[SOLVED] Malware destroyed my 7 Pro install (notebook)

First, you run RKill to shutdown all the bad stuff that's running, it may take several attempts to do it, but it's window will show the progress. Once it's finished then you run the AV program to eliminate the virus, trojan, malware, etc.

Yes it's always best to only visit the reputable porn and warez sites

If all the porn sites closed down the internet would collapse

Thanks to all for your answers, all were helpful in one way or the other. I'll download and keep a copy of Rkill on hand for instances such as this. I've never used it, it's worth a shot.

Secondly, the subject came up not to go to these kind of sites. A few months ago, I recommended that if you go to these sites, do not use your main computer for this, find a used or cheap notebook for it. That's what I was doing, I would never subject my main PC to these sites. And I can deal with getting burned, as long as the damage is contained to a used notebook.

As soon as it happened, I shutdown my PC at once, to keep the infection from spreading to it. While I was nuking the notebook, I did a full scan with MSE, Malwarebytes, and the Malicious Software Removal Tool that we receive each month from Microsoft. For those who doesn't know how to run the tool, type "mrt" w/o the quotes, from the Start Menu. You will see the program listed, it looks like a small slice of pie. You can run a short, long or custom scan with it. Keep in mind that a long scan takes a long time, much longer than an AV's "long scan" does. But it is a free, useful tool. If there's anyone committed to the eradication of viruses and malware from the planet, it's Microsoft. The others, they want to keep their lists updated and contain them, but they have no incentive to eradicate them altogether. Why? The AV protection industry is a multi billion dollar one, and they don't want to lose the money.

I'm grateful that the small pox researchers didn't feel this way. They were actually looking to eradicate the disease, rather than contain it. They won, now our children no longer has to get this painful shot that scars their arm. Thanks to the ones whom made this possible.

As far as the AV industry goes, perhaps they need to adapt the same mentality, instead of allowing greed to controlling their decision making. That would be a great starting point to achieve this tall order, catching viruses and malware from the source, then eliminating them, rather than containing them on our computers.

Just a thought.
Cat

Cat - don't you realize it's all about the money! Remember, money is not the root of all evil... the LOVE of money is the root of all evil.

I could go on about our illegal Federal Reserve Banking system and how it was illegally put into existence from an initial meeting at Jekyll Island (hmmmm???) back in the early part of the 20th century.

Everything is about the money - do you really need a new OS every 3 years or a new printer every 6 years ... no, but for those companies to make any money they have to sell them to you any way. So they change it a little and stop supporting the old and wizbang you must pay.

Everything in a free society is about money. The more you have, the more products and services you can obtain. There is no questioning that. Money walks, a good example of that is this. In 1997, I bought a new Toyota Tacoma truck, loaded to the gills with everything except 4WD, which I don't care for. Anyway, I narrowed down the truck I wanted. The salesman asked me how much cash I had to put down (I was employed then). I said five, he looked at me and asked five hundred, I said no, five thousand (the truck cost $24,000). The salesman threw his arm around my neck, and actually dragged me through the door, and asked me to have a seat. He went to his sales manager, who in turn asked me if I was hungry. The salesman took me out to eat, which was not surprising, considering my sales experience. Happens all the time. But they didn't yet know my job position and who they were dealing with.

After the return from lunch, the sales manager asked me into his office, the salesman told me that everyone doesn't have this treatment, which I knew was bullshit. He asked me how much could I afford in monthly payments (a common trick, never fall for this, at least as to what you can actually afford). I said with my downpayment, $275 was all that I could afford, no more. He said I was crazy, I got up and proceeded to leave, he tried to stop me, but I left anyway.

After returning home, I noticed the phone ringing off the wall. I answered, the dealership owner was calling me. He told me, that I could get the truck for the $5000 that I offered, and a $232.75/month payment for 72 months. Nearly $6,000 was cut off the price by my walking out the door, and at that time, Toyota's were hard to get a reduced price.

So by my having that $5,000 and knowing when to walkout the door, I saved big, and better yet, got the truck that I wanted. Money talks when it comes to sales, and that's the bottom line.

As for OS's and computer hardware (especially printers) goes, a new one is almost mandated every three to five years. Except when one like Vista comes out, all the consumers can do is grit their teeth and wait. XP Pro ran fine for me from 2002 until Nov 2009, over seven years. I still use it sometimes (it folds great). But in the business world, that option may not apply, a new Windows is released, some companies go for it, and the employees just have to love it or leave (find other work). In this day, they choose to love it, which is not a bad decision, given all that 7 has to offer.

But secure as it is, thinking that malware can't attack is foolish. I wasn't thinking that way, but was depending on MSE to cover my back. A switch will be made, but I must do some researching on that AV list that Nibiru provided. I'll try it out on XP first (under tough conditions). Perhaps the same that caused the infection, that would be the ultimate test for any AV suite. If the security is cracked, I'll go to the next one. If I can't depend it to intercept viruses and malware, it's worthless to me. Period.

Cat

catilley,
well mate all I can add is that there is another lesson here for us all we are never really SECURE what I have discovered which does bring to mind,I saw this come up on my Compaq Notebook after downloading the newest Adobe update,Malwarebytes picked it up & Norton 360 Failed too.

Norton has given a false indication & when I ran the full clean Norton didn't find anything.Strange as it was in my Security History,weird was the fact Norton reported this as a fake Trojan which pointed to a program I downloaded called SIW System info for Windows 2010 Build 0428a,this also gave me a warning of a false AV result?

I was pleased to see that everything was where it should be as well all is working as well as could be expected.great informative post cat.
regards
jeffrey

From Trainableman
I love the concept of this program. I used it on XP but haven't installed it on my most recent install of W7. Thanks for reminding me of it. It's well worth the 30 seconds it takes to install it. It is free (not trial) and can be found here.

http://www.sandboxie.com/index.php?DownloadSandboxie

Thanks for mentioning it and it would be the quickest and easiest solution for Cat.

The only reason I thought it might be shareware is because of that BUY tab on the website but since I had no plans to buy it I never actually clicked it.The author really would like it if you paid to register but I guess he didn't program in any time-frame before it is required. .

Well, here we go again. I cleaned installed all partitions except Win 2K, which wasn't infected anyway. A while ago, 7 Pro started acting up again, but this time, I could boot into Malwarebytes. It ran for a couple of minutes, then the system crashed on me, and I could not restart it again. Once again, there was this fake virus scanner, I headed for the RKill CD that I had burned, but by the time I could get my hands on it (I have CD's & DVD's all over the place), the crash occured. I couldn't boot into anything this time.

I'm suspecting some type of hardware infection here, even though I done boot time scans with Avast. Either the DVD ROM, RAM chip, or the Ready Boost flash drive is giving me trouble. But all were scanned, three times, and I'm using the thumb drive for Ready Boost on my desktop with no issues, so we can rule out the thumb drive. Can infection embed in hardware? I've heard in the past that it can happen, especially with RAM chips.

So for the time being, I'm nuking the laptop once again, only this time I'm using the Guttman method (35 times), over the autonuke command, which only does a DOD (3x wipe). I don't know what else to do.