another virus infiltrated my security essentials

S

serpentracer

New member
Member
VIP
Local time
12:10 PM
Messages
118
boy this thing has now let 3 viruses over take it. pretty much any virus I've gotten (can't even tell you how on the last one. was doing a search with bing and bam it took over my computer)
this time it was one that is supposed to be already known about.

at first it stopped it from installing but then while it was trying to stop it another instance was allowed to install.:confused:

it was easy to remove by doing a system restore and then the security essentials removed it for good. except it hid all of my libraries (videos pics and documents) I thought they were deleted so I started to do run my backup restore and I noticed that the originals were only hidden.

but come on...this is the 3rd time security essentials has let me down. and I never visit porn sites or any of that stuff.

6859358239_4099b5cfc1_b.jpg
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)

My Computer My Computer

At a glance

Windows 7 Professional SP1 64-bitIntel Core 2 Duo Processor E8300 @ 2.83GHz4.00 GB Dual-Channel DDR2 @ 332MHz (5-5-5-15)Intel(R) G33/G31 Express Chipset Family
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Dell Inspiron 530
OS
Windows 7 Professional SP1 64-bit
CPU
Intel Core 2 Duo Processor E8300 @ 2.83GHz
Motherboard
Dell Inc. 0RY007 (Socket 775)
Memory
4.00 GB Dual-Channel DDR2 @ 332MHz (5-5-5-15)
Graphics Card(s)
Intel(R) G33/G31 Express Chipset Family
Sound Card
Integrated 7.1 Channel Audio
Monitor(s) Displays
Acer G245HQL 23.6" LED(1920x1080@60Hz)
Screen Resolution
1920 x 1080
Hard Drives
Disk 0 HITACHI 1TB OS Installed - Disk 1 HITACHI 1TB For Backups
Keyboard
Dell USB Keyboard
Mouse
Dell Optical USB Mouse
Internet Speed
DSL 10 meg
Antivirus
Symantec(SEP)
Browser
Pale Moon
Yeah, I had similar problems with MSE. That is why I went back to Norton. MSE is for 'light use'. My wife uses it and never had any problem.

Do what Flatiron says. Images are a much better protection than any AV program. I know guys that do not run any AV program but image every day. That may be a bit steep, but it works for them. Take an image 2 or 3 times per week. Then you are not liable to lose a lot when you set the system back.
 

My Computer My Computer

At a glance

Vista, Windows7, Mint Mate, Zorin, Windows 8from 1.6GHz Duo to i7
Computer Manufacturer/Model Number
HP, Dell, Gateway, Toshiba - 4 laptops and 2 desktops
OS
Vista, Windows7, Mint Mate, Zorin, Windows 8
CPU
from 1.6GHz Duo to i7
Monitor(s) Displays
2x HP w2207
Hard Drives
5x HDD, 7x SSD, 12x Externals
Keyboard
with trackball - no mices
Mouse
Trackball mice
Internet Speed
DSL 6000
serpentracer said:
but come on...this is the 3rd time security essentials has let me down. and I never visit porn sites or any of that stuff.
Click to expand...
Do you or someone else go on sites and download stuff. The ads,site or the files you download yourself can give you a virus. Need to cautious when going to those type of sites.
 

My Computer My Computer

At a glance

Windows 10 64bitAMD Phenom II X4 925 (Deneb)(2.8GHz) OC 3.4GHzCorsair Vengeance DDR3 4GBX2 (8192MB)XFX HD 6870 1GB (OC)- 940MHz core, mem 1150MHz
Computer type
PC/Desktop
Computer Manufacturer/Model Number
custom build
OS
Windows 10 64bit
CPU
AMD Phenom II X4 925 (Deneb)(2.8GHz) OC 3.4GHz
Motherboard
M5A78L-MLX Plus
Memory
Corsair Vengeance DDR3 4GBX2 (8192MB)
Graphics Card(s)
XFX HD 6870 1GB (OC)- 940MHz core, mem 1150MHz
Monitor(s) Displays
Vizio 26' 1920x1080 / Acer 1336x768
Screen Resolution
1920x1080 60Hz /1336x768
Hard Drives
Kingston Digital 60GB SSDNow V300/500gb HDD Western Digital 7200rpm (/WD 160GB HDD 7200rpm
PSU
CORSAIR CX600 600w
Case
AZZA Orion 202 EVO
Cooling
cooler master hyper TX3 cpu cooler
Keyboard
Razer DeathStalker
Mouse
Logitech Optical Gaming Mouse G400
Antivirus
Defualt on win 10
Browser
Firefox
Other Info
cpu is overclocked in bios
whs said:
Yeah, I had similar problems with MSE. That is why I went back to Norton. MSE is for 'light use'.
Click to expand...
Same thing happened to me about 9 months ago.

Trying to find Vipre or Norton at a good price before Norton expires in 3 months.
 

My Computer My Computer

At a glance

Windows 7 Professional SP1 64-bitIntel Core 2 Duo Processor E8300 @ 2.83GHz4.00 GB Dual-Channel DDR2 @ 332MHz (5-5-5-15)Intel(R) G33/G31 Express Chipset Family
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Dell Inspiron 530
OS
Windows 7 Professional SP1 64-bit
CPU
Intel Core 2 Duo Processor E8300 @ 2.83GHz
Motherboard
Dell Inc. 0RY007 (Socket 775)
Memory
4.00 GB Dual-Channel DDR2 @ 332MHz (5-5-5-15)
Graphics Card(s)
Intel(R) G33/G31 Express Chipset Family
Sound Card
Integrated 7.1 Channel Audio
Monitor(s) Displays
Acer G245HQL 23.6" LED(1920x1080@60Hz)
Screen Resolution
1920 x 1080
Hard Drives
Disk 0 HITACHI 1TB OS Installed - Disk 1 HITACHI 1TB For Backups
Keyboard
Dell USB Keyboard
Mouse
Dell Optical USB Mouse
Internet Speed
DSL 10 meg
Antivirus
Symantec(SEP)
Browser
Pale Moon

My Computer My Computer

At a glance

Windows 10 Pro x64 ; Xubuntu x64Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz16GB Corsair Vengance DDR3 @ 661 MHz Dual Cha...EVGA NVidia GTX 560 1024MB
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Golden Mk. I.4
OS
Windows 10 Pro x64 ; Xubuntu x64
CPU
Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz
Motherboard
Gigabyte P55A-UD3R Rev.1. Award BIOS F13
Memory
16GB Corsair Vengance DDR3 @ 661 MHz Dual Channel (9-9-9-24)
Graphics Card(s)
EVGA NVidia GTX 560 1024MB
Sound Card
Realtek Integrated
Monitor(s) Displays
Dual Samsung SyncMaster 2494HS
Screen Resolution
1920*1080 and 1920*1080
Hard Drives
1*Samsung 840 EVO 120GB SSD;
1*OCZ Vertex 2 60GB SSD;
2*Samsung F3 SpinPoint 1TB in RAID0;
1*Samsung F1 SpinPoint 1TB;
2*Western Digital 1TB External USB 3.0
1*Western Digital 500GB External USB 3.0
1*Seagate 500GB External USB 2.0
PSU
Thermaltake ToughPower QFan 750W
Case
Thermaltake Element S VK60001W2Z
Cooling
Corsair H60 Water Cooling, 2*230mm and 2*80mm case fans
Keyboard
Logitech G110
Mouse
Logitech MX518
M1GU31 said:
serpentracer said:
but come on...this is the 3rd time security essentials has let me down. and I never visit porn sites or any of that stuff.
Click to expand...
Do you or someone else go on sites and download stuff. The ads,site or the files you download yourself can give you a virus. Need to cautious when going to those type of sites.
Click to expand...

nope this is my computer no one else uses. it happened as I was using it. I wasn't even on any crazy website when the attack happened. I was litterally in the bing search results when I got the popup of an attack. this stuff is getting dirty and the a holes making them are getting more and more clever.
you don't even have to click on anything to get one now. they start downloading and installing in teh background without you even knowing. all of windows defenses are useless. none of them work. my system is set on max security after the last attack but that clearly doesn't work. as this one even allowed itself to do everything without interference from windows
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)
Golden said:
Hi,

This trojan is usually installed via download of some rogueware. Its extremely malicious and known to mine your system for personally identifiable information.

Download and run TDSSKiller from here:

How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?

Post back what it finds.

Regards,
Golden
Click to expand...


it returned no threats found. security essentials was able to remove it but it also "allowed" it to install as it was also removing one instance of it. it was crazy how it did it.

I might look into the kapersky stuff. I keep hearing a lot of people say it's the best out there.
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)
Hi,

If that was the case, we would all have this infection, and no-one would use MSE.

One reason you may continue to have problems is because you haven't been able to clean out the original infection, and it self-replicates. Rootkits are notorius for this. Often, the only fix is to format and do a complete reinstallation.

Run TDSSKiller, and lets see how deep this infection has run.

Regards,
Golden
 

My Computer My Computer

At a glance

Windows 10 Pro x64 ; Xubuntu x64Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz16GB Corsair Vengance DDR3 @ 661 MHz Dual Cha...EVGA NVidia GTX 560 1024MB
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Golden Mk. I.4
OS
Windows 10 Pro x64 ; Xubuntu x64
CPU
Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz
Motherboard
Gigabyte P55A-UD3R Rev.1. Award BIOS F13
Memory
16GB Corsair Vengance DDR3 @ 661 MHz Dual Channel (9-9-9-24)
Graphics Card(s)
EVGA NVidia GTX 560 1024MB
Sound Card
Realtek Integrated
Monitor(s) Displays
Dual Samsung SyncMaster 2494HS
Screen Resolution
1920*1080 and 1920*1080
Hard Drives
1*Samsung 840 EVO 120GB SSD;
1*OCZ Vertex 2 60GB SSD;
2*Samsung F3 SpinPoint 1TB in RAID0;
1*Samsung F1 SpinPoint 1TB;
2*Western Digital 1TB External USB 3.0
1*Western Digital 500GB External USB 3.0
1*Seagate 500GB External USB 2.0
PSU
Thermaltake ToughPower QFan 750W
Case
Thermaltake Element S VK60001W2Z
Cooling
Corsair H60 Water Cooling, 2*230mm and 2*80mm case fans
Keyboard
Logitech G110
Mouse
Logitech MX518
Golden said:
Hi,

If that was the case, we would all have this infection, and no-one would use MSE.

One reason you may continue to have problems is because you haven't been able to clean out the original infection, and it self-replicates. Rootkits are notorius for this. Often, the only fix is to format and do a complete reinstallation.

Run TDSSKiller, and lets see how deep this infection has run.

Regards,
Golden
Click to expand...

I did run it. it said no threats found. (i'd make a screenshot but the tdsskiller doesn't show up or with the snipping tool) I'm not having any issues anymore. this was easy to fix. system restore has me all working like new. no issues since and no processes running that are suspicious. (all of them are legit)
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)
[/QUOTE]



I might look into the kapersky stuff. I keep hearing a lot of people say it's the best out there.[/QUOTE]



Does MSE have a URL checker ? Most of the time I have contacted a virus/malware it has been while clicking URLs after a search.

I use Kaspersky Internet Security 2012 which performs well. Check Amazon and other online retailers, average cost is $20-25 for 1 year license. As stated above, no system is perfect. MSE gets positive reviews in this forum.

Let me say I am not a patient person. But with a virus you have as described above by Golden, I would recommend backup and clean install to positively insure it is removed.
 

My Computer My Computer

At a glance

Win 7, 32bit, Premium
OS
Win 7, 32bit, Premium
Does MSE have a URL checker ? Most of the time I have contacted a virus/malware it has been while clicking URLs after a search.

I use Kaspersky Internet Security 2012 which performs well. Check Amazon and other online retailers, average cost is $20-25 for 1 year license. As stated above, no system is perfect. MSE gets positive reviews in this forum.

Let me say I am not a patient person. But with a virus you have as described above by Golden, I would recommend backup and clean install to positively insure it is removed.
Click to expand...


no it doesn't have url checker but IE9 and firefox both do. but unless people are reporting the sites it goes unflagged.

oh I can tell you it's gone. you should have seen what it did to it. I couldn't even open the start menu. it was all blank. so I couldn't even access the control panel or nothing.
so this time I set some keyboard hotkeys to access all of the important things like the control panel, system retore, backup, etc.
I have external drives with a backup of all my important stuff along with a system image.

none of the malware removers find it in my system after MSE ran the third removal attempt. so I'm pretty confident it's gone.
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)
Hi,

Correct me if I'm wrong, but don't you have the situation where it keeps returning by itself? You should reset your DNS as the Win32/Alureon family hijacks it for its own use. You need to reset your DNS.

Copy the following text exactly as shown into a new instance of NotePad:

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0

Save this to your DESKTOP as FLUSH.BAT

Right-click on FLUSH.BAT and choose 'Run as administrator'. Your PC will reboot itself.

Regards,
Golden
 

My Computer My Computer

At a glance

Windows 10 Pro x64 ; Xubuntu x64Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz16GB Corsair Vengance DDR3 @ 661 MHz Dual Cha...EVGA NVidia GTX 560 1024MB
Computer type
PC/Desktop
Computer Manufacturer/Model Number
Golden Mk. I.4
OS
Windows 10 Pro x64 ; Xubuntu x64
CPU
Intel i7 860 @ 2.80 GHz O/C'ed to 4.0GHz
Motherboard
Gigabyte P55A-UD3R Rev.1. Award BIOS F13
Memory
16GB Corsair Vengance DDR3 @ 661 MHz Dual Channel (9-9-9-24)
Graphics Card(s)
EVGA NVidia GTX 560 1024MB
Sound Card
Realtek Integrated
Monitor(s) Displays
Dual Samsung SyncMaster 2494HS
Screen Resolution
1920*1080 and 1920*1080
Hard Drives
1*Samsung 840 EVO 120GB SSD;
1*OCZ Vertex 2 60GB SSD;
2*Samsung F3 SpinPoint 1TB in RAID0;
1*Samsung F1 SpinPoint 1TB;
2*Western Digital 1TB External USB 3.0
1*Western Digital 500GB External USB 3.0
1*Seagate 500GB External USB 2.0
PSU
Thermaltake ToughPower QFan 750W
Case
Thermaltake Element S VK60001W2Z
Cooling
Corsair H60 Water Cooling, 2*230mm and 2*80mm case fans
Keyboard
Logitech G110
Mouse
Logitech MX518
  • Like
Reactions: whs
Start using noscript
 

My Computer My Computer

At a glance

Windows Seven, UbuntuIntelIntel
Computer Manufacturer/Model Number
Samsung rv520
OS
Windows Seven, Ubuntu
CPU
Intel
Graphics Card(s)
Intel
Golden said:
Hi,

Correct me if I'm wrong, but don't you have the situation where it keeps returning by itself? You should reset your DNS as the Win32/Alureon family hijacks it for its own use. You need to reset your DNS.

Copy the following text exactly as shown into a new instance of NotePad:

@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh winsock reset all
netsh int ip reset all
shutdown -r -t 1
del %0

Save this to your DESKTOP as FLUSH.BAT

Right-click on FLUSH.BAT and choose 'Run as administrator'. Your PC will reboot itself.

Regards,
Golden
Click to expand...


no it seems to be fine. it's not acting up or anything.
 

My Computer My Computer

At a glance

windows 7 ultimate 64 bitamd athlon 64 X2 5000+4 gigs pc2 5300Nvidia GeForce 8600 GTS
OS
windows 7 ultimate 64 bit
CPU
amd athlon 64 X2 5000+
Motherboard
asus A8M2N-LA
Memory
4 gigs pc2 5300
Graphics Card(s)
Nvidia GeForce 8600 GTS
Sound Card
Realtek alc888 high def 8 channel
Monitor(s) Displays
17"samsung syncMaster and 32" LCD panasonic viera tv
Hard Drives
300 gb Hitachi sata 7200rpm
1T seagate Barracuda sata 7200rpm
150 gb WD PATA
250gb WD my passport USB 2.0
PSU
Antec
Other Info
Altec lansing ATP3 3 pc speaker system(these things rock!)
I do not find MSE at all as good as NOD32, have run comparison scans on infected archives and MSE misses a very significant number of finds that ESET manages to identify...
 

My Computer My Computer

At a glance

W7 x64Intel Q9300 2.5Ghz Quad LGA775 (Would like Q9...4Gb OCZ Gold 1,333MhzPalit HD4850 O/C Sonic 512Mb DDR3, Dual DViD's
Computer Manufacturer/Model Number
Custom built machine
OS
W7 x64
CPU
Intel Q9300 2.5Ghz Quad LGA775 (Would like Q9650)
Motherboard
Gigabyte GA-EP45T-UD3R (F6 Bios)
Memory
4Gb OCZ Gold 1,333Mhz
Graphics Card(s)
Palit HD4850 O/C Sonic 512Mb DDR3, Dual DViD's
Sound Card
Azalia to twin Samson 50w Studio Monitors
Monitor(s) Displays
Twin Dell (E-IPS) U2311H 23.6" Screens
Screen Resolution
1920 x 1080 @ 60Hz
Hard Drives
Crucial M4 SSD, archives on twin Western Digital Caviar Black WD2002FAEX, 2TB, 7200rpm HDD's, Samsung Ritemaster CD/DVD Burner...
PSU
OCZ 600w
Case
Lian-Li PC8 acoustifoamed' aluminium tower
Cooling
Scythe 140mm Zipang
Keyboard
Cherry PS/2 custom model
Mouse
Lenovo USB laser "Thinkpad" Mouse
Internet Speed
ADSL2+ @14Mbps downstream & Cat6 Gigabit Ethernet
Antivirus
NOD32
Browser
Opera
Other Info
Silicon Dust HD Homerun Dual FTA (Ethernet) TV Tuners, Dray Tek Vigor 2850Vn router and 8x HP Gigabit Switch. Lian-Li CR26 Card Reader, Canon MF4430 iSensys laser printer/scanner.
No wonder, Eset is top shelf.
 

My Computer My Computer

At a glance

Vista, Windows7, Mint Mate, Zorin, Windows 8from 1.6GHz Duo to i7
Computer Manufacturer/Model Number
HP, Dell, Gateway, Toshiba - 4 laptops and 2 desktops
OS
Vista, Windows7, Mint Mate, Zorin, Windows 8
CPU
from 1.6GHz Duo to i7
Monitor(s) Displays
2x HP w2207
Hard Drives
5x HDD, 7x SSD, 12x Externals
Keyboard
with trackball - no mices
Mouse
Trackball mice
Internet Speed
DSL 6000
You must log in or register to reply here.

Similar threads

My security cam system only has LAN and my home only has WIFI
2
Replies
36
Views
5K
kharl
K
how can i change my security settings
Replies
9
Views
13K
alsharif
A
Please could you check my Security/Privacy
Replies
3
Views
3K
Corrine
Corrine
My security... any tips?
Replies
17
Views
4K
Joan Archer
Joan Archer
Getting back my security by "fixing" User-Account
Replies
11
Views
5K
Corrine
Corrine
Back
Top