|
 Author | Topic: Malware Threats (Read 1,796 times) |
nikko1764
Novice Marbler
member is offline
Joined: Mar 2009
Gender: Male 
Posts: 13
|  | Re: Malware Threats
« Reply #30 on Feb 22, 2010, 4:47pm » | |
OMG!!! That Malware Is Crazy!!!! Damn Crackers!!!!!!
| |
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
![[avatar]](http://i92.photobucket.com/albums/l16/Aayrl/hayrl_av.jpg "[avatar]")
Coding & Technical Support Specialist[x=aayrl]
![[msn]](http://images.proboards.com/new/msn.png "[msn]") ![[aim]](http://images.proboards.com/new/aim.png "[aim]")
![[homepage]](http://images.proboards.com/new/buttons/www_sm.png "[homepage]")
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #31 on Feb 22, 2010, 9:03pm » | |
Feb 22, 2010, 4:45pm, offline wrote:Wait, MalwareBytes does protect against this? You said you have it, and it didn't detect this, so it probably won't keep me safe. Is there one that gives a definite reading on this one?
|
|
It will protect against any type of javascript attached malware IF YOU ARE RUNNING THE PROGRAM PROPERLY. The only reason I caught the virus was because my antivirus systems were disabled temporarily when I remotely crashed their system processes to overclock my computer.
Additionally; Microsoft Security Essentials is a fairly decent program. I would suggest if you were to use it that you have an additional antivirus removal / detection program as well since Microsoft is known to have a lot of false-positive detections. Then again, false positives are well known in several other anti-virus programs, so it wouldn't hurt to use multiple anti-virus programs to double check each other.
~Aayrl
|
|
|
Mkbul
Respected Marbler
Pro Texture Creator/Modder[ss:Default Skin (DO NOT TOUCH)]
member is offline
![[avatar]](http://www.avatarsdb.com/avatars/brain_use_it.jpg "[avatar]")
Reminder^^
Joined: Jul 2007
Gender: Male
Posts: 1,108
Location: Here
| | Re: Malware Threats
« Reply #32 on Feb 23, 2010, 7:58am » | |
I defeated this shit...run in safe mode, find the bastard and destroy him...thats all
|
![[image]](http://img121.imageshack.us/img121/4422/32signaturecreation.gif "[image]") My level workshop:Here --- My Email:mikebul24@gmail.com
|
|
westonn
New Marbler
member is offline
Joined: Jan 2009
Gender: Male
Posts: 7
| | Re: Malware Threats
« Reply #33 on Feb 23, 2010, 9:35pm » | |
Wait. . .I don't get it. So if I visit any website with java or flash, it'll damage my computer. Since when has this been so?
| |
|
Sporlo
Elite Marbler
Master Spammer[ss:Default Skin (DO NOT TOUCH)]
member is offline
![[avatar]](http://img255.imageshack.us/img255/8550/sporlogo6.png "[avatar]")
I am Legend!
Joined: Nov 2006
Gender: Male
Posts: 1,810
Location: USA
| | Re: Malware Threats
« Reply #34 on Feb 24, 2010, 6:51pm » | |
Feb 23, 2010, 9:35pm, westonn wrote:| Wait. . .I don't get it. So if I visit any website with java or flash, it'll damage my computer. Since when has this been so? |
|
No, it means sites with those will be more likely to have viruses. Nothing more. Don't read into it.
|
|
|
ShadowLuigi711
New Marbler
member is offline
![[avatar]](http://i656.photobucket.com/albums/uu290/ShadowLuigi7/WOG3.jpg "[avatar]")
All your base are belong to us.
Joined: Dec 2009
Posts: 6
| |
Don.Gato
Professional Marbler
[ss:Prolassic]
member is offline
![[avatar]](http://z.about.com/d/cleveland/1/0/e/5/-/-/softcma.jpg "[avatar]")
The meaning of Salvador Dalis works: Fuck Reality
Joined: Feb 2008
Gender: Male
Posts: 379
| | Re: Malware Threats
« Reply #36 on May 5, 2010, 11:36pm » | |
May 5, 2010, 10:06pm, ShadowLuigi711 wrote:ah thank u i got mcafee but this really help thxxx ![[image]](http://www.freewebs.com/marbleblast2/laugh%5B1%5D.gif "[image]") |
|
Mcafee sucks. It never seems to find a thing, even when you obviously have a virus. Malaware Bytes seems to work best in my limited experience.
|
|
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
Coding & Technical Support Specialist[x=aayrl]
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #37 on May 19, 2010, 5:15pm » | |
VERY IMPORTANT UPDATE:
A new version of the Antivirus Soft rootkit has been discovered on the web in the past few days. Today, my sister's Tablet PC has fallen victim to the new version of this virus. It is similar in every aspect as the previous version, except for the name and the systems it can infect.
The tablet PC was infected at 3:47 PM EST, when a chunk of coding embedded into an advertisement on DeviantArt.com was picked up by the system and executed (without permission). I discovered this by checking the Task Scheduler for the system, discovering that suspicious filenames (gibberish.dat) had auto-installed themselves into the temp and win32 folders.
As far as I know, the new rootkit is titled, 'Antispyware Soft'. This 'new' version is currently only capable of afflicting systems using the Windows Vista or Windows 7 Operating Systems. Though several cases have been reported of a similar virus (more than likely Antivirus Soft) infecting Windows XP systems.
I would like to remind the community to please keep their systems under regularly scheduled malware and spyware scannings; ensuring that their system is clean.
Make sure you have Spybot Search & Destroy installed, as well as a decent tool for malware detection and removal.
If you are a little hazy about what exactly a rootkit is, or how to properly handle one, please check the first post of this thread. Thank you.
~Aayrl
|
|
|
Perishingflames
Council Member
All hail the gods of metal[ss:Default Skin]
member is offline
![[avatar]](http://i92.photobucket.com/albums/l14/Perishingflames/janedoe.jpg "[avatar]")
Joined: Oct 2006
Gender: Male
Posts: 3,967
Location: Atlanta, USA
| | Re: Malware Threats
« Reply #38 on May 19, 2010, 6:18pm » | |
Thanks for the warning. But are you sure that's a rootkit? Rootkits are very stealthy I thought.. looking in the scheduled tasks reveals this malware?
|
|
|
«davidjl123» (rarely online)
Advanced Marbler
member is offline
![[avatar]](http://static.desktopnexus.com/wallpapers/50646-bigthumbnail.jpg "[avatar]")
Just blue fire.
Joined: Jan 2010
Gender: Male
Posts: 341
Location: On everyone's boat.
| | Re: Malware Threats
« Reply #39 on May 19, 2010, 6:50pm » | |
What does the rogue antivirus do?
|
|
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
Coding & Technical Support Specialist[x=aayrl]
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #40 on May 19, 2010, 6:50pm » | |
Its a peculiar virus, I've seen it in many different forms now.
I managed the clean the one off of the Tablet PC a couple minutes ago. This one seemed to act more like a Trojan than a rootkit.
From what I can muster, this series of viruses apparently installs in different stages, and your virus product will be altered depending on the malware strand hidden in the source coding of an ad banner.
The one my Desktop caught in February was most certainty a rootkit. However, it started out as a strand of malware that eventually controlled the iexplorer.exe process, which in turn, I'm assuming, installed the rootkit manually.
Perhaps I caught this new version of the virus early enough to stop it before it could control the explorer and re-write registry entries. In my previous encounter with the virus, I was unable to load Safe Mode (Since the virus already altered the safe-mode drivers and caused a fatal error each time you were to load the OS in Safe Mode). This time, on the tablet however, I was able to run in Safe Mode and install the removal tool to whack most of the source files, and then I cleaned up any residue left over in the registry.
Additionally, to reiterate, the rogue antivirus will start by prompting false Windows Network Security pop-ups from your taskbar, followed by false AntiVirus warnings, random spyware threat pop-ups, and eventually the failure to load or maintain any process on the system (since it takes over the iexplorer.exe process).
~Aayrl
|
|
|
Rokoshu
Elite Marbler
Furball[ss:Phil'sEmpire Skin]
member is offline
![[avatar]](http://img24.imageshack.us/img24/1107/musicatd.jpg "[avatar]")
Shoyu!
Joined: Nov 2008
Gender: Female 
Posts: 1,522
Location: doing something, obviously
| | Re: Malware Threats
« Reply #41 on May 19, 2010, 8:44pm » | |
Could you possible recommend some good malware protection programs or whatever they are called? I don't know of a single one.
|
![[image]](http://miniprofile.xfire.com/bg/wow/type/0/fiberous.png "[image]") Quote:| omgg heyy iff i put extra letterss in my sentencez it will make me look coolzz!;;;;;;;; |
|
|
|
Seizure22
Advanced Marbler
[ss:Default Skin]
member is offline
Joined: Jun 2009
Gender: Male
Posts: 248
| | Re: Malware Threats
« Reply #42 on May 19, 2010, 11:05pm » | |
Thanks for the info Aayrl.
Question, does Adblock Plus prevent ads in such a way that this exploit can't be executed?
| |
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
Coding & Technical Support Specialist[x=aayrl]
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #43 on May 20, 2010, 4:02pm » | |
Some programs I would reccomend for Malware detection and removal;
Spybot Search & Destroy
PrevX
Kapersky
Malwarebyte's Anti-Malware
All of these programs are free (with extended and more user friendly versions, for a small fee).
Yes, Adblock Plus should prevent malicious strands of code from loading on web pages, so long as that code is embedded in the banner or ad.
There's been cases of actual malicious coding being written in the page source of the website itself, but I have yet to see anything along those lines in action.
~Aayrl
|
|
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
Coding & Technical Support Specialist[x=aayrl]
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #44 on Jul 23, 2010, 12:25pm » | |
Bumpity bump. I added a link to Microsoft Security Essentials on the original post.
~Aayrl
|
|
|
Seafood
Elite Marbler
Quack level - 150% ![[image]](http://i290.photobucket.com/albums/ll249/marbleduck/warn.png "[image]") [ss:Prolassic]
member is offline
![[avatar]](http://i290.photobucket.com/albums/ll249/marbleduck/LightPoints.png "[avatar]")
We Ducks QuAcK loud!
Joined: Apr 2008
Gender: Male
Posts: 1,483
Location: Tucson, Arizona
| | Re: Malware Threats
« Reply #45 on Jul 23, 2010, 2:46pm » | |
What would happen one of these viruses tried to infect an emulator (Crossover)? Absolutely nothing?
|
Project Ascent - Click Here"Because watching pro vids gets some people horny. :T"-Rokoshu "If life gives you lemons, make apple juice and leave the world wondering how the fuck you did it."-Ian |
|
Perishingflames
Council Member
All hail the gods of metal[ss:Default Skin]
member is offline
Joined: Oct 2006
Gender: Male
Posts: 3,967
Location: Atlanta, USA
| | Re: Malware Threats
« Reply #46 on Jul 23, 2010, 3:00pm » | |
Uh, why would you be emulating an internet browser in the first place? I suppose it would be possible to get infected though it would be contained of course.
|
|
|
Aayrl
Marble Blast Moderator
Big Deal![ss:Aayrl's Skin]
member is offline
Coding & Technical Support Specialist[x=aayrl]
Joined: Oct 2007
Gender: Male
Posts: 940
Location: Vermont, USA
| | Re: Malware Threats
« Reply #47 on Jul 23, 2010, 7:27pm » | |
Well, the smartest and safest step would to be running a Non-Persistant emulator if you wanted to sniff out websites you were unsure about.
That way, the emulator could get pulverized by the malware, and restart clean when you re-initiated the program.
~Aayrl
|
|
|
MBfan300
Novice Marbler
Warning Level - 20%
  
[ss:Phil'sEmpire Skin]
member is offline
Joined: Jul 2010
Gender: Male
Posts: 19
Location: MBU moving up with other ppl
| | Re: Malware Threats
« Reply #48 on Jul 24, 2010, 9:20am » | |
i have mcaffe and mkbul is rite find that @#4%@#%$@##!#$##$$&*##$##!!!!!! and voldemort him!
|
~Matthew
my lvl on red remover
ttp://www.thegamehomepage.com/play/red-remover/dont-do-anything/2137876 |
|
|
![[Home]](http://images.proboards.com/new/menu/home.png "[Home]")
![[New Topics]](http://s2.images.proboards.com/menu/topics.png "[New Topics]")
![[Help]](http://images.proboards.com/new/menu/help.png "[Help]")
![[Search]](http://images.proboards.com/new/menu/search.png "[Search]")
![[Calendar]](http://images.proboards.com/new/menu/calendar.png "[Calendar]")
![[Login]](http://images.proboards.com/new/menu/login.png "[Login]")
![[Register]](http://images.proboards.com/new/menu/register.png "[Register]")
![[Search This Thread]](http://images.proboards.com/new/buttons/search2.png "[Search This Thread]")
![[Send Topic To Friend]](http://images.proboards.com/new/buttons/sendtopic.png "[Send Topic To Friend]")
![[Print]](http://images.proboards.com/new/buttons/print.png "[Print]")
Logged![[image]](http://i.imagehost.org/0511/NOWAY.jpg "[image]")
![[image]](http://i92.photobucket.com/albums/l16/Aayrl/hayrlsigmb.jpg "[image]")
![[image]](http://img36.imageshack.us/img36/3861/dsc03247xk.jpg "[image]")
![[image]](http://s.ytimg.com/yt/img/creators_corner/watchmyvids1_yt.png "[image]")
![[image]](http://img72.imageshack.us/img72/6123/siggyg.png "[image]")
![[image]](http://www.rss2gif.com/rss_Hh9wxxg7AutPuVNfzBrT.gif "[image]")
![[image]](http://bannerbreak.com/banners/2/233/127099573999392808.gif "[image]")