  A just government will not be overthrown by force or violence because the people have no incentive to overthrow a just government. If a small minority of people attempt such an insurrection to grab power and enslave the people, the RKBA of the whole is our insurance against their success.

                    Comment

                    • #6
                      Rivers
                      Senior Member
                      • Feb 2007
                      • 1630
                      Just a reminder to turn OFF the System Restore function in XP, etc. Have the good security software installed and updated (definitions), then restart in Safe Mode. Then run the fixes to clear up the problems. Keeping the good security softwares installed on a flash drive is very handy.
                      NRA Certified Instructor: Basic Pistol Shooting

                        Comment

                        Previous template Next

                        Calguns.net Statistics

                        Collapse
                        Topics: 1,860,524   Posts: 25,069,800   Members: 355,125   Active Members: 5,761
                        Welcome to our newest member, GJag.

                        What's Going On

                        Collapse

                        There are currently 5019 users online. 56 members and 4963 guests.

                        Most users ever online was 65,177 at 8:20 PM on 09-21-2024.

                        Working...
                        UA-8071174-1